Interoperability for Members

Member Information on Interoperability

How can I access my health data?

Your data is available on a Patient Access Application Programming Interface (API). An API is how software communicates with each other to get data. The API essentially allows MedStar Family Choice to connect with your app and share your health data. MedStar Family Choice does not have control over how your app will use or share your data.

What questions should I think about before sharing my health data?

Before you select an application and agree to share your health data, please manage your risk by considering the following:

What data does the app collect?
How will this app use my data?
Will this app share my data to third parties?
Will this app sell my data?
If I stop using the app, will my data be removed?

How do I let MedStar Family Choice share my data with the app?

To find out if MedStar Family Choice works with your specific third-party application, please go to MedStar Family Choice Approved Apps to obtain a current list of applications registered with MedStar Family Choice, and information on the risks of sharing your health information with an app. If your app is listed, you must authorize MedStar Family Choice to share your data with it.

Create a personal account

You will need to create an account by registering with MedStar Family Choice as the first step in allowing your App to access your data. To create an account, navigate to the Member portal and choose Registration on the top right.

Member Registration

Members can follow the steps below under Creating an Account and Authorizing the Sharing of Data for Members.

Personal Representative Registration

In order to register as a personal representative (e.g., power of attorney, legal guardian, parent of an adult member), there are forms that need to be completed and submitted first.

Please scan and email the forms to MFC-Interop@medstar.net with Personal Rep Registration in subject or they can be mailed to us with an Attention to: Interoperability Team, to MedStar Family Choice, 5233 King Ave., Rosedale, MD 21237 Attn: Interoperability. Please include all required documents (power of attorney, legal guardian, etc.).

Once your Personal Rep application has been approved, you will receive an email with a registration link, and a Personal Representative Identifier (PRID). You will be able to register with MedStar Family Choice using the PRID, the Member ID and other distinguishing information. You will also be asked for second way to verify your identity.

Parent or Guardian of a Minor Registration

If you would like access to your minor child’s data, you will need to download and fill out the Identity verification form and email the form to us at MFC-Interop@medstar.net with Parent or Guardian Registration in subject or mail them with an Attention to: Interoperability Team, to MedStar Family Choice, 5233 King Ave., Rosedale, MD 21237 Attn: Interoperability.

Identity Verification Form

Once your Registration has been approved, you will receive an email with this registration link, and a Personal Representative Identifier (PRID). You will be able to register with MedStar Family Choice using the PRID, the Member ID and other distinguishing information. You will also be asked for second way to verify your identity.

Creating the Account and Authorizing the Sharing of Data for Members

To create an account, navigate to the Member portal and choose Registration on the top right. You must register by entering your name, date of birth, MedStar Family Choice ID number and the Medicaid ID number. Please reference the sample member card below to find the required identifiers.

Creating the Account and Authorizing the Sharing of Data for Personal Representatives and Parents

To create an account, navigate to the Member portal and choose Registration on the top right. You must register by entering the PRID supplied in an email from MedStar Family Choice. You will also need to enter your email address, your name, your date of birth, MedStar Family Choice ID number and the Medicaid ID number of the member you are representing. Please reference the sample member card below to find the member’s required identifiers.

Member Card Sample

Protecting Your Privacy

How do I access or revoke access to my health data?

Whenever you use your third-party app to view your MedStar Family Choice heath information, you will need to provide your MedStar Family Choice credentials by logging in. You will also need to provide consent to allow MedStar Family choice to share that data with the third-party app.

If you decide you no longer want to use a particular third-party app, navigate to the Member portal and login. Then navigate to Authorized Apps on the top right. You will see all the apps you have consented to share data with. Choose the specific app and click on the Revoke button. This will block that application from referencing your data.

What are important things to consider before authorizing a third-party app to retrieve your health care data?

It is important for individuals to take an active role in protecting their health information. Knowing what to look for when choosing an app can help you make more informed decisions. You should look for an easy-to-read privacy policy that clearly explains how the app will use your data. If an app does not have a privacy policy, you should be advised not to use the app. You should consider:

What health data will this app collect? Will this app collect non-health data from my device, such as my location?
Will my data be stored in a de-identified or anonymized form?
How will this app use my data?
Will this app disclose my data to third parties?
Will this app sell my data for any reason, such as advertising or research?
Will this app share my data for any reason? If so, with whom? For what purpose?
How can I limit this app’s use and disclosure of my data?
What security measures does this app use to protect my data?
What impact could sharing my data with this app have on others, such as my family members?
How can I access my data and correct inaccuracies in data retrieved by this app?
Does this app have a process for collecting and responding to user complaints?
If I no longer want to use this app, or if I no longer want this app to have access to my health information, how do I terminate the app’s access to my data?
What is the app’s policy for deleting my data once I terminate access? Do I have to do more than just delete the app from my device?
How does this app inform users of changes that could affect its privacy practices?

If the app’s privacy policy does not clearly answer these questions, you should reconsider using the app to access your health information. Health information is very sensitive information, and you should be careful to choose apps with strong privacy and security standards to protect it.

Are third-party apps covered by HIPAA and what are my rights?

MedStar Family Choice is required to protect your health information under a federal law known as the Health Insurance Portability and Accountability Act (HIPAA). Most third-party apps are not covered by HIPAA. These apps will fall under the oversight of the Federal Trade Commission (FTC) and the protections provided by the FTC Act. The FTC Act does not include the types of rights and privacy protections for health data that is required for HIPAA covered entities. The FTC Act, among other things, protects against deceptive acts (e.g., if an app shares personal data without permission, despite having a privacy policy that says it will not do so). The FTC provides information about mobile app privacy and security for consumers here.

MedStar Family Choice cannot guarantee that the app you choose will fall under HIPAA. Important rights and protections under health care privacy laws like HIPAA generally, will not apply to most third-party apps. For more information about how MedStar Family Choice protects and uses your health information, check out our Privacy Practices and Terms of Use.

Where can I find more information about my rights under HIPAA?

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) enforces the HIPAA Privacy, Security, and Breach Notification Rules, and the Patient Safety Act and Rule.

Click here to find out more information about your rights under HIPAA and who is obligated to follow HIPAA.

How can I protect my information?

It is important to only share your health data with apps and people you trust. For example, a doctor or organization you depend on for care. Here are some tips to help you continue to keep your information safe:

Keep your passwords and any other login information private
Make sure your wireless internet connection is secure
Download virus protection software for your device
Use only trusted and secured health apps

How do I report suspicious behavior?

You have the right to file a complaint with appropriate agencies including the Office the Federal Trade Commission (FTC) and Office for Civil Rights (OCR).

The Federal Trade Commission Act protects against deceptive acts, such as an app that shares personal data in violation of its privacy notice. An app that goes against the terms of its privacy notice is subject to the jurisdiction of the Federal Trade Commission. If you believe an app inappropriately used, disclosed, shared, or sold your information, you should contact the FTC. To file a complaint with the FTC, please use the FTC complaint assistant. The FTC provides further information about mobile app privacy and security for consumers.

The U.S. Department of Health and Human Services' Office for Civil Rights (OCR) maintains the HIPAA Privacy, Security, and Breach Notification Rules. MedStar Family Choice is subject to HIPAA, so your health information is protected. Learn about filing a complaint with OCR related to HIPAA requirements or file a complaint with MedStar Family Choice by contacting Customer Service at the phone number listed on the back of your member ID card.

Your recent searches