ABSTRACT
BACKGROUND: In countries that have not implemented Electronic Health Records (EHR) comprehensively, international organizations are important steps in the development of EHR. AIMS: The objective of this study was to compare different dimensions of privacy in the EHR systems in terms of the following standards organizations: ASTM, Health Level Seven (HL7), and International Organization for Standardization (ISO), in order to create a security and privacy model for EHR. METHODS: This study was done in two steps: 1) survey of standards organizations, and 2) compare standards in comparative tables. RESULTS: Standards 12, 1 and 5 were extracted from the ASTM, HL7 and ISO respectively. CONCLUSIONS: Evidence shows that the goal of standards was to create EHR systems that identified not only the access level of users, but taking consent for reveal information of people and also approved data by authorized persons in a secure framework. In this regard, ASTM looks comprehensive for privacy issues, while ISO18308 focuses on security issues and data interoperability simultaneously, while Hl7 has emphasized access.
