Source: https://vaultcrmhelp.veeva.com/doc/Content/CRM_topics/PatientCRM/ManagingPatients/Authorizations.htm

## Managing Patient HIPAA and Program Authorizations

End users can capture and manage patient authorizations for Health Insurance Portability and Accountability Act (HIPAA) and Programs directly within Patient CRM. This enables streamlined consent management as part of the patient intake process and throughout the patient journey. A dedicated Authorizations section during patient intake ensures the necessary consent is recorded prior to the intake process completing.

**Who can use this feature?**

* Business Admin Users – Browser
* [Enable Patient Authorization Requirements for Patient Journeys](#Enabling)
* End Users – Browser
* [Capture HIPAA and Program Authorizations](#Capturin)
* Users require a Patient CRM License

### Configuring Managing Patient HIPAA and Program Authorizations for

[![Closed](../../../../Skins/Default/Stylesheets/Images/transparent.gif)Business Admin Users](#)

To configure this feature:

1. Ensure [Configuring Patient CRM](../Config/ConfiguringPatientCRM.htm) is complete.
2. Navigate to **Admin > Users & Groups > Permission Sets**.
3. Select the appropriate permission set.
4. Select the **Objects** tab.
5. Grant the following permissions:

   | Object | Object Permission | Object Types | Fields | Field Permission |
   | --- | --- | --- | --- | --- |
   | patient\_journey\_\_v | CRE | patient\_crm\_patient\_journey\_\_v | * hipaa\_authorization\_required\_\_v * hipaa\_authorization\_duration\_\_v * program\_authorization\_required\_\_v | Edit |
6. Navigate to **Admin > Configuration > Objects > patient\_journey\_\_v > Layouts**.
7. Edit the layout assigned to the **patient\_crm\_patient\_journey\_\_v** object type.
8. Add the following fields to the layout:

   * hipaa\_authorization\_required\_\_v
   * hipaa\_authorization\_duration\_\_v
   * program\_authorization\_required\_\_v

[![Closed](../../../../Skins/Default/Stylesheets/Images/transparent.gif)End Users](#)

To configure this feature:

1. Ensure [Configuring Patient CRM](../Config/ConfiguringPatientCRM.htm) is complete.
2. Navigate to **Admin > Users & Groups > Permission Sets**.
3. Select the appropriate permission set.
4. Select the **Objects** tab.
5. Grant the following permissions:

   | Object | Object Permission | Object Types | Fields | Field Permission |
   | --- | --- | --- | --- | --- |
   | patient\_journey\_\_v | R | patient\_crm\_patient\_journey\_\_v | * hipaa\_authorization\_required\_\_v * hipaa\_authorization\_duration\_\_v * program\_authorization\_required\_\_v | Read |

### Enabling Authorization Requirements for Patient Journeys as

[![Closed](../../../../Skins/Default/Stylesheets/Images/transparent.gif)Business Admin Users](#)

To enable an authorization requirement for a specific Patient Journey:

1. Edit the appropriate patient\_journey\_\_v record.
2. Select the following check boxes:

   * hipaa\_authorization\_required\_\_v – Enables requiring HIPAA authorization
   * program\_authorization\_required\_\_v – Enables requiring Program authorization
3. Populate the **hipaa\_authorization\_duration\_\_v** field with the appropriate number of days HIPAA authorization is valid for.
4. Select **Save**.

### Capturing HIPAA and Program Authorizations as

[![Closed](../../../../Skins/Default/Stylesheets/Images/transparent.gif)End Users](#)

When patient intake is initiated using a patient\_journey\_\_v record with authorization requirements, the Authorizations section displays.

![](../../../Resources/Images/PatientCRM/Authorizations.png)

To capture authorizations:

1. Select the **Opted In** check boxes in the HIPAA Authorization or Program Authorization sections, based on the requirements of the specific patient\_journey\_\_v record.
2. Use the **Date Signed** field to enter the date the authorization was signed.

   ![](../../../Resources/Images/PatientCRM/Authorizations1.png)
3. Select **Continue**.

The expiration date of a HIPAA authorization is calculated automatically based on the patient\_journey\_\_v record’s hipaa\_authorization\_duration\_\_v field. End users can view the status of a patient's authorizations on the Patient Details page.

![](../../../Resources/Images/PatientCRM/Authorizations2.png)

### Related Topics

[Defining Patient Journeys](../Config/PatientJourneys.htm)

[Using Patient Intake Forms](PatientIntakeForms.htm)

[Viewing Patient Details](ViewPatientDetails.htm)

[Introduction to Patient CRM Flightpath](https://vaultcrmflightpath.veeva.com/doc/Content/PatientCRM/PatientCRMIntro/1-Intro.htm)
