Case Study Review: Astrata and CDPHP
Constellation connects two important trends in Healthcare IT:
1. A Sea of Healthcare Data: A typical health system has petabytes of patient data going back a decade or more, trapped in disparate software systems.
2. Apps and Services that Work on Data: Clinicians, patients, scientists, health IT professionals, and modern applications like NLP and machine learning need access to that data to deliver the highest quality care.
Constellation runs as a service, interacting with applications through authenticated web service calls on a combination of AWS and Azure. It’s built on a NIST-compliant architecture that adheres to AWS/Azure best practices for security and high- availability and relies exclusively on HIPAA-compliant infrastructure and services on AWS and Azure. Constellation doesn’t permit direct SOL (or similar) access. End users access Constellation data through an authorized app that invokes one or more APIs. Each service or application accessing an API must supply an authorized, unique application key. Constellation logs and timestamps every API call and generates audit logs of user access and security events; these logs can be modified for ingestion into a Clinical Log Aggregation System (CLAS), such as Fair warning.
Constellation runs independently of existing systems. Build and deploy Constellation apps without affecting your EMR. You don’t have to purchase a new API from your EMR vendor or submit a ticket to your institution’s IT department.
A rich set of APIs let you search for healthcare data across a population, retrieve individual documents or specific clinical data elements, or listen for new events matching specific criteria.
Constellation is both a historical system—storing past clinical data, and real-time—capturing clinical data seconds after clinicians enter it.
100% HIPAA-compliant. built atop a NIST-compliant (SP 800-53) architecture. All access to Constellation APIs is time stamped and logged. To access any Constellation API, an app or service must have an authorized, unique application key.
Constellation is a service, like Salesforce.com or Splunk. Every health system that uses Constellation has its own ‘tenant’: a unique, HIPAA- compliant, encrypted, password- protected cloud-based container for their data.