Case study: Netsmart

Today's reality: The current digital healthcare process is riddled with problems.

Digital healthcare has brought significant advantages for patients, especially in terms of facilitated access to health services in a more affordable fashion, while enhancing the connection and therefore communication with medical providers to resolve medical issues.

Digital healthcare has also given healthcare providers the ability to store patients' information and access the data quickly, whenever there is a need to share the information with the patient or other health professionals. The data allows to make very accurate reports, contrast the patient’s progress and make clinical decisions more easily.

Having said that, digital healthcare has also demonstrated dangerous limitations, especially when pertaining to health data ownership and healthcare data breach. 

Under federal and state law, patients have legal privacy, security and accuracy rights related to their health information. However, once that information is captured and documented in written or electronic form (e.g., paper chart or electronic data file), and since 

the healthcare provider owns the media in which the information is recorded and stored, the health care provider gains the property right of possession of the patient’s data.

In essence, the healthcare provider becomes the legal custodian of the patient’s health care record and is given specific legal rights and duties relating to possession and protection of that health record.

Then add EHRs’ high vulnerability to hacking. There have been 28 data breach incidents reported between January and May 2020 so far, including email hacking incidents, malware attacks and unauthorized access to EHRs. The consequences: Patient’s medical records are exposed. 

Finally, healthcare professionals have been leveraging digital healthcare solutions that solely focus on the authentication process and not on indisputably proving their identity when, for example, they need to prescribe controlled substances via a web portal. And those serious failures to onboard healthcare providers pertinently have instigated countless fraudulent activities. 

The one-stop solution: BlockID

  • Physician Onboarding: Indisputable ID proofing for physicians, using the NIST 800-63-3A standard up to IAL 3 and UK GPG 45 for the highest level of verification.
  • Additionally, BlockID triangulates the National Provider Information (NPI) number for additional qualification proofing.
  • Secure Authentication: Use of advanced biometric authentication, instead of username, password, or hard tokens.
  • Augment or replace existing systems to ensure a seamless transition.

Case Study: Netsmart

  • Doctors used to have to enroll their identity into the system by taking their documents to a notary, then faxing copies to the provider.
  • Now, they onboard using remote identity proofing, complying with NIST 800-63-3A (and UK GPG 45) onboarding standards.  What took days now takes minutes.
  • The EPCS standard calls for 2-factor authentication. The BlockID platform can be used to meet the strict 
“something you have” (mobile phone) and “something you are” (a biometric), enhancing security as well as the user experience.
  • Physicians can authenticate with one process.


  • Physicians can onboard into the platform in minutes with government-approved levels of identity assurance.
  • Controlled substances are now prescribed in seconds, IT burden is reduced, and an immutable audit trail is captured on a private distributed ledger.