Home→Glossary

Healthcare Technology Glossary

Clear definitions of healthcare technology terms, acronyms, and concepts. From HIPAA to FHIR, e-prescribing to telehealth—understand the terminology of healthcare app development.

A B C E F H I L M N P R S T W

A

API (Application Programming Interface)

A set of protocols and tools that allows different software applications to communicate with each other. In healthcare, APIs enable systems like EHRs, pharmacy networks, and patient apps to exchange data securely.

Technology Related: FHIR, HL7

B

BAA (Business Associate Agreement)

A legally binding contract required by HIPAA between a covered entity (like a healthcare provider) and a business associate (like a software vendor) that handles protected health information. BeyondRxAid signs BAAs with all healthcare clients.

Compliance Related: HIPAA, PHI

C

CCM (Chronic Care Management)

A Medicare program that provides reimbursement for non-face-to-face care coordination services for patients with multiple chronic conditions. Requires at least 20 minutes of clinical staff time per month.

Healthcare Services Related: RPM

Covered Entity

Under HIPAA, a health plan, healthcare clearinghouse, or healthcare provider that transmits health information electronically. Covered entities must comply with HIPAA Privacy and Security Rules.

Compliance Related: HIPAA, BAA

E

E-Prescribing (Electronic Prescribing)

The computer-based electronic generation, transmission, and filling of a prescription, replacing paper and faxed prescriptions. Surescripts is the primary e-prescribing network in the United States.

Healthcare Technology Related: Surescripts, EPCS

EHR (Electronic Health Record)

A digital version of a patient's paper chart containing medical history, diagnoses, medications, treatment plans, immunization dates, allergies, and lab results. EHRs are designed to be shared across healthcare organizations.

Healthcare Technology Related: EMR, HL7

EPCS (Electronic Prescribing for Controlled Substances)

The ability to electronically prescribe Schedule II-V controlled substances. EPCS requires additional identity proofing, two-factor authentication, and DEA certification.

Healthcare Technology Related: Surescripts, E-Prescribing

F

FHIR (Fast Healthcare Interoperability Resources)

A standard for exchanging healthcare information electronically, developed by HL7. FHIR uses modern web technologies (REST, JSON, OAuth) and is becoming the standard for healthcare API development.

Standards Related: HL7, API

H

HIPAA (Health Insurance Portability and Accountability Act)

U.S. legislation from 1996 that provides data privacy and security provisions for safeguarding medical information. HIPAA compliance is mandatory for healthcare applications handling protected health information.

Compliance Related: PHI, BAA

HITECH Act

The Health Information Technology for Economic and Clinical Health Act (2009) that strengthened HIPAA enforcement, increased penalties for violations, and promoted meaningful use of electronic health records.

Compliance Related: HIPAA, EHR

HL7 (Health Level Seven)

A set of international standards for the exchange, integration, sharing, and retrieval of electronic health information. HL7 v2.x is widely used for clinical messaging, while FHIR is the modern evolution.

Standards Related: FHIR, Interoperability

I

Interoperability

The ability of different information systems, devices, and applications to access, exchange, integrate, and cooperatively use data. Healthcare interoperability enables seamless data sharing between providers, payers, and patients.

Technology Related: FHIR, HL7, API

L

LIS (Laboratory Information System)

Software that receives, processes, and stores information generated by laboratory processes. LIS systems interface with laboratory instruments and healthcare information systems.

Healthcare Technology Related: Middleware, HL7

M

Medication History

A comprehensive record of medications a patient has been prescribed, filled, or administered. Surescripts provides access to medication history from pharmacies, PBMs, and health plans across the country.

Healthcare Data Related: Surescripts, E-Prescribing

Middleware

Software that acts as a bridge between different applications or systems. In laboratories, middleware connects diagnostic instruments to LIS systems and enables data transformation and routing.

Technology Related: LIS, HL7

N

NewRx

The Surescripts transaction type for transmitting a new prescription electronically from a prescriber to a pharmacy. NewRx is the foundation of electronic prescribing.

E-Prescribing Related: Surescripts, RxRenewal

P

PBM (Pharmacy Benefit Manager)

A third-party administrator of prescription drug programs that negotiates with pharmacies and drug manufacturers on behalf of health plans. PBMs manage formularies, process claims, and provide drug utilization review.

Healthcare Business Related: Formulary, Prior Authorization

PHI (Protected Health Information)

Any information about health status, provision of healthcare, or payment for healthcare that can be linked to an individual. PHI is protected under HIPAA and must be secured in healthcare applications.

Compliance Related: HIPAA, ePHI

Prior Authorization (PA)

A requirement that a healthcare provider obtain approval from a health plan before a specific service, procedure, or medication is delivered. Electronic prior authorization (ePA) automates this process.

Healthcare Operations Related: PBM, Formulary

R

RPM (Remote Patient Monitoring)

The use of digital technologies to collect medical and health data from individuals in one location and electronically transmit it to healthcare providers in a different location. RPM is reimbursable under Medicare.

Healthcare Services Related: CCM, Telehealth

RTPB (Real-Time Prescription Benefit)

A Surescripts service that provides prescribers with patient-specific medication coverage and cost information at the point of prescribing, enabling more informed prescribing decisions.

E-Prescribing Related: Surescripts, Drug Pricing

S

SOC 2 (Service Organization Control 2)

An auditing procedure developed by AICPA that ensures service providers securely manage data. SOC 2 Type II certification requires demonstrated security controls over a period of time (typically 6-12 months).

Compliance Related: Security, Trust Service Criteria

Surescripts

The largest health information network in the United States, connecting pharmacies, PBMs, health plans, and healthcare providers. Surescripts processes billions of prescription transactions annually.

Healthcare Network Related: E-Prescribing, NewRx, EPCS

T

Telehealth

The delivery of health-related services via electronic information and telecommunications technologies. Includes video consultations, remote monitoring, mobile health apps, and asynchronous communications.

Healthcare Services Related: Telemedicine, RPM

Telemedicine

The practice of medicine using technology to deliver care at a distance. A subset of telehealth specifically focused on clinical services provided remotely by physicians and other healthcare providers.

Healthcare Services Related: Telehealth, Video Consultation

W

WCAG (Web Content Accessibility Guidelines)

International standards for making web content accessible to people with disabilities. Healthcare applications should meet WCAG 2.1 or 2.2 Level AA compliance to ensure accessibility for all users.

Standards Related: Accessibility, ADA

WebRTC (Web Real-Time Communication)

An open-source project providing web browsers and mobile applications with real-time communication via APIs. WebRTC enables HIPAA-compliant video consultations when implemented with proper security measures.

Technology Related: Telehealth, Video Consultation

Need Help Understanding Healthcare Requirements?

Our team can explain how these concepts apply to your specific project and guide you through the compliance landscape.

Schedule Free Consultation