By George Curta · Last updated 2026-06-042026-06-04

Rudi kwa BlogHuduma za Afya

Ugunduzi wa MRN wa HIPAA Bila Kujua Regex

Muundo wa MRN wa kila hospitali ni tofauti. Memorial hutumia MRN:XXXXXXX, St. Mary's hutumia PT-YYYYY, University Hospital hutumia UHN-XXXXXXXXXX.

George CurtaJune 4, 20266 dakika kusoma

HIPAA de-identificationMRN patternhealthcare ITAI pattern generationPHI detection

Ugunduzi wa MRN wa HIPAA Bila Kujua Regex

Muundo wa MRN wa hospitali yako haupo katika zana yoyote ya kawaida ya PII. Hapa kuna jinsi ya kuuongeza katika dakika tano. Hakuna nambari zinazohitajika.

Timu za teknolojia za huduma za afya zinakabiliwa na tatizo la HIPAA ambalo sekta nyingine hazina. Kitambulisho wanachohitaji zaidi kukigundua - Nambari ya Rekodi ya Matibabu - kimewekwa na hospitali yao wenyewe. Hakuna kiwango cha kitaifa.

Kila mradi wa kutoweka utambulisho wa HIPAA unahitaji usanidi maalum. Bila hiyo, MRN zinapita bila kutambuliwa kwenye faili "zilizotowezwa utambulisho".

Tatizo la MRN kwa Mtandao wa Hospitali Nyingi

Mtandao wa hospitali uliojengwa kupitia muungano una mifumo ya zamani ya EHR. Kila mfumo una muundo wake wa MRN:

Memorial Hospital (Epic): MRN:XXXXXXX - nambari yenye tarakimu 7 na kiambishi awali
St. Mary's (Cerner): PT-YYYYY - yenye tarakimu 5 na kiambishi awali cha mgonjwa
University Hospital (Meditech): UHN-XXXXXXXXXX - mchanganyiko wa herufi 10
Kliniki (EMR ya kujitegemea): C\d{5} - herufi C pamoja na tarakimu 5

HIPAA Safe Harbor inahitaji kuondoa aina zote 18 za vitambulisho. Kategoria 8 ni nambari za rekodi za matibabu. Zana isiyojua muundo wako itazikosa. Faili inaonekana safi. Si hivyo.

Jamii ya ServiceNow ya afya imebainisha tatizo hili hasa. Zana za kawaida hukamata SSN na nambari za simu. Hukosa MRN za vituo kila wakati.

Kizuizi cha Regex

Kuongeza sheria maalum kwa Microsoft Presidio - msingi wa chanzo wazi kwa zana nyingi za HIPAA - kunahitaji ujuzi wa kweli:

Unahitaji kujua darasa la PatternRecognizer
Lazima uandike regex katika muundo wa Python
Lazima uunde faili za usanidi wa YAML
Lazima urekebisha alama za kuamini
Lazima ujaribu na kurekebisha hati za Python

Afisa wa utiifu anayejua muundo wa MRN hawezi kufanya hili peke yake. Suluhu inaishia kama tiketi ya uhandisi. Inakaa kwenye foleni kwa wiki 6-8. Pengo linabaki wazi.

Utengenezaji wa Mfumo kwa Msaada wa AI

Kuna njia ya haraka zaidi. Eleza mfumo kwa maneno ya kawaida. Pata regex inayofanya kazi kurudi.

Hatua:

Fungua kijenzi cha kitengo maalum
Toa mifano: "MRN zetu zinaonekana hivi: MRN:1234567, MRN:9876543, MRN:0001234"
AI inajenga sheria: MRN:\d{7}
Jaribu kwenye rekodi 10 za sampuli
MRN zote zimegundulika? Hifadhi na uweke.

Kwa mtandao wenye miundo 4 ya MRN:

Memorial Hospital - MRN:\d{7}
St. Mary's - PT-\d{5}
University Hospital - UHN-[A-Z0-9]{10}
Kliniki - C\d{5}

Tengeneza vitengo vinne maalum. Vikundi kuwa mipangilio. Tekeleza kwenye faili zote. Muda: mchana mmoja.

Angalia ugunduzi maalum wa MRN katika mstari wa HIPAA bila nambari kwa mwongozo kamili.

Uthibitishaji kwa Safe Harbor

HIPAA Safe Harbor inasema shirika linalohusika haliwezi kuwa na "maarifa halisi" kwamba data inaweza kumtambua mtu. (45 CFR §164.514(b))

Uthibitishaji unaonyesha kwamba sheria zako maalum zinashughulikia aina zote 18 za vitambulisho.

Hatua 1: Chora sampuli. Pata rekodi 100 kutoka kwa kila tovuti. Changanya vipindi vya wakati na idara.

Hatua 2: Tekeleza ugunduzi. Sindika nyaraka zote 400 na sheria zako maalum.

Hatua 3: Ukaguzi wa binadamu. Kagua hati 20 kwa mkono (sampuli ya 5%). Tafuta MRN zilizokosekana na matokeo yasiyosahihi.

Hatua 4: Rekebisha sheria. MRN zilizokosekana? Panua mfumo. Matokeo mengi yasiyosahihi? Ongeza mipaka ya maneno.

Hatua 5: Andika chini. Rekodi sheria, ukubwa wa sampuli, matokeo, na tarehe. Rekodi hii ni rekodi yako ya Safe Harbor.

Angalia ufafanuzi wa ufutaji na njia za ukaguzi wa HIPAA kwa maelezo zaidi ya kile cha kuandika.

Mfuniko Kamili wa Safe Harbor

Baada ya kurekebisha ugunduzi wa MRN, angalia kategoria zote 18.

Kategoria	Zana za Kawaida	Maalum Inahitajika?
1. Majina	Mfano wa NER	Hapana
2. Data ya kijiografia	Ugunduzi wa mahali	Hapana kwa jimbo; Ndiyo kwa nambari za tovuti
3. Tarehe	Ugunduzi wa tarehe	Hapana
4. Nambari za simu	Ugunduzi wa simu	Hapana
5. Nambari za faksi	Ugunduzi wa simu	Hapana
6. Anwani za barua pepe	Ugunduzi wa barua pepe	Hapana
7. SSN	Ugunduzi wa SSN	Hapana
8. Nambari za rekodi za matibabu	Haijajengwa	Ndiyo - maalum ya tovuti
9. Nambari za wanachama wa mpango wa afya	Sehemu	Mara nyingi ndiyo - maalum ya mlipaji
10. Nambari za akaunti	Sehemu	Mara nyingi ndiyo - muundo wa bili
11. Nambari za leseni	Sehemu	Mara nyingi ndiyo - maalum ya jimbo
12. Vitambulisho vya magari	Sehemu	Nadra katika hati za kliniki
13. Vitambulisho vya vifaa	Sehemu	Ndiyo ikiwa vifaa vipo kwenye rekodi
14. URL za wavuti	Ugunduzi wa URL	Hapana
15. Anwani za IP	Ugunduzi wa IP	Hapana
16. Vitambulisho vya biometric	Muktadha wa maandishi	Nadra katika maelezo ya kutolewa
17. Picha	Picha peke yake	Nje ya upeo kwa maandishi
18. Vitambulisho vingine vya kipekee	Haijajengwa	Ndiyo - maalum ya tovuti

Kwa maandishi ya kliniki, kategoria 8, 9, 10, na 18 mara nyingi zinahitaji usanidi maalum.

Muktadha wa Hati za Kliniki

Maelezo ya kutolewa, maelezo ya kliniki, na ripoti za upasuaji ni faili kuu zinazoshirikiwa kwa utafiti. Zina:

MRN kwenye vichwa na miguu ya kurasa
Nambari za akaunti katika sehemu za bili
Tarehe za matukio yote - kulazwa, utaratibu, maabara, dawa
Majina ya madaktari na nambari za DEA
Maelezo ya daktari wa rufaa
Vitambulisho vya wanachama wa bima

Sheria maalum za miundo maalum ya tovuti zinaoanishwa na sheria zilizojengwa kwa miundo ya kawaida. Hii inatoa mfuniko kamili wa Safe Harbor.

Hitimisho

Kutoweza utambulisho wa HIPAA bila sheria maalum si kutoweka utambulisho wa Safe Harbor. Muundo wa MRN wa kila hospitali ni wa kipekee. Zana za kawaida huzikosa. Pengo la utiifu ni halisi na linabaki wazi hadi ulipofunga.

Utengenezaji wa mfumo wa AI hukata suluhu kutoka wiki 6-8 za uhandisi hadi mchana mmoja wa kazi ya utiifu. Eleza muundo. Ujaribu kwenye rekodi halisi. Uweke. Imemaliza.

Vyanzo

Makala Zinazohusiana

HIPAA OCR: 725 Breaches, 275M Records

HHS OCR reported 725 HIPAA breaches in 2024 affecting 275M records — the highest ever. $10.22M average healthcare breach cost.

Handwritten Form OCR & PII Detection

A mid-size hospital processes 50,000 handwritten intake forms per year. Manual PII redaction at this volume requires 0.5 FTE.

HHS 2025: AI Clinical Notes Need PHI

AI transcription systems can inadvertently put Patient A's PHI in Patient B's record. Here's why real-time PHI detection before EHR commit is the control.

Tayari kulinda data yako?

Anza kuanonymisha PII na aina 285+ za vitu katika lugha 48.

Anza Jaribio la Bure Tazama Vipengele

About this page

We update this page when our platform or the law changes.

Read our founder note for how we work.

Each change shows up in the timestamp at the top.

Related reading

We follow these rules

GDPR (EU 2016/679).
ISO/IEC 27001:2022.
NIS2 (EU 2022/2555).
HIPAA safe harbor under 45 CFR § 164.514(b)(2).

Our promise

We do not sell your data.

We do not train models on your text.

We store your files in Germany.

You can delete your account at any time.

You own your work.

Where we run

Our servers live in Falkenstein, Germany.

We use Hetzner. They hold ISO 27001 certification.

All data stays in the EU.

Backups run every day.

Need help?

Email support@anonym.legal.

We reply within one business day.

How we test

We run a full check suite on every release.

Each surface gets its own sweep script and report.

Human reviewers spot-check the output each week.

We track recall and precision on a labelled set.

Bad runs block the deploy.

What we never do

We never sell your information to third parties.
We never train models on what you upload.
We never keep your work after you delete it.
We never share keys with any outside firm.
We never run ads inside the product.

Plans in plain words

We sell credits, not seats.

One credit covers one short job.

Long jobs use a few credits each.

You can top up at any time.

Unused credits roll over each month.

Read the plans page for current rates.

Who built this

A small team of engineers and lawyers built this.

We ship from Europe and work in the open.

Our founder note spells out why we started.

Where to start

How the parts fit

A browser add-on cleans text inside Chrome.

A Word plug-in handles drafts in Office.

A small desktop tool works on whole folders.

An agent protocol link feeds large models safely.

All four share one core engine and one rule set.

Words from our team

We started this work after a lunch about cookies.

One friend kept getting odd ads on her phone.

We asked why a court file leaked through a draft.

We sketched the first build on a napkin that week.

By month three we had a tiny demo for a friend.

She used it on her first case the next day.

Common questions we hear

Can the tool read scanned PDFs? Yes, with OCR.

Does it work on long files? Yes, in small chunks.

Can I roll my own rule set? Yes, save it as a preset.

Does it run offline? The desktop build runs offline.

Do you keep my files? No, the cloud build wipes after each run.

Will it learn from my work? No, we never train on inputs.

A short tour of the workflow

Upload a file or paste a snippet of prose.

Pick the entities you want gone from the draft.

Choose a method: replace, mask, hash, encrypt, or redact.

Press run and watch the side panel show each hit.

Skim the result and tweak any rule that misfired.

Save the cleaned file or send it to a teammate.