The National eHealth Security and Access Framework (NESAF) has been developed by NEHTA to assist Australian healthcare provider organisations identify and assess risks that may affect their organisation. Using a risk-based approach to information security it can assist all healthcare provider organisations, regardless of their size or the complexity of their eHealth information exchanges.
The mission for the NESAF is to ensure that:
- Access to consumer health information is consistently controlled and monitored as it transitions through independent organisations, business processes and systems in the Australian healthcare sector.
- All electronic health information is traceable from its creation at a verifiable trusted source, through its transition and possible augmentation en route to its destination.
The NESAF document suite provides comprehensive coverage of security, as well as access guidance for the Australian healthcare sector. It provides standards, tools, and guides to build and implement secure systems that protect patient data and eHealth related assets, while providing the framework required for ensuring patient safety and privacy.
The document map below shows the NESAF v4 suite of documents tailored for different audiences. The industry guides are currently undergoing industry consultation before release.
Download: National eHealth Security and Access Framework Specifications (NESAF) v4
In addition, introductory brochures are available via the following links: