From EHNAC and UDAP.org
Demonstrate your organization's privacy/security diligence and ability to use trusted digital certificates for endpoint identity, registration, authentication, and attribute discovery for electronic healthcare transactions in real-time with the Trusted Dynamic Registration & Authentication Accreditation Program (TDRAAP) from EHNAC and UDAP.org. As a CAQH Endpoint Directory client, you can take advantage of the EHNAC TDRAAP service at a reduced rate:
- TDRAAP- Basic: $200 discount
- TDRAAP- Comprehensive:
- $400 discount for organizations with annual revenue of <$75M
- $600 discount for organizations with an annual revenue of >$75M
Developed jointly by EHNAC and UDAP.org, TDRAAP is designed to help healthcare organizations and application developers demonstrate their ability to use trusted digital certificates for endpoint identity, registration, authentication, and attribute discovery for electronic healthcare transactions in real-time.
The program supports an organization’s continued focus on interoperability – a foundational component of the Office of the National Coordinator’s (ONC’s) Cures Act Final Rule and related CMS Interoperability and Patient Access Final Rule. TDRAAP combines technical certification with third-party review of privacy and security while enabling trust and transparency for organizational and individual access to data.
Choose from two TDRAAP program options:
|TDRAAP-Basic offers privacy and security self-attestation with targeted validation while the included Unified Data Access Profiles (UDAP) technical framework certification demonstrates that an entity’s end-to-end API can be trusted by patients and other industry stakeholders. The Basic program is designed specifically for developers of consumer-facing apps, also referred to as a patient’s “App of their Choice,” using individual sign-on for access to one patient’s FHIR data at a time within ONC-certified Health IT, payer systems, or other Health IT with the patient’s own credentials.|
TDRAAP-Comprehensive is designed for organizations wanting to demonstrate full HIPAA/HITECH Privacy and Security compliance and validation of all UDAP technical Workflows they support, including privileged client app or provider access to data. For example, FHIR Bulk Data requests, broadcast or targeted queries, authorization code flow in patient-directed or cross-organizational queries, or any setting in which multiple services deployed by the organization enable UDAP workflows.
FHIR® is the registered trademark of HL7 and is used with the permission of HL7.