Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.encoreos.io/llms.txt

Use this file to discover all available pages before exploring further.

Feature: CL-25
Last Updated: 2026-04-01

Overview

The Clinical Audit & Compliance Dashboard provides compliance officers and clinical administrators with real-time visibility into PHI access patterns, break-glass events, consent compliance, documentation quality, 42 CFR Part 2 adherence, and regulatory deadlines.

Accessing the Dashboard

Navigate to Clinical → Audit & Compliance in the sidebar. You must have the cl.audit_dashboard.view permission.

Dashboard Tabs

Break-Glass Review Queue

Displays emergency PHI access events awaiting review. Each entry shows the user who accessed records, timestamp, and SLA status (hours remaining). Break-glass events exceeding the configured SLA (default: 24 hours) are flagged as overdue. To review an event: Click “Review” on any pending event, add justification notes, and confirm. Requires cl.audit_dashboard.break_glass_review permission.

Audit Log Viewer

Filterable list of all PHI access events from pf_audit_logs. Use the date range selector and search to narrow results by user, action type, or resource. Shows consent expiration buckets: expired, expiring within 30 days, and active. Helps identify patients needing consent renewal.

Documentation Quality

Per-provider documentation completeness metrics. Shows finalized vs. draft note ratios and identifies providers with documentation gaps.

Part 2 Compliance

Tracks 42 CFR Part 2 SUD consent coverage and access patterns for substance use disorder records.

Regulatory Calendar

Configurable deadlines for compliance activities (HIPAA risk assessment, Joint Commission survey prep, CARF review, etc.). Deadlines are organization-configurable.

Anomaly Detection

The dashboard automatically flags unusual access patterns:
  • High-volume access (exceeding configured threshold)
  • After-hours access outside business hours
  • Repeated same-patient access
Anomaly alerts appear in the Anomalies Detected card on the dashboard.