Certified Provider APIs
Netsmart's Certified Provider APIs enable healthcare providers to securely access and exchange patient data in compliance with federal regulations including the 21st Century Cures Act and CMS Interoperability Rules. These FHIR R4-compliant APIs support modern healthcare workflows while ensuring data security and patient privacy.
Overview
Our Provider APIs are designed for healthcare provider organizations including hospitals, clinics, physician practices, and health systems. These APIs facilitate secure data exchange between electronic health record (EHR) systems, third-party applications, and healthcare stakeholders.
API Types
Patient Access API
Enables individual patients to access their own health records through patient-facing applications. Supports OAuth 2.0 authorization code flow with patient consent.
Key Features:
- Patient-controlled data access
- SMART on FHIR launch patterns
- Comprehensive health record access
- Real-time data retrieval
View Patient Access API Documentation
System Access API
Provides system-to-system integration capabilities for healthcare applications, including bulk data export for population health management and quality reporting.
Key Features:
- Backend system authentication
- Bulk FHIR data export
- Automated data synchronization
- Population health analytics support
View System Access API Documentation
Supported FHIR Resources
Both APIs support a comprehensive set of FHIR R4 resources based on US Core 6.1.0 profiles:
| Category | Resources |
|---|---|
| Base | Patient, Practitioner, Organization, Location, RelatedPerson |
| Clinical | AllergyIntolerance, Condition, Procedure, Observation, DiagnosticReport, Immunization, Specimen, MedicationRequest, MedicationDispense |
| Workflow | Encounter, EpisodeOfCare, ServiceRequest, CarePlan, CareTeam |
| Financial | Coverage |
| Specialized | Device, DocumentReference, Binary, Group, Provenance |
Implementation Standards
Our Provider APIs implement multiple FHIR Implementation Guides:
- US Core 6.1.0 - Core FHIR profiles for US healthcare
- Bulk Data 2.0.0 - Asynchronous bulk data export (System Access)
- SMART App Launch 2.0 - OAuth 2.0 profiles for healthcare apps
Authentication & Security
Patient Access
- OAuth 2.0 Authorization Code Flow
- SMART on FHIR launch patterns
- Patient consent and authorization
- PKCE (Proof Key for Code Exchange) support
System Access
- OAuth 2.0 Client Credentials Grant
- Private Key JWT authentication
- System-level scopes and permissions
- Bulk data export capabilities
Getting Started
- Review Prerequisites - Ensure you have CareConnect tenant access and API credentials
- Choose Your API Type - Select Patient Access or System Access based on your use case
- Set Up Authentication - Configure OAuth 2.0 flows for your application
- Explore Resources - Review supported FHIR resources and operations
- Test Integration - Use preview environments before production deployment
Environment Information
Production Environment
- Base URL:
https://fhir.netsmartcloud.com/provider/ - Patient Access:
/patient-access/v2/{tenant-id} - System Access:
/system-access/v2/{tenant-id}
Preview Environment
- Base URL:
https://fhirtest.netsmartcloud.com/provider/ - Patient Access:
/patient-access/v2/{tenant-id} - System Access:
/system-access/v2/{tenant-id}
Regulatory Compliance
These APIs are certified to meet federal healthcare interoperability requirements:
- 21st Century Cures Act - Patient access to electronic health information
- CMS Interoperability Rules - Provider data sharing requirements
- ONC Health IT Certification - Standardized API criteria compliance
- HIPAA Security - Protected health information safeguards
Use Cases
Patient Access API
- Patient portal integrations
- Mobile health applications
- Personal health record systems
- Patient engagement platforms
System Access API
- EHR-to-EHR data exchange
- Population health management
- Quality measure reporting
- Clinical decision support systems
- Healthcare analytics platforms
Support Resources
- Authentication Guide - OAuth 2.0 implementation details
- Tutorials - Step-by-step integration guides
- Error Handling - Common issues and troubleshooting
- Technical Support - Contact Netsmart for integration assistance
Next Steps
Ready to integrate? Choose your API type and follow the detailed documentation:
- Patient Access API - For patient-facing applications
- System Access API - For system-to-system integration
Each API includes comprehensive resource documentation, authentication guides, and practical examples to help you build successful healthcare integrations.