US Patent 9760962 Electronic health record web-based platform

A server for facilitating an electronic health record system. Each patient has a unique smart card. A processor: associates a security token with a patient; generates a one-time-use security code for storage based upon a security token; provides the one-time-use security code to the patient for storage on the smart card; applies two-factor authentication with the one-time-use security code for each login to a personal health record website presented by the processor; imports and exports the electronic health records associated with the patient based upon a request from the patient received through the personal health record website; generates a new one-time-use security code after each patient session based upon the respective security token; and provides the new one-time-use security code to the patient for storage on the smart card so that the personal health record website is accessed therewith.