How TEFCA supports Benefits Determination
TEFCA facilitates the secure health information exchange to assist federal or state government agencies in deciding whether a person is eligible for federal or state benefits for any reason other than health care.
Sample workflow for Government Benefits Determination
Step 1
Query the TEFCA network
The United States Social Security Administration (SSA) requests medical information from TEFCA exchange through a connected QHIN.
Step 2
Retrieve medical records
Medical records are securely retrieved under the permitted exchange purpose of Benefits Determination.
Step 3
Facilitate benefits determination
The SSA uses the retrieved information to facilitate disability benefits determination for an applicant.
Learn more about Gov't Benefits Determination
![](https://cdn.prod.website-files.com/62719a041d28d7b5603dd995/656f8730861eb90f82a94067_Common-Agreement-Users-Guide-version-1.1-dated-3.22%201.png)
User’s Guide to the Trusted Exchange Framework and Common Agreement
Learn more about the goals of TEFCA, QHINs, permitted exchange purposes, and security and privacy requirements.
A Guide to TEFCA's Six Exchange Purposes
Read about the six permitted exchange purposes under TEFCA and how Health Gorilla will facilitate these expanded purposes of use.
Secure and trusted
![](https://cdn.prod.website-files.com/62719a041d28d7b5603dd995/62aa311f390ff411d9023ae7_Document%20with%20checkmark.png)
HITRUST R2
We’re HITRUST R2 certified, which means that we successfully manage cybersecurity risks by exceeding industry-defined information security requirements.
![](https://cdn.prod.website-files.com/62719a041d28d7b5603dd995/62aa311fd9359133446dedf5_Lock%20with%20checkmark.png)
SOC 2 Type 2
SOC 2 Type 2 is a stamp of approval on our controls relevant to data security, availability, processing, integrity, confidentiality, and privacy.
![](https://cdn.prod.website-files.com/62719a041d28d7b5603dd995/62aa311f0718bfd079941ab9_Shield%20with%20checkmark.png)
HIPAA
Complying with applicable health data laws, including HIPAA, is ingrained in our culture, processes, and staff training.