Help Center
News
Help Center
News
Popular
Architecture and High-level Information
Scans
Agents
How to Use Dashboards
How to Use Data Asset Inventory
How to Install\Uninstall and Set Up Spirion Sensitive Data Platform
How to Use Logs
How to Manage Users and Roles
Reports
Settings and Resources
Additional Resources
Release Notes
Reporting API
Customer Support Articles
How to Follow Data Through the Search PipelineEndpoint for Windows Configuration Reference GuideEndpoint Software Command Line InterfaceBasic Troubleshooting Steps (Enterprise Console)Endpoints or Results Fail to be Displayed in the ConsoleMongoDB and TLS 1.3SQL Client SQL Exception ErrorHow to Troubleshoot Spirion Client Search Failures and How to WhitelistCustomer Notice – Spirion Agent Update & Security Assessment for PostgreSQLHow to Enable Verbose/Debug Logging for the Endpoint ServiceHow can I monitor the status of a queue job?Can I monitor the job queue status automatically?Troubleshooting: "Unable to find job queue: search_queue"How to Verify the Discovery Agent's StatusHow to check if port 6433 is open on your networkWhat is the SDM Translator Service?Can Spirion Sensitive Data Platform be integrated with Microsoft Active Directory?Windows ARM SupportHow to Create a Single Tenant App for OneDrive and Exchange Online SearchesHow to Configure Spirion for Sybase DiscoveryHow to Use Certificates to Authenticate with SharePoint OnlineHow to Quarantine to a Remote Location Using Spirion Sensitive Data PlatformA Server Error has Occurred: How to use the Chrome Developer ToolsWhy doesn't my Oracle 19c Database scan?How to Enable Full Disk Access on a Mac AgentWhy is My Scan Node Running Out of Disk Space?What to do about Message Processing and Delays, also known as 'Lag,' in SpirionDetails About the Box API used by Spirion to Search Box AccountsHow to Build a Mac Package (PKG)How to Sanitize AgentsHow to Set User and Role AccessHow to Enable SSL Communication between Linux Agents and the Spirion ConsoleHow to Enable HTTPS for the Spirion ConsoleHow to Search BoxFAQ: How do I avoid being prompted to re-login to the Spirion console?Spirion Sensitive Data Platform Scan PerformanceHow to Authenticate to SharePoint On-PremiseHow to Configure Spirion Sensitive Data Platform to Connect to an Oracle DatabaseFAQ: Linux 12.5 Client Package Build WorkaroundTroubleshoot Exchange Online Using Microsoft Graph ExplorerFAQ: What to do when an agent will not start the discovery team scan?Required SQL Server PermissionsHow to Scan Microsoft Teams with Spirion Sensitive Data PlatformField Input Using Linux Machines Anti-virus Alerts Received during Spirion SearchVersion 13.6 MSI Installation Issues - Exe file not signedWhat are common firewall rules needed for distributed scans?How do I create a custom regex for medical record numbers?

How do I create a custom regex for medical record numbers?

To create a custom regex for Medical Record Numbers (MRNs), you need to define a Custom Data Type in the Spirion Console.

Because MRN formats vary significantly between healthcare providers (for example, Epic vs. Cerner vs. legacy systems), a custom RegEx is the most accurate way to detect them.

Step 1: Define the Pattern

First, identify the exact structure of your MRNs.

  • Example A (Simple Numeric): 12345678 (8 digits)
    • Regex: \b\d{8}\b
  • Example B (Alphanumeric with Prefix): MRN-12345
    • Regex: \bMRN-\d{5}\b
  • Example C (Complex): AB-123-45
    • Regex: \b[A-Z]{2}-\d{3}-\d{2}\b

Step 2: Create the Custom Data Type in the Console

Procedure:

  1. From the left-side navigation menu navigate to Settings > Global Data Types > CUSTOM DATA TYPES tab.
  2. Click Actions > Add Custom Data Type.
  3. Select Regular Expression from the drop-down menu.
  4. Name: Give it a clear name like Custom MRN - [Hospital Name].
  5. Regex Pattern: Enter your pattern (for example, \b\d{8}\b).
    • Tip: Always use \b (word boundaries) at the start and end to prevent matching a 8-digit string that is actually part of a longer number (like a phone number).
  7. Validation (Optional but Recommended):
    • If your MRN has a checksum, you can use a SearchAPI script for advanced validation.
    • Otherwise, rely on Keywords (see Step 3).

Step 3: Add Context with Keywords (Reduce False Positives)

A 8-digit number regex will match everything—dates, serial numbers, and parts of zip codes. You must add keywords to ensure accuracy.

  1. In the same Custom Data Type definition, look for the Keywords section.
  2. Add terms such as the following: MRN, Medical Record, Patient ID, Patient Number, Chart Number.
  3. Set the Proximity: Require one of these keywords to be within 50 to 100 characters of the RegEx match.

Step 4: Test and Deploy

  1. Test: Use the "Test Regex" tool in the console (if available) or run a scan against a single test file containing known MRNs.
  2. Add to Policy: Go to your Scan Policy, navigate to Sensitive Data Types, and check the box for your new Custom MRN type.
  3. Run Scan: Execute the scan and review the Match Evidence to ensure it is picking up the MRNs correctly without too much noise.

Best Practice: The "SDD" Upgrade

Once your regex is working, wrap it in a Sensitive Data Definition (SDD).

  • Create a Sensitive Data Definition called "Confirmed PHI".
  • Logic: (Custom MRN Regex) NEAR (Patient Name AnyFind).
  • Why: This ensures that you only alert on files where an MRN is actually associated with a person, which is the true definition of PHI under HIPAA.

Summary

Use a Custom Regex Data Type with word boundaries (\b), add Keywords for context, and eventually combine it with AnyFinds in a Sensitive Data Definition for the highest possible accuracy.

Was this article helpful?

Powered by Product Fruits