Morrow Technologies Inc

The Home of Interoperability

See whats happening @ Interops Team

Interops TeamLeads the way in Healthcare IT, Interoperabilty, Healthcare Integrations, Smart Apps and HIPAA, aligning with U.S. industry standards and implementation guides.

Interops Team logo
C-CDA Carin Da Vinci HealthIT.gov HIPAA HL7 FHIR HL7v2 IHE USA Smart TEFCA

Joe Morrow

Sr. Healthcare IT Solutions Architect

President/Owner, Morrow Technologies Inc.

Healthcare IT (EMR), Integration & Interoperability and HIPAA Expert, From strategy to architecture to technical leadership.

Joe Morrow, a senior healthcare IT solutions architect, leads clinical and technical architecture solutions for EMR’s, clinical applications, integrations and interoperability, focusing on healthcare industry standards and best practices. Joe has more than 35 years of experience in healthcare primarily with providers and vendors specializing in patient privacy and security (HIPAA) and patient health and safety (ONC/ATSP).. Joe’s expertise spans across all healthcare industry standards including HL7v2, HL7v3, FHIR, IHE and common technology stacks that implement them.

Photo of Joe Morrow
  • I help teams identify the right SMEs, architect compliant solutions
  • I provide design-level mockups and samples to accelerate integration efforts, grounded in real-world healthcare workflows and standards.
  • Now curating AI-driven solutions around FHIR, HL7v2, IHE, CCDA, and CMS mandates with a focus on scalable, compliant, and standards-aligned architectures for providers and digital health platforms.

Reach out if you want to learn more!!!

HL7 v2FHIR / US CoreC-CDA IHE XDS/XCA/XDRTEFCAOkta / SSO Da Vinci (CRD/DTR/PAS/CDex)CARIN Event-driven IntegratoinsHealthcare Integration Platforms, ESB's, Pub/Sub

Healthcare IT

  • Standards & Implementation Guides: U.S. Realm HL7v2 events, FHIR APIs, C‑CDA, X12, and DICOM where appropriate.
  • Identity & Access: Enterprise SSO, SMART on FHIR launch contexts, OAuth scopes, and HIPAA audit frameworks aligned with OCR/ONC/internal reviews.
  • Healthcare Enterprise: Seamless integration between EMR platforms and external apps, registries, and payer networks.
  • Enterprise Enablement: Deploying API service layers, api gatways, an enterprise service bus and much more!
  • Compliance & Governance: Continuous validation against regulatory requirements, audit readiness, and secure data stewardship across clinical and financial domains.

HIPAA

  • Privacy & Security: Administrative, physical, and technical safeguards aligned with HIPAA Security Rule requirements.
  • Audit Readiness: OCR/ONC audit frameworks with continuous logging, retention, and traceability of PHI access.
  • Access Controls: Role‑based authorization, least‑privilege enforcement, and multi‑factor authentication for workforce members.
  • Data Protection: End‑to‑end encryption (in transit and at rest) with key management and breach notification protocols.
  • Compliance Operations: Policies, procedures, and training programs ensuring workforce adherence to HIPAA Privacy and Security Rules.
  • Risk Management: Ongoing risk assessments, vulnerability scans, and remediation cycles to maintain compliance posture.

Healthcare Integration

  • Interface orchestration: 24x7 real-time flows across the healthcare organization
  • Production Control: Event‑driven production baselines, change detection and management for EMR and ancillary systems.
  • Clinical Context: Understanding clinical context and terminologies is key to normalizing clinical data that will be compliant and protect data integrity.
  • Automated reconciliation: Lab, pharmacy, and imaging feeds with exception handling and retry logic.
  • Continuous monitoring: Throughput, latency, and transaction integrity dashboards with alerting.

Interoperability

  • Standards-based exchange: USCDI, TEFCA, IHE and Direct standards for cross‑network trust and parity.
  • Patient Identity Management:IHE Standards based identity management for patient registries, PIX/PDQ and eMPI, probabilistic matching
  • Cross-vendor validation: Semantic fidelity between FHIR resources and C‑CDA documents.
  • Prior Authorizations Support of Da Vinci's Coverage Requirements Discovery (CRD), Documents and Templates (DTR), Prior Authorizations (PAS) and Clinical Data Exchage (CDex).
  • Patient Data Exchange Support of Da Vinci's PDex and CARIN Blue Button for Patient, Provider Access and Payer-To-Payer exchange .
  • Governance: Data use agreements, endpoint certification, and compliance attestation.

Smart App's

  • SMART on FHIR: Launch contexts with granular OAuth scopes and patient‑centric authorization.
  • Decision support: CDS Hooks and CQL integration for embedded clinical guidance.
  • Adaptive UI: Components tailored for provider, patient, and payer personas with responsive design.
  • Telemetry: Analytics‑ready event streams for usage, outcomes, and continuous improvement.

Ready to talk?

Quick discovery call to scope your interoperability or CMS mandate effort.

Healthcare updates from around the web
Perficient feed
Health IT Buzz Blog
HIT Consultant feed
NYT Health
NYT Wellness