Quality Assurance

Software quality is defined as conformance to explicitly stated functional and

performance requirements, explicitly documented development standards, and implicit
characteristics that are expected of all professionally developed software.
Since Nutrion is a mobile application then Quality Assurance is very important to satisfy
the userbase. We used unit test method to test our quality since it is the new standard.
We will be focused on ensuring the quality of our platform product, which lives in a
world where both of the platforms that we target (Android, Mac and iOS) are in constant
evolution as well the development environments that our users use .
• Quality Policies:
We used Xamarin.UITest, an Automated UI Acceptance Testing framework based on
Calabash that allows programmers to write and execute tests in C# and NUnit that
validate the functionality of iOS and Android Apps.
• Quality Metrics:
Typically, each UITest is written as a method that is referred to as a test. The class
which contains the test is known as a test fixture. The test fixture contains either a
single test or logical grouping of tests and is responsible for any setup to make the
test run and any cleanup that needs to be peformed when the test finishes. Each
test should follow the Arrange-Act-Assert pattern:
1. Arrange – The test will setup conditions and initialize things so that the test can
be actioned.
2. Act – The test will interact with the application, enter text, pushing buttons, and
so on.
3. Assert – The test examines the results of the actions performed in the Act step to
determine correctness. For example, the application may verify that a particular
error message is displayed
• Acceptance Criteria :
The best time get started with UITest is during the development of a
mobile application. Automated tests are written as a feature is being
developed according to the steps described in the following list:
1. Develop the feature in the Android and/or iOS application.
2. Write the tests and run them locally to verify functionality.
3. Create a new Test Run in Test Cloud, or use an existing Test Run.
4. Compile the iOS app bundle or the Android APK and then upload this
along with the tests to Test Cloud.
5. Fix any issues or bugs that are exposed by Test Cloud.
6. Repeat the process by moving on to the next feature for the
application.
 Project risks
Key Risks in the Healthcare Industry
Patient Safety Risks
Patient’s lives and health are put at risk when diseases are misdiagnosed, wrong treatments
are prescribed, or accidents occur in the operating room. All it takes is a moment of laxity,
ignorance or distraction to cause immense harm to patients and their families. Law suits are
inevitable, and reputational damage is long-lasting.
Fraudulent Claims Risks
Fraudulent claims - be it in the form of billing for services not rendered, administering
unnecessary tests and treatments, or unbundling lab services - can exhaust health benefits,
and drain the economy. Every year, the US loses between $70 billion and $234 billion to
fraud.1
Documentation Risks
Data entry errors, while unavoidable, can often be costly, and sometimes fatal. For instance,
wrongly documented medicine dosages, or allergies to a particular drug could adversely affect
a patient’s health. Billing or calculation errors could result in overpayments or underpayments
which would invite questioning from RAC auditors, and cause a loss of credibility.
Regulatory Risks
Healthcare is one of the most heavily regulated industries with mandates spanning HIPAA/HITECH,
PSQIA and the Affordable Care Act, as well as cross-industry regulations such as SOX, PCI DSS
and FCPA. Each of these mandates and regulations comes with hundreds of requirements for
systems, functions and processes. Regulatory scrutiny is intense, and non-compliance penalties are
heavy – not just in terms of monetary fines, but also brand impact.
Ethics and Integrity Risks
The allure of easy money prompts incidents of internal corruption such as accepting kickbacks for
patient referral, stealing confidential information or wrongfully altering patient records for financial
gain. Not only are these acts illegal, but they are also harmful to patient security and well-being.
Environmental and Health Risks
If medical waste is not disposed of properly, or proper hygiene and sanitation standards are not
followed, they could have a devastating effect on the environment and the external public. In a
worst case scenario, an infection could seep out and lead to a full-blown pandemic. To the
healthcare provider, this could spell immense financial loss, and even the shut-down of operations.
Risks of Leveraging Social Media
Healthcare organizations are engaging with social media for numerous reasons, including
marketing, communicating with patients, interacting with other physicians, and collecting
information about new developments in the industry. But, using social media can expose
organizations to potential regulatory, legal and reputational risks ranging from privacy violations, to
data abuse and theft.
 Important Risk Management Standards
• ISO 31000: This standard establishes principles for making risk management effective, and
integrating it into the organization’s overall governance, strategy, reporting practices, policies,
values and culture. By adhering to the standard, healthcare providers should be able to manage
any form of risk in a systematic, transparent and credible manner.
• JCAHO Patient Safety and Medical/Health Care Error Reduction Standards: These standards
are targeted at improving patient safety and reducing adverse patient outcomes through an
integrated and coordinated approach that specifically involves participation from leadership.
The standards encourage recognition of risks to patient safety, initiation of actions to reduce
these risks, reporting at each stage, organizational learning, and effecting of behavioural
changes to improve patient safety.
• ISO 9001: Although this standard focuses on quality management systems, it enables healthcare
providers to manage risks effectively by establishing a culture of patient safety, proactively
monitoring the effectiveness of organizational processes, strengthening records management,
and quickly detecting and correcting errors and problems.
• ISO 27799: The purpose of ISO 27799:2008 is to provide guidelines and a set of detailed
controls for managing health information security in accordance with the ISO/IEC 27002
standard. With the help of ISO 27799:2008, healthcare organizations and other holders of
personal health information will be able to protect the confidentiality, integrity and security of
health information, and minimize the risk of information security breaches.
 Risk Handling
• Ensuring Accountability: The solution enables healthcare organizations to assign risk
management responsibilities and roles based on skill sets and experience. The system
alerts the responsible personnel whenever policies are updated, threshold levels are
breached, or remedial action is required. It also helps define criteria for performance
measurement. In addition, the solution facilitates the efficient allocation and
management of resources with detailed reports of resource utilization, including total
resources requested, budgeted effort, and assigned resources.
• Embedding Risk management in the Organization: The solution closely maps each risk
to the corresponding policies and procedures, standards, compliance regulations,
processes, controls, assessments, issues and action plans. The solution can also be
mapped to complex organizational hierarchies, and easily adapt to changes in
organizational roles and responsibilities. Thus healthcare organizations are able to make
risk management an integral part of their business processes and strategic development.
• Building a Risk Management Strategy: The solution provides a centralized framework to
define risk management objectives, scope, criteria, responsibilities, methodologies and
other parameters. It also captures regulatory alerts and events from sources such as the
OIG and CMS, and combines them with embedded best practices and industry
guidelines, as well as internal policies, to help organizations develop a robust and sound
risk management strategy.
• Managing and Remedying Issues: Issues identified during risk or
control assessments are seamlessly routed to the soluyion Issue
Management module which triggers a systematic mechanism of issue
investigation and remediation. Healthcare providers are able to track
the status of issues as they automatically move from one stage to the
next. Automatic alerts keep the process on track, and ensure that the
appropriate personnel address the issue in time.