If we want medical records to be accessible anytime anywhere, the patient has to give his permission for third parties (paramedics, doctors, etc) to access them. However, if the patient is unable to verify access (ex: the patient is unconscious), he can pick a representative to do the job instead of him. This creates a security breach since the patient is no longer the only one to decide who has access to all his medical information. This implies that the patient has to check every once in a while who he or his representatives gave access to.
How do we circumvent this problem, am i missing anything,