Nowadays, information system is recognised as one of the key points of the management strategy. An information system is regarded conceptualised as a mean to link 3 aspects of a firm (structure, organisation rules and staff). Its design and implementation have to meet the objectives of medical and economical evaluation, especially risk management objectives. In order to identify, analyse, reduce and prevent the occurrence of adverse events, and also to measure the efficacy and efficiency of the production of care services, the design of information systems should be based on a process analysis in order to describe and classify all the working practices within the hospital. According to various methodologies (usually top-down analysis), each process can be divided into activities. Each activity (especially each care activity) can be described according to its potential risks and expected results. For care professionals performing a task, the access to official or internal guidelines and the adverse events reporting forms has also to be defined. Putting together all the elements of such a process analysis will contribute to integrate, into daily practice, the management of risks, supported by the information system.