IHE PCF Explicit Advanced Consent - Privacy Consent on FHIR (PCF) v1.1.1-current

Privacy Consent on FHIR (PCF)
1.1.1-current - ci-build International flag

Privacy Consent on FHIR (PCF), published by IHE IT Infrastructure Technical Committee. This guide is not an authorized publication; it is the continuous build for version 1.1.1-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/IHE/ITI.PCF/ and changes regularly. See the Directory of published versions

Resource Profile: IHE PCF Explicit Advanced Consent

Official URL: https://profiles.ihe.net/ITI/PCF/StructureDefinition/IHE.PCF.consentAdvanced				Version: 1.1.1-current
Active as of 2025-10-07				Computable Name: AdvancedConsent

Explicit Advanced Consent

all elements allowed by Basic and Intermediate are allowed here, plus the following
securityLabel indicates sensitivity or confidentiality tags on data
- Only codes from Avanced Security Tag ValueSet

Usages:

Examples for this Profile: Consent/ex-consent-advanced-normal-break-glass-restricted, Consent/ex-consent-advanced-normal-focused-psy-or-sdv, Consent/ex-consent-advanced-normal-focused-psy, Consent/ex-consent-advanced-normal-focused-restricted... Show 3 more

You can also check for usages in the FHIR IG Statistics

Formal Views of Profile Content

Description of Profiles, Differentials, Snapshots and how the different presentations work.

Key Elements Table
Differential Table
Snapshot Table
Statistics/References
All

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
Consent	C	0..*	Consent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time Constraints: ppc-1, ppc-2, ppc-3, ppc-4, ppc-5
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
status	?!Σ	1..1	code	draft \| proposed \| active \| rejected \| inactive \| entered-in-error Binding: ConsentState (required): Indicates the state of the consent.
scope	?!Σ	1..1	CodeableConcept	Which of the four areas this resource covers (extensible) Binding: ConsentScopeCodes (extensible): The four anticipated uses for the Consent Resource. Required Pattern: At least the following
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/consentscope
version		0..1	string	Version of the system - if relevant
code		1..1	code	Symbol in syntax defined by the system Fixed Value: patient-privacy
display		0..1	string	Representation defined by the system
userSelected		0..1	boolean	If this coding was chosen directly by the user
text		0..1	string	Plain text representation of the concept
category	Σ	1..*	CodeableConcept	Classification of the consent statement - for indexing/retrieval Binding: ConsentCategoryCodes (extensible): A classification of the type of consents found in a consent statement.
patient	Σ	1..1	Reference(Patient)	Who the consent applies to
dateTime	Σ	1..1	dateTime	When this Consent was created or indexed
performer	Σ	1..*	Reference(Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Who is agreeing to the policy and rules
organization	Σ	1..*	Reference(Organization)	Custodian of the consent
source[x]	Σ	1..1		Source from which this consent is taken
sourceAttachment			Attachment
sourceReference			Reference(Consent \| DocumentReference \| Contract \| QuestionnaireResponse)
provision	SΣ	1..1	BackboneElement	Constraints to the base Consent.policyRule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type	Σ	1..1	code	deny \| permit Binding: ConsentProvisionType (required): How a rule statement is applied, such as adding additional consent or removing consent.
period	SΣ	0..1	Period	Timeframe for this rule
actor	S	0..*	BackboneElement	Who\|what controlled by this rule (or group, by role)
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
role		1..1	CodeableConcept	How the actor is involved Binding: SecurityRoleType (extensible): How an actor is involved in the consent considerations. Required Pattern: At least the following
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
version		0..1	string	Version of the system - if relevant
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
display		0..1	string	Representation defined by the system
userSelected		0..1	boolean	If this coding was chosen directly by the user
text		0..1	string	Plain text representation of the concept
reference		1..1	Reference(Device \| Group \| CareTeam \| Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Resource for the actor (or group, by role)
securityLabel	Σ	0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
purpose	SΣ	0..*	Coding	Context of activities covered by this rule Binding: PurposeOfUse (extensible): What purposes of use are controlled by this exception. If more than one label is specified, operations must have all the specified labels.
provision	S	0..*	BackboneElement	Nested Exception Rules
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
securityLabel	Σ	0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
Documentation for this format

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
Consent.status	Base	required	ConsentState	📍4.0.1	FHIR Std.
Consent.scope	Base	extensible	Consent Scope Codes	📍4.0.1	FHIR Std.
Consent.category	Base	extensible	Consent Category Codes	📍4.0.1	FHIR Std.
Consent.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	Consent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	Consent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	Consent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	Consent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	Consent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
ppc-1	error	Consent	Either a Policy or PolicyRule	`policy.exists() or policyRule.exists()`
ppc-2	error	Consent	IF Scope=privacy, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='patient-privacy').exists().not()`
ppc-3	error	Consent	IF Scope=research, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='research').exists().not()`
ppc-4	error	Consent	IF Scope=adr, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='adr').exists().not()`
ppc-5	error	Consent	IF Scope=treatment, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='treatment').exists().not()`

This structure is derived from Consent

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
Consent		0..*	Consent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
scope		1..1	CodeableConcept	Which of the four areas this resource covers (extensible) Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/consentscope
code		1..1	code	Symbol in syntax defined by the system Fixed Value: patient-privacy
patient		1..1	Reference(Patient)	Who the consent applies to
dateTime		1..1	dateTime	When this Consent was created or indexed
performer		1..*	Reference(Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Who is agreeing to the policy and rules
organization		1..*	Reference(Organization)	Custodian of the consent
source[x]		1..1	Attachment, Reference(Consent \| DocumentReference \| Contract \| QuestionnaireResponse)	Source from which this consent is taken
policy
uri		1..1	uri	Specific policy covered by this consent
verification		0..0
provision	S	1..1	BackboneElement	Constraints to the base Consent.policyRule
type		1..1	code	deny \| permit
period	S	0..1	Period	Timeframe for this rule
actor	S	0..*	BackboneElement	Who\|what controlled by this rule (or group, by role)
role		1..1	CodeableConcept	How the actor is involved Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
action		0..0
securityLabel		0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
purpose	S	0..*	Coding	Context of activities covered by this rule
class		0..0
code		0..0
provision	S	0..*	BackboneElement	Nested Exception Rules
securityLabel		0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
provision		0..0
Documentation for this format

Terminology Bindings (Differential)

Path	Status	Usage	ValueSet	Version	Source
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG

Description & Constraints Filter: Filters

Consent

C

0..*

Consent

A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
Constraints: ppc-1, ppc-2, ppc-3, ppc-4, ppc-5

id

Σ

0..1

id

Logical id of this artifact

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
Consent.language	Base	preferred	Common Languages	📍4.0.1	FHIR Std.
Consent.status	Base	required	ConsentState	📍4.0.1	FHIR Std.
Consent.scope	Base	extensible	Consent Scope Codes	📍4.0.1	FHIR Std.
Consent.category	Base	extensible	Consent Category Codes	📍4.0.1	FHIR Std.
Consent.policyRule	Base	extensible	Consent PolicyRule Codes	📍4.0.1	FHIR Std.
Consent.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.data.meaning	Base	required	ConsentDataMeaning	📍4.0.1	FHIR Std.
Consent.provision.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.provision.action	Base	example	Consent Action Codes	📍4.0.1	FHIR Std.
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.provision.class	Base	extensible	Consent Content Class	📍4.0.1	FHIR Std.
Consent.provision.provision.code	Base	example	Consent Content Codes	📍4.0.1	FHIR Std.
Consent.provision.provision.data.meaning	Base	required	ConsentDataMeaning	📍4.0.1	FHIR Std.

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	Consent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	Consent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	Consent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	Consent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	Consent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
ppc-1	error	Consent	Either a Policy or PolicyRule	`policy.exists() or policyRule.exists()`
ppc-2	error	Consent	IF Scope=privacy, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='patient-privacy').exists().not()`
ppc-3	error	Consent	IF Scope=research, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='research').exists().not()`
ppc-4	error	Consent	IF Scope=adr, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='adr').exists().not()`
ppc-5	error	Consent	IF Scope=treatment, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='treatment').exists().not()`

This structure is derived from Consent

Summary

Mandatory: 7 elements(1 nested mandatory element)
Must-Support: 5 elements
Prohibited: 5 elements

Key Elements View

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
Consent	C	0..*	Consent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time Constraints: ppc-1, ppc-2, ppc-3, ppc-4, ppc-5
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
status	?!Σ	1..1	code	draft \| proposed \| active \| rejected \| inactive \| entered-in-error Binding: ConsentState (required): Indicates the state of the consent.
scope	?!Σ	1..1	CodeableConcept	Which of the four areas this resource covers (extensible) Binding: ConsentScopeCodes (extensible): The four anticipated uses for the Consent Resource. Required Pattern: At least the following
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/consentscope
version		0..1	string	Version of the system - if relevant
code		1..1	code	Symbol in syntax defined by the system Fixed Value: patient-privacy
display		0..1	string	Representation defined by the system
userSelected		0..1	boolean	If this coding was chosen directly by the user
text		0..1	string	Plain text representation of the concept
category	Σ	1..*	CodeableConcept	Classification of the consent statement - for indexing/retrieval Binding: ConsentCategoryCodes (extensible): A classification of the type of consents found in a consent statement.
patient	Σ	1..1	Reference(Patient)	Who the consent applies to
dateTime	Σ	1..1	dateTime	When this Consent was created or indexed
performer	Σ	1..*	Reference(Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Who is agreeing to the policy and rules
organization	Σ	1..*	Reference(Organization)	Custodian of the consent
source[x]	Σ	1..1		Source from which this consent is taken
sourceAttachment			Attachment
sourceReference			Reference(Consent \| DocumentReference \| Contract \| QuestionnaireResponse)
provision	SΣ	1..1	BackboneElement	Constraints to the base Consent.policyRule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type	Σ	1..1	code	deny \| permit Binding: ConsentProvisionType (required): How a rule statement is applied, such as adding additional consent or removing consent.
period	SΣ	0..1	Period	Timeframe for this rule
actor	S	0..*	BackboneElement	Who\|what controlled by this rule (or group, by role)
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
role		1..1	CodeableConcept	How the actor is involved Binding: SecurityRoleType (extensible): How an actor is involved in the consent considerations. Required Pattern: At least the following
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
id		0..1	string	Unique id for inter-element referencing
extension		0..*	Extension	Additional content defined by implementations
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
version		0..1	string	Version of the system - if relevant
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
display		0..1	string	Representation defined by the system
userSelected		0..1	boolean	If this coding was chosen directly by the user
text		0..1	string	Plain text representation of the concept
reference		1..1	Reference(Device \| Group \| CareTeam \| Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Resource for the actor (or group, by role)
securityLabel	Σ	0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
purpose	SΣ	0..*	Coding	Context of activities covered by this rule Binding: PurposeOfUse (extensible): What purposes of use are controlled by this exception. If more than one label is specified, operations must have all the specified labels.
provision	S	0..*	BackboneElement	Nested Exception Rules
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
securityLabel	Σ	0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
Documentation for this format

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
Consent.status	Base	required	ConsentState	📍4.0.1	FHIR Std.
Consent.scope	Base	extensible	Consent Scope Codes	📍4.0.1	FHIR Std.
Consent.category	Base	extensible	Consent Category Codes	📍4.0.1	FHIR Std.
Consent.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	Consent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	Consent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	Consent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	Consent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	Consent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
ppc-1	error	Consent	Either a Policy or PolicyRule	`policy.exists() or policyRule.exists()`
ppc-2	error	Consent	IF Scope=privacy, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='patient-privacy').exists().not()`
ppc-3	error	Consent	IF Scope=research, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='research').exists().not()`
ppc-4	error	Consent	IF Scope=adr, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='adr').exists().not()`
ppc-5	error	Consent	IF Scope=treatment, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='treatment').exists().not()`

Differential View

This structure is derived from Consent

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
Consent		0..*	Consent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
scope		1..1	CodeableConcept	Which of the four areas this resource covers (extensible) Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/consentscope
code		1..1	code	Symbol in syntax defined by the system Fixed Value: patient-privacy
patient		1..1	Reference(Patient)	Who the consent applies to
dateTime		1..1	dateTime	When this Consent was created or indexed
performer		1..*	Reference(Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Who is agreeing to the policy and rules
organization		1..*	Reference(Organization)	Custodian of the consent
source[x]		1..1	Attachment, Reference(Consent \| DocumentReference \| Contract \| QuestionnaireResponse)	Source from which this consent is taken
policy
uri		1..1	uri	Specific policy covered by this consent
verification		0..0
provision	S	1..1	BackboneElement	Constraints to the base Consent.policyRule
type		1..1	code	deny \| permit
period	S	0..1	Period	Timeframe for this rule
actor	S	0..*	BackboneElement	Who\|what controlled by this rule (or group, by role)
role		1..1	CodeableConcept	How the actor is involved Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (Complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
action		0..0
securityLabel		0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
purpose	S	0..*	Coding	Context of activities covered by this rule
class		0..0
code		0..0
provision	S	0..*	BackboneElement	Nested Exception Rules
securityLabel		0..*	Coding	Security Labels that define affected resources Binding: Advanced Security Tag ValueSet (extensible)
provision		0..0
Documentation for this format

Terminology Bindings (Differential)

Path	Status	Usage	ValueSet	Version	Source
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG

Snapshot View

Description & Constraints Filter: Filters

Consent

C

0..*

Consent

A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
Constraints: ppc-1, ppc-2, ppc-3, ppc-4, ppc-5

id

Σ

0..1

id

Logical id of this artifact

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
Consent.language	Base	preferred	Common Languages	📍4.0.1	FHIR Std.
Consent.status	Base	required	ConsentState	📍4.0.1	FHIR Std.
Consent.scope	Base	extensible	Consent Scope Codes	📍4.0.1	FHIR Std.
Consent.category	Base	extensible	Consent Category Codes	📍4.0.1	FHIR Std.
Consent.policyRule	Base	extensible	Consent PolicyRule Codes	📍4.0.1	FHIR Std.
Consent.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.data.meaning	Base	required	ConsentDataMeaning	📍4.0.1	FHIR Std.
Consent.provision.provision.type	Base	required	ConsentProvisionType	📍4.0.1	FHIR Std.
Consent.provision.provision.actor.role	Base	extensible	SecurityRoleType	📍4.0.1	FHIR Std.
Consent.provision.provision.action	Base	example	Consent Action Codes	📍4.0.1	FHIR Std.
Consent.provision.provision.securityLabel	Base	extensible	Advanced Security Tag ValueSet	📦1.1.1-current	This IG
Consent.provision.provision.purpose	Base	extensible	PurposeOfUse	📦3.1.0	THO v6.5
Consent.provision.provision.class	Base	extensible	Consent Content Class	📍4.0.1	FHIR Std.
Consent.provision.provision.code	Base	example	Consent Content Codes	📍4.0.1	FHIR Std.
Consent.provision.provision.data.meaning	Base	required	ConsentDataMeaning	📍4.0.1	FHIR Std.

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	Consent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	Consent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	Consent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	Consent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	Consent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
ppc-1	error	Consent	Either a Policy or PolicyRule	`policy.exists() or policyRule.exists()`
ppc-2	error	Consent	IF Scope=privacy, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='patient-privacy').exists().not()`
ppc-3	error	Consent	IF Scope=research, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='research').exists().not()`
ppc-4	error	Consent	IF Scope=adr, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='adr').exists().not()`
ppc-5	error	Consent	IF Scope=treatment, there must be a patient	`patient.exists() or scope.coding.where(system='something' and code='treatment').exists().not()`

This structure is derived from Consent

Summary

Mandatory: 7 elements(1 nested mandatory element)
Must-Support: 5 elements
Prohibited: 5 elements

Other representations of profile: CSV, Excel, Schematron

<prev

top

next>

IG © 2023+ IHE IT Infrastructure Technical Committee. Package ihe.iti.pcf#1.1.1-current based on FHIR 4.0.1. Generated 2025-10-07
Links: Table of Contents | QA Report | New Issue | Issues Version History | | Propose a change external