HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current - ci-build
HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current - ci-build
HL7 FHIR Implementation Guide: Data Access Policies, published by HL7 International / Security. This guide is not an authorized publication; it is the continuous build for version 1.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/data-access-policies/ and changes regularly. See the Directory of published versions
| Page standards status: Informative |
<Permission xmlns="http://hl7.org/fhir">
<id value="ex-fingrained-patient-access"/>
<meta>
<profile
value="http://hl7.org/fhir/uv/dap/StructureDefinition/dap.permissionWithResourceType"/>
<security>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
<code value="HTEST"/>
</security>
</meta>
<text>
<status value="generated"/>
<div xmlns="http://www.w3.org/1999/xhtml"><p class="res-header-id"><b>Generated Narrative: Permission ex-fingrained-patient-access</b></p><a name="ex-fingrained-patient-access"> </a><a name="hcex-fingrained-patient-access"> </a><div style="display: inline-block; background-color: #d9e0e7; padding: 6px; margin: 4px; border: 1px solid #8da1b4; border-radius: 5px; line-height: 60%"><p style="margin-bottom: 0px"/><p style="margin-bottom: 0px">Profile: <a href="StructureDefinition-dap.permissionWithResourceType.html">Permission with support for rule on Resource-Type</a></p><p style="margin-bottom: 0px">Security Label: test health data (Details: ActReason code HTEST = 'test health data')</p></div><p><b>status</b>: Active</p><p><b>asserter</b>: <a href="Organization-ex-organization.html">Organization nowhere</a></p><p><b>date</b>: 2023-11-22</p><p><b>combining</b>: Permit-unless-deny</p><blockquote><p><b>rule</b></p><p><b>type</b>: Permit</p><h3>Data</h3><table class="grid"><tr><td style="display: none">-</td><td><b>Extension</b></td><td><b>Security</b></td></tr><tr><td style="display: none">*</td><td/><td>local-tags TAG_1: TAG_1</td></tr></table><blockquote><p><b>limit</b></p><p><b>element</b>: Patient.address</p></blockquote><blockquote><p><b>limit</b></p><p><b>element</b>: Patient.birthDate</p></blockquote><blockquote><p><b>limit</b></p><p><b>element</b>: Patient.meta</p></blockquote></blockquote><blockquote><p><b>rule</b></p><p><b>type</b>: Deny</p><h3>Data</h3><table class="grid"><tr><td style="display: none">-</td><td><b>Extension</b></td><td><b>Security</b></td></tr><tr><td style="display: none">*</td><td/><td>local-tags VIP: VIP</td></tr></table></blockquote></div>
</text>
<status value="active"/>
<asserter>🔗
<reference value="Organization/ex-organization"/>
</asserter>
<date value="2023-11-22"/>
<combining value="permit-unless-deny"/>
<rule>
<type value="permit"/>
<data>
<extension
url="http://hl7.org/fhir/uv/dap/StructureDefinition/dap.permissionResourceType">
<valueCode value="Patient"/>
</extension>
<security>
<system value="http://your-fhir-server.com/fhir/ValueSet/local-tags"/>
<code value="TAG_1"/>
</security>
</data>
<limit>
<element value="Patient.address"/>
</limit>
<limit>
<element value="Patient.birthDate"/>
</limit>
<limit>
<element value="Patient.meta"/>
</limit>
</rule>
<rule>
<type value="deny"/>
<data>
<extension
url="http://hl7.org/fhir/uv/dap/StructureDefinition/dap.permissionResourceType">
<valueCode value="Patient"/>
</extension>
<security>
<system value="http://your-fhir-server.com/fhir/ValueSet/local-tags"/>
<code value="VIP"/>
</security>
</data>
</rule>
</Permission>
IG © 2023+ HL7 International / Security. Package hl7.fhir.uv.dap#1.0.0-current based on FHIR 6.0.0-ballot3. Generated 2025-07-09
Links: Table of Contents |
QA Report
| Version History |
|
Propose a change