HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current - International flag

HL7 FHIR Implementation Guide: Data Access Policies, published by HL7 International / Security. This guide is not an authorized publication; it is the continuous build for version 1.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/data-access-policies/ and changes regularly. See the Directory of published versions

List: Permission-examples

Page standards status: Informative

Language: en

Mode: Working List Status: Current
Items
Degenerate permission example
SANER permission example
VhDir permission example
Directory permission allowing HR and IT full access
Directory permission with excluding sensitive elements
Bundle with permission expressed residual rules to apply
A base permission example.
A composite permission example that imports another permission as one of the rules.
Fine Grained Patient Access to Data
Permission expressing an overriding policy using ABAC
Permission expressing an overriding policy using RBAC with Resource first
Permission expressing an overriding policy using RBAC with Role first
A Permission with all the Directory rules
A Permission with all the Patient Directory rules
Permission allowing data to be used, but don't expose sensitive location elements
Permission allowing data authored by a practitioner
Permission allowing most sharing but NOT data authored by a practitioner
Permission allowing most use but NOT a given practitioner
Permission allowing data authored by a practitioner
A Permission with all the Patient Directory rules
Permission allowing data to be used, but with redisclosure condition
Permission allowing most use but expires in a year