HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current -
HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current -
HL7 FHIR Implementation Guide: Data Access Policies, published by HL7 International / Security. This guide is not an authorized publication; it is the continuous build for version 1.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/data-access-policies/ and changes regularly. See the Directory of published versions
| Page standards status: Informative |
@prefix fhir: <http://hl7.org/fhir/> . @prefix owl: <http://www.w3.org/2002/07/owl#> . @prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> . @prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> . @prefix xsd: <http://www.w3.org/2001/XMLSchema#> . # - resource ------------------------------------------------------------------- a fhir:List ; fhir:nodeRole fhir:treeRoot ; fhir:id [ fhir:v "Permission-examples"] ; # fhir:language [ fhir:v "en"] ; # fhir:text [ fhir:status [ fhir:v "generated" ] ; fhir:div [ fhir:v "<div xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"en\" lang=\"en\"><p class=\"res-header-id\"><b>Generated Narrative: List Permission-examples</b></p><a name=\"Permission-examples\"> </a><a name=\"hcPermission-examples\"> </a><div style=\"display: inline-block; background-color: #d9e0e7; padding: 6px; margin: 4px; border: 1px solid #8da1b4; border-radius: 5px; line-height: 60%\"><p style=\"margin-bottom: 0px\">Language: en</p></div><table class=\"clstu\"><tr><td>Mode: Working List </td><td>Status: Current </td></tr><tr><td/></tr></table><table class=\"grid\"><tr style=\"backgound-color: #eeeeee\"><td><b>Items</b></td></tr><tr><td><a href=\"Permission-example.html\">Degenerate permission example</a></td></tr><tr><td><a href=\"Permission-example-saner.html\">SANER permission example</a></td></tr><tr><td><a href=\"Permission-example-vhdir.html\">VhDir permission example</a></td></tr><tr><td><a href=\"Permission-ex-permission-directory-admin.html\">Directory permission allowing HR and IT full access</a></td></tr><tr><td><a href=\"Permission-example-exclude.html\">Directory permission with excluding sensitive elements</a></td></tr><tr><td><a href=\"Bundle-ex-SearchSet-withPermission.html\">Bundle with permission expressed residual rules to apply</a></td></tr><tr><td><a href=\"Permission-example-base.html\">A base permission example.</a></td></tr><tr><td><a href=\"Permission-example-composite.html\">A composite permission example that imports another permission as one of the rules.</a></td></tr><tr><td><a href=\"Permission-ex-finegrained-patient-access.html\">Fine Grained Patient Access to Data</a></td></tr><tr><td><a href=\"Permission-ex-overriding-abac-by-tag.html\">Permission expressing an overriding policy using ABAC</a></td></tr><tr><td><a href=\"Permission-ex-overriding-rbac-by-resource.html\">Permission expressing an overriding policy using RBAC with Resource first</a></td></tr><tr><td><a href=\"Permission-ex-overriding-rbac-by-role.html\">Permission expressing an overriding policy using RBAC with Role first</a></td></tr><tr><td><a href=\"Permission-ex-permission-directory-all.html\">A Permission with all the Directory rules</a></td></tr><tr><td><a href=\"Permission-ex-permission-directory-doctors-only.html\">A Permission with all the Patient Directory rules</a></td></tr><tr><td><a href=\"Permission-ex-permission-directory-exclude-location.html\">Permission allowing data to be used, but don't expose sensitive location elements</a></td></tr><tr><td><a href=\"Permission-ex-permission-intermediate-authoredby.html\">Permission allowing data authored by a practitioner</a></td></tr><tr><td><a href=\"Permission-ex-permission-intermediate-not-authoredby.html\">Permission allowing most sharing but NOT data authored by a practitioner</a></td></tr><tr><td><a href=\"Permission-ex-permission-not-bob.html\">Permission allowing most use but NOT a given practitioner</a></td></tr><tr><td><a href=\"Permission-ex-permission-patient-authoredby.html\">Permission allowing data authored by a practitioner</a></td></tr><tr><td><a href=\"Permission-ex-permission-patient-directory-all.html\">A Permission with all the Patient Directory rules</a></td></tr><tr><td><a href=\"Permission-ex-permission-redisclose-forbidden-without-consent.html\">Permission allowing data to be used, but with redisclosure condition</a></td></tr><tr><td><a href=\"Permission-ex-permission-timeout.html\">Permission allowing most use but expires in a year</a></td></tr></table></div>"^^rdf:XMLLiteral ] ] ; # fhir:status [ fhir:v "current"] ; # fhir:mode [ fhir:v "working"] ; # fhir:entry ( [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of permission" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example ; fhir:reference [ fhir:v "Permission/example" ] ; fhir:display [ fhir:v "Degenerate permission example" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of permission for SANER" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-saner" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example-saner ; fhir:reference [ fhir:v "Permission/example-saner" ] ; fhir:display [ fhir:v "SANER permission example" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of permission for VhDir" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-vhdir" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example-vhdir ; fhir:reference [ fhir:v "Permission/example-vhdir" ] ; fhir:display [ fhir:v "VhDir permission example" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of simple directory admin allowing HR and IT" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-directory-admin" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-directory-admin ; fhir:reference [ fhir:v "Permission/ex-permission-directory-admin" ] ; fhir:display [ fhir:v "Directory permission allowing HR and IT full access" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of authorizing some data in a directory but excluding sensitive elements" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-exclude" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example-exclude ; fhir:reference [ fhir:v "Permission/example-exclude" ] ; fhir:display [ fhir:v "Directory permission with excluding sensitive elements" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example Bundle with included Permission with residual restrictions" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-bundle-residual" ] ] ) ; fhir:item [ fhir:l fhir:Bundle/ex-SearchSet-withPermission ; fhir:reference [ fhir:v "Bundle/ex-SearchSet-withPermission" ] ; fhir:display [ fhir:v "Bundle with permission expressed residual rules to apply" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of a Base Permission Imported in another Permission" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-base" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example-base ; fhir:reference [ fhir:v "Permission/example-base" ] ; fhir:display [ fhir:v "A base permission example." ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Example of a Composite Permission that Imports Another Permission" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "permission-example-composite" ] ] ) ; fhir:item [ fhir:l fhir:Permission/example-composite ; fhir:reference [ fhir:v "Permission/example-composite" ] ; fhir:display [ fhir:v "A composite permission example that imports another permission as one of the rules." ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Fine Grained Patient Access to Data\\nThis Permission allows access to Patient resources marked with a TAG_1, but would remove the .address, .birthDate, and .meta\\nThis Permission denies access to Patient resources marked with a VIP\\n\\nTODO [Jira FHIR-51070](https://jira.hl7.org/browse/FHIR-51070) for potential better way to identify type of resource" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-finegrained-patient-access" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-finegrained-patient-access ; fhir:reference [ fhir:v "Permission/ex-finegrained-patient-access" ] ; fhir:display [ fhir:v "Fine Grained Patient Access to Data" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "As an overriding policy, this policy needs to express who can READ, who can CREATE, who can UPDATE, who can DELETE." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-overriding-abac-by-tag" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-overriding-abac-by-tag ; fhir:reference [ fhir:v "Permission/ex-overriding-abac-by-tag" ] ; fhir:display [ fhir:v "Permission expressing an overriding policy using ABAC" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "As an overriding policy, this policy needs to express who can READ, who can CREATE, who can UPDATE, who can DELETE." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-overriding-rbac-by-resource" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-overriding-rbac-by-resource ; fhir:reference [ fhir:v "Permission/ex-overriding-rbac-by-resource" ] ; fhir:display [ fhir:v "Permission expressing an overriding policy using RBAC with Resource first" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "As an overriding policy, this policy needs to express who can READ, who can CREATE, who can UPDATE, who can DELETE." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-overriding-rbac-by-role" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-overriding-rbac-by-role ; fhir:reference [ fhir:v "Permission/ex-overriding-rbac-by-role" ] ; fhir:display [ fhir:v "Permission expressing an overriding policy using RBAC with Role first" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "This Permission has all the rules for the Directory.\\n\\nPermission allowing patient requested access to Practitioners, but protects the Practitioner sensitive location elements. \\n\\nPresumes Practitioner resources are tagged at the element level following [DS4P Inline Security Labels](https://hl7.org/fhir/uv/security-label-ds4p/inline_security_labels.html) that indicate the sensitive location elements using the `LOCIS` tag\\n\\nThis Permission encodes:\\n\\n- combining rule is deny-unless-permit, ANY permit authorizes access, so rules do not need to be exhaustively processed, but if no permit is found then access is denied.\\n- rule is #permit for administrative actions on the directory\\n - This enables maintenance by those with directory admin authorization\\n- rule is #permit for Treatment, Payment, and Operations\\n - This enables workers to access all workers\\n - BUT includes an .limit.tag to exclude any elements marked with Location Sensitivity (`#LOCIS`)\\n- rule is #permit for Patient requested (`#PATRQT`)\\n - permits access by patients (or authorized patient delegate)\\n - BUT only Practitioners that have a PractitionerRole.code=#doctor\\n - BUT includes an .limit.tag to exclude any elements marked with Location Sensitivity (`#LOCIS`)" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-directory-all" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-directory-all ; fhir:reference [ fhir:v "Permission/ex-permission-directory-all" ] ; fhir:display [ fhir:v "A Permission with all the Directory rules" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "This Permission has all the rules for the Patient Directory.\\n\\nPermission allowing patient requested access to Practitioners, but protects the Practitioner sensitive location elements. \\n\\nPresumes Practitioner resources are tagged at the element level following [DS4P Inline Security Labels](https://hl7.org/fhir/uv/security-label-ds4p/inline_security_labels.html) that indicate the sensitive location elements using the `LOCIS` tag\\n\\nThis Permission encodes:\\n\\n- combining rule is deny-unless-permit, ANY permit authorizes access, so rules do not need to be exhaustively processed, but if no permit is found then access is denied.\\n- rule is #permit for health directory use, patient requested, or family requested\\n - This enables access all patients, provided Consent Permit is on file\\n - BUT uses .limit.tag to exclude any elements marked with Religious Sensitivity (`#REL`)\\n - Note that the Consent requirement is documented here with a .limit of NOAUTH. Might there be a better way?\\n- rule is #permit for administrative actions on the directory\\n - This enables maintenance by those with directory admin authorization" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-directory-doctors-only" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-directory-doctors-only ; fhir:reference [ fhir:v "Permission/ex-permission-directory-doctors-only" ] ; fhir:display [ fhir:v "A Permission with all the Patient Directory rules" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing patient requested access to Practitioners, but protects the Practitioner sensitive location elements. \\n\\nPresumes Practitioner resources are tagged at the element level following [DS4P Inline Security Labels](https://hl7.org/fhir/uv/security-label-ds4p/inline_security_labels.html) that indicate the sensitive location elements using the `LOCIS` tag" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-directory-exclude-location" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-directory-exclude-location ; fhir:reference [ fhir:v "Permission/ex-permission-directory-exclude-location" ] ; fhir:display [ fhir:v "Permission allowing data to be used, but don't expose sensitive location elements" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing data authored by\\n\\nThere is a Consent that captures the consent ceremony and setting\\n- status is active - so it should be enforced\\n- scope is privacy \\n- category is LOINC 59284-0 Consent\\n- date indicated when the consent is recorded\\n- patient is identified\\n- performer is the patient\\n- organization is identified\\n- source indicate a DocumentReference (with included text of the policy)\\n- policy url points at this Permission\\n\\nThis Permission encodes\\n- base rule is #permit \\n- base rule includes TPO so as to be clear this is a consent about TPO\\n- Permits access to data authored by [practitioner 1](Practitioner-ex-practitioner.html)\\n- Given that there is only one targeted permit rule, then nothing else is allowed." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-intermediate-authoredby" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-intermediate-authoredby ; fhir:reference [ fhir:v "Permission/ex-permission-intermediate-authoredby" ] ; fhir:display [ fhir:v "Permission allowing data authored by a practitioner" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing most sharing of data but NOT data authored by a practitioner\\n\\nThe Consent that captures the consent ceremony and setting:\\n- status is active - so it should be enforced\\n- scope is privacy \\n- category is LOINC 59284-0 Consent\\n- date indicated when the consent is recorded\\n- patient is identified\\n- performer is the patient\\n- organization is identified\\n- source indicate a DocumentReference (with included text of the policy)\\n- policy url points at this Permission\\n\\nThis Permission encodes\\n- base rule includes TPO so as to be clear this is a consent about TPO\\n- second rule denying access to data authored by ex-practitioner\\n - [practitioner 1](Practitioner-ex-practitioner.html)\\n- nothing else is authorized by this Permission" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-intermediate-not-authoredby" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-intermediate-not-authoredby ; fhir:reference [ fhir:v "Permission/ex-permission-intermediate-not-authoredby" ] ; fhir:display [ fhir:v "Permission allowing most sharing but NOT data authored by a practitioner" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing most use of data but NOT a given practitioner\\n\\nThis Permission encodes\\n- base rule includes TPO so as to be clear this generally authorizes TPO\\n- second rule denying access to a given ex-practitioner\\n - [practitioner 1](Practitioner-ex-practitioner.html)\\n- nothing else is authorized by this Permission" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-not-bob" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-not-bob ; fhir:reference [ fhir:v "Permission/ex-permission-not-bob" ] ; fhir:display [ fhir:v "Permission allowing most use but NOT a given practitioner" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing data authored by\\n\\nThere is a Consent that captures the consent ceremony and setting\\n- status is active - so it should be enforced\\n- scope is privacy \\n- category is LOINC 59284-0 Consent\\n- date indicated when the consent is recorded\\n- patient is identified\\n- performer is the patient\\n- organization is identified\\n- source indicate a DocumentReference (with included text of the policy)\\n- policy url points at this Permission\\n\\nThis Permission encodes\\n- base rule is #permit \\n- base rule includes TPO so as to be clear this is a consent about TPO\\n- Permits access to data authored by [practitioner 1](Practitioner-ex-practitioner.html)\\n- Given that there is only one targeted permit rule, then nothing else is allowed." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-patient-authoredby" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-patient-authoredby ; fhir:reference [ fhir:v "Permission/ex-permission-patient-authoredby" ] ; fhir:display [ fhir:v "Permission allowing data authored by a practitioner" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "This Permission has all the rules for the Patient Directory.\\n\\nPermission allowing patient requested access to Practitioners, but protects the Practitioner sensitive location elements. \\n\\nPresumes Practitioner resources are tagged at the element level following [DS4P Inline Security Labels](https://hl7.org/fhir/uv/security-label-ds4p/inline_security_labels.html) that indicate the sensitive location elements using the `LOCIS` tag\\n\\nThis Permission encodes:\\n\\n- combining rule is deny-unless-permit, ANY permit authorizes access, so rules do not need to be exhaustively processed, but if no permit is found then access is denied.\\n- rule is #permit for health directory use, patient requested, or family requested\\n - This enables access all patients, provided Consent Permit is on file\\n - BUT uses .limit.tag to exclude any elements marked with Religious Sensitivity (`#REL`)\\n - Note that the Consent requirement is documented here with a .limit of NOAUTH. Might there be a better way?\\n- rule is #permit for administrative actions on the directory\\n - This enables maintenance by those with directory admin authorization" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-patient-directory-all" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-patient-directory-all ; fhir:reference [ fhir:v "Permission/ex-permission-patient-directory-all" ] ; fhir:display [ fhir:v "A Permission with all the Patient Directory rules" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing requested use, but restricting redisclosure\\n\\nThis Permission encodes\\n\\n- base rule is #permit\\n- base rule includes TPO so as to be clear this is authorizes TPO\\n- includes a residual (limit) using code NODSCLCDS" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-redisclose-forbidden-without-consent" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-redisclose-forbidden-without-consent ; fhir:reference [ fhir:v "Permission/ex-permission-redisclose-forbidden-without-consent" ] ; fhir:display [ fhir:v "Permission allowing data to be used, but with redisclosure condition" ] ] ] [ ( fhir:extension [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/description"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/description> ] ; fhir:value [ a fhir:String ; fhir:v "Permission allowing most use of data but expires in a year. Note that this 'year' indication is based on absolute dates of issuing of the Permission, and use of Permission.validity.\\n\\nThis Permission encodes\\n- base rule includes TPO so as to be clear this generally authorizes TPO\\n- validity is a period of one year" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/build/StructureDefinition/title"^^xsd:anyURI ; fhir:l <http://hl7.org/fhir/build/StructureDefinition/title> ] ; fhir:value [ a fhir:String ; fhir:v "ex-permission-timeout" ] ] ) ; fhir:item [ fhir:l fhir:Permission/ex-permission-timeout ; fhir:reference [ fhir:v "Permission/ex-permission-timeout" ] ; fhir:display [ fhir:v "Permission allowing most use but expires in a year" ] ] ] ) . #
IG © 2023+ HL7 International / Security.
Package hl7.fhir.uv.dap#1.0.0-current based on FHIR 6.0.0-ballot3.
Generated 2025-11-07
Links: Table of Contents |
QA Report
| Version History |
|
Propose a change