HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current -
HL7 FHIR Implementation Guide: Data Access Policies
1.0.0-current -
HL7 FHIR Implementation Guide: Data Access Policies, published by HL7 International / Security. This guide is not an authorized publication; it is the continuous build for version 1.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/data-access-policies/ and changes regularly. See the Directory of published versions
//
<p>
Given the importance of current public health information, only the latest version of the report is
authorized for access.
</p>
<rule>
<type value="deny" />
<data>
<expression>
<language value="text/fhirpath" />
<expression value="meta.versionId.exists() and meta.versionId != 'latest'" />
</expression>
</data>
</rule>
{
"resourceType" : "Permission",
"resourceDefinition" : "http://hl7.org/fhir/StructureDefinition/Permission|1.0.0-current",
"id" : "example-saner",
"language" : "en",
"text" : {
"status" : "generated",
"div" : "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n <p>\n Read-Only access to a given SANER report is authorized for PurposeOfUse of Public-Health\n compliance, from the given Organization.\n Access requests authorized shall be recorded.\n </p>\n <p>\n Read-Only access to a given SANER report is authorized for PurposeOfUse of Public-Health\n compliance, from the given Group.\n Access requests authorized shall be recorded.\n </p>\n </div>"
},
"identifier" : [
{
"system" : "http://example.org/identifiers",
"value" : "saner-report"
}
],
"status" : "active",
"asserter" : {
🔗 "reference" : "Organization/ex-organization"
},
"date" : [
"2018-12-24"
],
"combining" : "deny-overrides",
"rule" : [
{
"type" : "permit",
"data" : [
{
"resource" : [
{
"meaning" : "instance",
"reference" : {
"reference" : "http://hl7.org/fhir/uv/saner/Measure/CDCHealthcareSupplyPathway"
}
}
]
}
],
"activity" : [
{
"actor" : [
{
"reference" : {
🔗 "reference" : "Organization/ex-organization"
}
}
],
"action" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/consentaction",
"code" : "access"
}
]
}
],
"purpose" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
"code" : "HCOMPL"
}
]
}
]
}
],
"limit" : [
{
"control" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
"code" : "AUDIT"
}
]
}
]
}
]
},
{
"type" : "permit",
"data" : [
{
"resource" : [
{
"meaning" : "instance",
"reference" : {
"reference" : "http://hl7.org/fhir/uv/saner/Measure/CDCHealthcareSupplyPathway"
}
}
]
}
],
"activity" : [
{
"actor" : [
{
"reference" : {
"reference" : "http://example.com/R4/fhir/Group/102"
}
}
],
"action" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/consentaction",
"code" : "access"
}
]
}
],
"purpose" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
"code" : "HCOMPL"
}
]
}
]
}
],
"limit" : [
{
"control" : [
{
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
"code" : "AUDIT"
}
]
}
]
}
]
}
]
}
IG © 2023+ HL7 International / Security.
Package hl7.fhir.uv.dap#1.0.0-current based on FHIR 6.0.0-ballot3.
Generated 2025-11-07
Links: Table of Contents |
QA Report
| Version History |
|
Propose a change