Scalable Consent Management
1.0.0-preview - STU 1 PReview US

Scalable Consent Management, published by HL7 International / Community Based Collaborative Care. This guide is not an authorized publication; it is the continuous build for version 1.0.0-preview built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/fhir-consent-management/ and changes regularly. See the Directory of published versions

Change Log

Page standards status: Informative

Substantive

  • FHIR-54692 - Replace custom $record-disclosure operation with RESTful AuditEvent POST in technical.md; remove OperationDefinition link (Correction) link
  • FHIR-54690 - Add governance status note for Testing Guide - working draft pending HL7 publication (Clarification) link
  • FHIR-54676 - Remove FASTConsentStatuses required binding from Consent.status; allow all FHIR consent-state-codes; add guidance in intro-notes (Correction) link
  • FHIR-54650 - Distinguish Authorization Decision Events from Disclosure Events in AuditEvent section; add IHE-BALP guidance for each type (Correction) link
  • FHIR-54649 - Add IHE-BALP reference for Consent record sharing audit events in sharing.md - consistent profiling across all three audit cases; case 1 now references IHE-BALP FHIR Search/Read patterns (Correction) link
  • FHIR-54648 - Remove RecordDisclosure OperationDefinition, RecordDisclosureParameters profile, and RecordDisclosureExample from Operations.fsh (Correction) link
  • FHIR-54647 - Document identifier 1..* cardinality in FASTConsent-intro.md (profile constraint already applied in FHIR-53780) (Correction) link
  • FHIR-54132 - Change Consent.policy from MS to 1..* MS; require at least one policy with URI; update intro-notes (Correction) link
  • FHIR-53703 - Document removal of delete from SubscriptionTopic supportedInteraction (applied in FHIR-53813); fix stale 'operations' reference in sharing.md (Correction) link
  • FHIR-53755 - Revise AuditEvent section - add who creates auth decision events, patient query narrative, rename Searching for Disclosures to Querying Authorization Decision Events; update FASTConsentAuditEvent-intro with When to Create section (Correction) technical, AuditEvent
  • FHIR-53758 - Removed Subscription's fixed status of 'active' and added new status to example (Correction) Subscription example
  • FHIR-53780 - Cardinality of Consent.identifier updated to 1..* (Correction) link
  • FHIR-53779 - Remove RecordDisclosure downstream references from Capabilities.fsh, artifact_overview.md, and sharing.md; replace with RESTful AuditEvent POST (Correction) link
  • FHIR-53778 - Remove fast-consent-organizationId search parameter; add controller:identifier chained search guidance (Correction) link
  • FHIR-53777 - Remove fast-consent-patientId search parameter; add patient:identifier chained search guidance (Correction) link
  • FHIR-53781 - Remove fast-auditevent-consent from artifact_overview.md (duplicate confirmation of FHIR-54653) (Correction)
  • FHIR-53813 - Removed 'delete' as a supported interaction for SubscriptionTopic (Correction) link
  • FHIR-54061 - Relax grantee extension to 0..* MS; move from Must Have to Must Support in intro-notes; add guidance on implicit/program-based grantees (Correction) link
  • FHIR-54132 - Change Consent.policy from MS to 1..* MS; require at least one policy with URI; update intro-notes (Correction) link

Non-Substantive

  • FHIR-54671 - Removed unnecessary FAST section from credits page (Correction) link
  • FHIR-54669 - Update 'Reading this IG' link/description to match updated background page; remove duplication between Content and Organization and background page (Clarification) link
  • FHIR-54667 - Moved cross-version analysis from Artifact Overview page to Downloads page (Correction) link
  • FHIR-54665 - Add US Core and IHE-BALP to Dependencies section (Clarification) link
  • FHIR-54664 - Changed to hyperlinked Usecase page (Correction) link
  • FHIR-54663 - Enable forward/backward navigation (shownav = true) (Clarification)
  • FHIR-54662 - Add authentication as required precondition note; reference background.md for OAuth/SMART details (Clarification) link
  • FHIR-54660 - Revise Authorization scope statement - explain IG role as standardizing consent representation for enforcement components; replace awkward 'not in scope' framing (Clarification) link
  • FHIR-54659 - Add 'Consent Ceremony' as a formal definition in the Definitions section (Clarification) link
  • FHIR-54658 - Add Definitions section; clarify that 'Consent' in this guide means 'Privacy Consent' specifically (Clarification) link
  • FHIR-54656 - NOTE text was replaced by the structured Scope section in a prior refactoring; the key point (access authorization is out of scope) is captured in the Authorization bullet of the Scope section (Clarification)
  • FHIR-54655 - Replace hardcoded FHIR R4 URLs with publisher-generated site.data.fhir.path variables in index.md; Requirements intro-note deep section anchors are intentionally hardcoded (Clarification)
  • FHIR-54653, FHIR-54652 - Remove fast-auditevent-consent custom search parameter; replace with native entity search param in technical.md and capabilities (Clarification) link
  • FHIR-54551 - Removed redundant introductory paragraph in Enforcing Consent section of Implementation Notes page (Correction) link
  • FHIR-54540 - Added line from consenter to disclosure audit (Correction) link
  • FHIR-54539, FHIR-54672, FHIR-54358, FHIR-54357 - Fix actor lists and missing conditions - remove Actor:Consenter from Propagate Events; add Consent Server System to Request Consent actors; add Delegate pre-condition; add Consent Provenance post-condition (Correction/Clarification) link
  • FHIR-54364 - Updated Content and Organization section of index page (Correction) index
  • FHIR-54361 - Update SubscriptionTopic canFilterBy - replace patientId/organizationId with patient/controller; update subscription examples and technical.md filter list (Clarification) link
  • FHIR-54360 - Fixed typo in implementation notes (Correction) link
  • FHIR-54355 - Added hyperlink to Usecase bullet point. (Correction) link
  • FHIR-54354 - Altered wording, whicih has since been realtered to no longer exist. (Correction)
  • FHIR-54131 - Add note that 'constraint' and 'exception' are used interchangeably in R4 provision terminology (Clarification) link
  • FHIR-54127 - Clarify Must Have (min cardinality >= 1) vs Must Support (0 but required capability); restore performer to Must Have; add grantee to Must Support (Clarification) link
  • FHIR-54125 - Fixed indentation (Correction) link
  • FHIR-54120 - Add Consent Access Management section - data sources don't get access to all consents; scope access to governance role (Clarification) link
  • FHIR-54101 - Add Authorization to Subscribe section - explain that exchange authorization implies subscription authorization; align access control frameworks (Clarification) link
  • FHIR-54056 - Add rationale for fixed Consent.scope=patient-privacy; explain alignment with IHE-PCF Basic Consent (Clarification) link
  • FHIR-54047, FHIR-53773 - Add informative framing callout at top of use cases page; clarify Administrator is consent workflow role not system admin; note use case narratives are illustrative (Clarification) link
  • FHIR-53888 - Altered search parameters for FASTConsent to use Consent rather than Patient (Correction) link
  • FHIR-53776 - Add implementation note explaining why controller and manager search params are required for federated consent management (Clarification) link
  • FHIR-53775 - Clarify actor names in conformance statements - ID1 Client→Consent Client; ID1 Client→Consent Client; (Clarification) link
  • FHIR-53774 - Updated link to current version rather than build.fhir.org (Correction) link
  • FHIR-53772 - Fixed copy-and-paste error (Correction) link
  • FHIR-53771 - Fixed typos and revised Content and Organization section of index page (Correction) index
  • FHIR-53757 - Add Meaning of Outcome section - clarify outcome=0 means operation succeeded, not that data was shared; explain permit vs deny (Clarification) link
  • FHIR-53756 - Update FASTConsentAuditEvent Must Have list - fix IHE-BALP profile reference, add .source and .recorded, correct type/subtype descriptions (Clarification) link
  • FHIR-53754 - Removed scope from a filter in SubscriptionTopic and replaced it with category (Clarification) link
  • FHIR-53753 - Moved provision.actor from Must Have to Must Support (Clarification) link
  • FHIR-53752, FHIR-55370 - Add informative use case to technical operations mapping table; clarify use cases are illustrative scenarios not conformance requirements (Clarification) link
  • FHIR-53750 - Add Permit/Deny and Opt-in/Opt-out section; clarify that default consent posture determination is out of scope (Clarification) link
  • FHIR-53749 - Fixed multiple typos (Correction) index, usecases, implementation_notes, conformance, FASTConsent