HL7 Personal Health Record System Functional Model, Release 2
2.0.1-ballot - Normative Ballot

HL7 Personal Health Record System Functional Model, Release 2, published by EHR WG. This guide is not an authorized publication; it is the continuous build for version 2.0.1-ballot built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/phrsfm-ig/ and changes regularly. See the Directory of published versions

: TI.1.5 Non-Repudiation (Function) - TTL Representation

Page standards status: Informative

Raw ttl | Download


@prefix fhir: <http://hl7.org/fhir/> .
@prefix owl: <http://www.w3.org/2002/07/owl#> .
@prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
@prefix xsd: <http://www.w3.org/2001/XMLSchema#> .

# - resource -------------------------------------------------------------------

 a fhir:Requirements ;
  fhir:nodeRole fhir:treeRoot ;
  fhir:id [ fhir:v "PHRSFMR2-TI.1.5"] ; # 
  fhir:meta [
    ( fhir:profile [
fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/FMFunction"^^xsd:anyURI ;
fhir:link <http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/FMFunction>     ] )
  ] ; # 
  fhir:text [
fhir:status [ fhir:v "extensions" ] ;
fhir:div "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n    <span id=\"description\"><b>Statement <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Normative Content\" class=\"normative-flag\">N</a>:</b> <div><p>Limit a PHR-S user's ability to deny (repudiate) data origination, transmission or receipt by that user.</p>\n</div></span>\n\n    \n    <span id=\"purpose\"><b>Description <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Informative Content\" class=\"informative-flag\">I</a>:</b> <div><p>A PHR-S allows data entry to a patient's electronic health record and it can be a sender or receiver of healthcare information. Non-repudiation is a way to guarantee that the source of the data/record cannot later deny that fact; and that the sender of a message cannot later deny having sent the message; and that the recipient cannot deny having received the message. Components of non-repudiation can include:</p>\n<ul>\n<li>Digital signature, which serves as a unique identifier for an individual (much like a written signature);</li>\n<li>Confirmation service, which utilizes a message transfer agent to create a digital receipt (providing confirmation that a message was sent, and/or received);</li>\n<li>Timestamp, which proves that a document existed at a certain date and time;</li>\n<li>The use of standardized timekeeping protocols (e.g., the Integrating the Healthcare Enterprise (IHE) Consistent Time Profile).</li>\n</ul>\n</div></span>\n    \n\n    \n    \n    \n\n    \n    <span id=\"requirements\"><b>Criteria <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Normative Content\" class=\"normative-flag\">N</a>:</b></span>\n    \n    <table id=\"statements\" class=\"grid dict\">\n        \n        <tr>\n            <td style=\"padding-left: 4px;\">\n                \n                <span>TI.1.5#01</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\">\n                \n                <i>dependent</i>\n                \n                \n                \n                <span>SHALL</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\" class=\"requirement\">\n                \n                <span><div><p>The system SHALL capture the identity of the entity taking the action according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n                \n                \n            </td>\n        </tr>\n        \n        <tr>\n            <td style=\"padding-left: 4px;\">\n                \n                <span>TI.1.5#02</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\">\n                \n                <i>dependent</i>\n                \n                \n                \n                <span>SHALL</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\" class=\"requirement\">\n                \n                <span><div><p>The system SHALL capture time stamp of the initial entry, modification and exchange of data according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n                \n                \n            </td>\n        </tr>\n        \n        <tr>\n            <td style=\"padding-left: 4px;\">\n                \n                <span>TI.1.5#03</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\">\n                \n                <i>dependent</i>\n                \n                \n                \n                <span>SHALL</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\" class=\"requirement\">\n                \n                <span><div><p>The system SHALL conform to function <a href=\"Requirements-PHRSFMR2-TI.2.html\">TI.2</a> (Audit) to prevent repudiation of data origination, transmission and receipt according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n                \n                \n            </td>\n        </tr>\n        \n        <tr>\n            <td style=\"padding-left: 4px;\">\n                \n                <span>TI.1.5#04</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\">\n                \n                <i>dependent</i>\n                \n                \n                \n                <span>SHOULD</span>\n                \n            </td>\n            <td style=\"padding-left: 4px;\" class=\"requirement\">\n                \n                <span><div><p>The system SHOULD conform to function <a href=\"Requirements-PHRSFMR2-RI.1.1.4.html\">RI.1.1.4</a> (Attest Record Entry Content) to ensure integrity of data and data exchange and thus prevent repudiation of data origination, transmission or receipt according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n                \n                \n            </td>\n        </tr>\n        \n    </table>\n</div>"^^rdf:XMLLiteral
  ] ; # 
  fhir:extension ( [
fhir:url [ fhir:v "http://hl7.org/fhir/StructureDefinition/structuredefinition-wg"^^xsd:anyURI ] ;
fhir:value [
a fhir:code ;
fhir:v "ehr"     ]
  ] ) ; # 
  fhir:url [ fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/Requirements/PHRSFMR2-TI.1.5"^^xsd:anyURI] ; # 
  fhir:version [ fhir:v "2.0.1-ballot"] ; # 
  fhir:name [ fhir:v "TI_1_5_Non_Repudiation"] ; # 
  fhir:title [ fhir:v "TI.1.5 Non-Repudiation (Function)"] ; # 
  fhir:status [ fhir:v "active"] ; # 
  fhir:date [ fhir:v "2025-08-29T14:03:44+00:00"^^xsd:dateTime] ; # 
  fhir:publisher [ fhir:v "EHR WG"] ; # 
  fhir:contact ( [
    ( fhir:telecom [
fhir:system [ fhir:v "url" ] ;
fhir:value [ fhir:v "http://www.hl7.org/Special/committees/ehr" ]     ] )
  ] ) ; # 
  fhir:description [ fhir:v "Limit a PHR-S user's ability to deny (repudiate) data origination, transmission or receipt by that user."] ; # 
  fhir:purpose [ fhir:v "A PHR-S allows data entry to a patient's electronic health record and it can be a sender or receiver of healthcare information. Non-repudiation is a way to guarantee that the source of the data/record cannot later deny that fact; and that the sender of a message cannot later deny having sent the message; and that the recipient cannot deny having received the message. Components of non-repudiation can include:\r\n- Digital signature, which serves as a unique identifier for an individual (much like a written signature);\r\n- Confirmation service, which utilizes a message transfer agent to create a digital receipt (providing confirmation that a message was sent, and/or received);\r\n- Timestamp, which proves that a document existed at a certain date and time;\r\n- The use of standardized timekeeping protocols (e.g., the Integrating the Healthcare Enterprise (IHE) Consistent Time Profile)."] ; # 
  fhir:statement ( [
    ( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [
a fhir:boolean ;
fhir:v true       ]     ] ) ;
fhir:key [ fhir:v "PHRSFMR2-TI.1.5-01" ] ;
fhir:label [ fhir:v "TI.1.5#01" ] ;
    ( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v false ] ;
fhir:requirement [ fhir:v "The system SHALL capture the identity of the entity taking the action according to scope of practice, organizational policy, and/or jurisdictional law." ]
  ] [
    ( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [
a fhir:boolean ;
fhir:v true       ]     ] ) ;
fhir:key [ fhir:v "PHRSFMR2-TI.1.5-02" ] ;
fhir:label [ fhir:v "TI.1.5#02" ] ;
    ( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v false ] ;
fhir:requirement [ fhir:v "The system SHALL capture time stamp of the initial entry, modification and exchange of data according to scope of practice, organizational policy, and/or jurisdictional law." ]
  ] [
    ( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [
a fhir:boolean ;
fhir:v true       ]     ] ) ;
fhir:key [ fhir:v "PHRSFMR2-TI.1.5-03" ] ;
fhir:label [ fhir:v "TI.1.5#03" ] ;
    ( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v false ] ;
fhir:requirement [ fhir:v "The system SHALL conform to function [TI.2](Requirements-PHRSFMR2-TI.2.html) (Audit) to prevent repudiation of data origination, transmission and receipt according to scope of practice, organizational policy, and/or jurisdictional law." ]
  ] [
    ( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [
a fhir:boolean ;
fhir:v true       ]     ] ) ;
fhir:key [ fhir:v "PHRSFMR2-TI.1.5-04" ] ;
fhir:label [ fhir:v "TI.1.5#04" ] ;
    ( fhir:conformance [ fhir:v "SHOULD" ] ) ;
fhir:conditionality [ fhir:v false ] ;
fhir:requirement [ fhir:v "The system SHOULD conform to function [RI.1.1.4](Requirements-PHRSFMR2-RI.1.1.4.html) (Attest Record Entry Content) to ensure integrity of data and data exchange and thus prevent repudiation of data origination, transmission or receipt according to scope of practice, organizational policy, and/or jurisdictional law." ]
  ] ) . #