HL7 Personal Health Record System Functional Model, Release 2
2.0.1 - Normative

HL7 Personal Health Record System Functional Model, Release 2, published by EHR WG. This guide is not an authorized publication; it is the continuous build for version 2.0.1 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/phrsfm-ig/ and changes regularly. See the Directory of published versions

Requirements: TI.1.5 Non-Repudiation (Function)

Official URL: http://hl7.org/ehrs/uv/phrsfmr2/Requirements/PHRSFMR2-TI.1.5 Version: 2.0.1
Standards status: Normative Computable Name: TI_1_5_Non_Repudiation

Limit a PHR-S user's ability to deny (repudiate) data origination, transmission or receipt by that user.

Description I: A PHR-S allows data entry to a patient's electronic health record and it can be a sender or receiver of healthcare information. Non-repudiation is a way to guarantee that the source of the data/record cannot later deny that fact; and that the sender of a message cannot later deny having sent the message; and that the recipient cannot deny having received the message. Components of non-repudiation can include: - Digital signature, which serves as a unique identifier for an individual (much like a written signature); - Confirmation service, which utilizes a message transfer agent to create a digital receipt (providing confirmation that a message was sent, and/or received); - Timestamp, which proves that a document existed at a certain date and time; - The use of standardized timekeeping protocols (e.g., the Integrating the Healthcare Enterprise (IHE) Consistent Time Profile).
Criteria N:
TI.1.5#01 SHALL The system SHALL capture the identity of the entity taking the action according to scope of practice, organizational policy, and/or jurisdictional law.
TI.1.5#02 SHALL The system SHALL capture time stamp of the initial entry, modification and exchange of data according to scope of practice, organizational policy, and/or jurisdictional law.
TI.1.5#03 SHALL The system SHALL conform to function [TI.2](Requirements-PHRSFMR2-TI.2.html) (Audit) to prevent repudiation of data origination, transmission and receipt according to scope of practice, organizational policy, and/or jurisdictional law.
TI.1.5#04 SHOULD The system SHOULD conform to function [RI.1.1.4](Requirements-PHRSFMR2-RI.1.1.4.html) (Attest Record Entry Content) to ensure integrity of data and data exchange and thus prevent repudiation of data origination, transmission or receipt according to scope of practice, organizational policy, and/or jurisdictional law.