Package | ehealth4u.package |
Type | StructureDefinition |
Id | Id |
FHIR Version | R4 |
Source | https://simplifier.net/resolve?scope=ehealth4u.package@1.0.0&canonical=http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-consentpreference-r4 |
Url | http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-consentpreference-r4 |
Status | draft |
Name | CYEHRSDConsentPreference |
Title | Cyprus EHR Consent Preference profile |
Experimental | False |
Description | The use case of this profile is to express a patient's specific prefrences with regards to the EHR health data that the patient wishes to permit or deny access to a specific healthcare provider (example 1: define that he/she is willing to allow a specific doctor to access all of his/her EHR health data, example 2: define that he/she is willing to allow a specific doctor to access all of his/her EHR health data except Medications). |
Type | Consent |
Kind | resource |
No resources found
StructureDefinition | |
http://hl7.org/fhir/uv/ips/StructureDefinition/CodeableConcept-uv-ips | Codeable Concept (IPS) |
http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-practitionerrolehealthcareassociate-r4 | Cyprus EHR Healthcare Associate Practitioner Role profile |
{
"resourceType" : "StructureDefinition",
"id" : "cyehr-sd-consentpreference-r4",
"url" : "http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-consentpreference-r4",
"name" : "CYEHRSDConsentPreference",
"title" : "Cyprus EHR Consent Preference profile",
"status" : "draft",
"publisher" : "eHealth4U",
"contact" : [
{
"name" : "eHealth Lab (University of Cyprus)",
"telecom" : [
{
"system" : "email",
"value" : "ehealthl@ucy.ac.cy",
"use" : "work"
}
]
}
],
"description" : "The use case of this profile is to express a patient's specific prefrences with regards to the EHR health data that the patient wishes to permit or deny access to a specific healthcare provider (example 1: define that he/she is willing to allow a specific doctor to access all of his/her EHR health data, example 2: define that he/she is willing to allow a specific doctor to access all of his/her EHR health data except Medications).",
"fhirVersion" : "4.0.1",
"kind" : "resource",
"abstract" : false,
"type" : "Consent",
"baseDefinition" : "http://hl7.org/fhir/StructureDefinition/Consent",
"derivation" : "constraint",
"differential" : {
"element" : [
{
"id" : "Consent",
"path" : "Consent",
"comment" : "Broadly, there are 3 key areas of consent for patients: Consent around sharing information (aka Privacy Consent Directive - Authorization to Collect, Use, or Disclose information), consent for specific treatment, or kinds of treatment, and general advance care directives.\r\n\r\nCyprusEHR: This profile is used to represent the consent preferences of a Patient who wishes to grant access to specific EHR data to a healthcare provider. If the healthcare provider accepts to gain access to the Patient's EHR data based on the proposed consent preferences, then a healthcare associate consent is created with the following elements being copied: scope, category, patient, performer, organization, policy, policyRule, provision (all sub-elements except period). If the healthcare provider denies, nothing is created and the proposed consent preferences is rejected."
},
{
"id" : "Consent.meta",
"path" : "Consent.meta"
},
{
"id" : "Consent.meta.profile",
"path" : "Consent.meta.profile",
"slicing" : {
"discriminator" : [
{
"type" : "value",
"path" : "$this"
}
],
"rules" : "open"
},
"min" : 1
},
{
"id" : "Consent.meta.profile:CyprusEHRProfile",
"path" : "Consent.meta.profile",
"sliceName" : "CyprusEHRProfile",
"min" : 1,
"max" : "1",
"fixedCanonical" : "http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-consentpreference-r4"
},
{
"id" : "Consent.identifier",
"path" : "Consent.identifier",
"max" : "0"
},
{
"id" : "Consent.status",
"path" : "Consent.status",
"comment" : "This element is labeled as a modifier because the status contains the codes rejected and entered-in-error that mark the Consent as not currently valid.\r\n\r\nCyprusEHR: Shall be only proposed, rejected and inactive. When the consent preference is created the status is proposed. After the root provision.period is expired the status = inactive (meaning the healthcare provided did not respond in time). If the healthcare provider denies to accept the consent preferences, the status is rejected. Not other statuses shall be allowed.",
"mustSupport" : true
},
{
"id" : "Consent.scope",
"path" : "Consent.scope",
"type" : [
{
"code" : "CodeableConcept",
"profile" : [
"http://hl7.org/fhir/uv/ips/StructureDefinition/CodeableConcept-uv-ips"
]
}
],
"patternCodeableConcept" : {
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/consentscope",
"code" : "patient-privacy"
}
]
},
"mustSupport" : true
},
{
"id" : "Consent.scope.coding",
"path" : "Consent.scope.coding",
"min" : 1
},
{
"id" : "Consent.scope.coding.system",
"path" : "Consent.scope.coding.system",
"min" : 1
},
{
"id" : "Consent.scope.coding.code",
"path" : "Consent.scope.coding.code",
"min" : 1
},
{
"id" : "Consent.scope.coding.display",
"path" : "Consent.scope.coding.display",
"min" : 1
},
{
"id" : "Consent.category",
"path" : "Consent.category",
"patternCodeableConcept" : {
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
"code" : "INFA"
}
]
},
"mustSupport" : true
},
{
"id" : "Consent.category.coding",
"path" : "Consent.category.coding",
"min" : 1
},
{
"id" : "Consent.patient",
"path" : "Consent.patient",
"min" : 1,
"mustSupport" : true
},
{
"id" : "Consent.dateTime",
"path" : "Consent.dateTime",
"min" : 1,
"mustSupport" : true
},
{
"id" : "Consent.performer",
"path" : "Consent.performer",
"min" : 1,
"max" : "1",
"type" : [
{
"code" : "Reference",
"targetProfile" : [
"http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-practitionerrolehealthcareassociate-r4"
]
}
],
"mustSupport" : true
},
{
"id" : "Consent.performer.reference",
"path" : "Consent.performer.reference",
"min" : 1
},
{
"id" : "Consent.organization",
"path" : "Consent.organization",
"comment" : "References SHALL be a reference to an actual FHIR resource, and SHALL be resolveable (allowing for access control, temporary unavailability, etc.). Resolution can be either by retrieval from the URL, or, where applicable by resource type, by treating an absolute reference as a canonical URL and looking it up in a local registry/repository.\r\n\r\nCyprusEHR: The organization that manages the consent and the framework within which it is executed is the National eHealth Authority for the national integrated EHR of Cyprus.",
"min" : 1,
"max" : "1",
"mustSupport" : true
},
{
"id" : "Consent.source[x]",
"path" : "Consent.source[x]",
"max" : "0"
},
{
"id" : "Consent.policy",
"path" : "Consent.policy",
"min" : 1,
"mustSupport" : true
},
{
"id" : "Consent.policy.authority",
"path" : "Consent.policy.authority",
"comment" : "see http://en.wikipedia.org/wiki/Uniform_resource_identifier\r\n\r\nCyprusEHR: The National eHealth Autority.",
"min" : 1,
"fixedUri" : "http://www.neha.gov.cy/moh/neha/neha.nsf/home_en/home_en?openform"
},
{
"id" : "Consent.policy.uri",
"path" : "Consent.policy.uri",
"comment" : "This element is for discoverability / documentation and does not modify or qualify the policy rules.\r\n\r\nCyprusEHR: The policy of granting a healthcare provider access to a patient's EHR health data. Temporarily the current eHealth law is given as fixed value but in the future it must be replaced by a more specific policy defining explicitely what is the content of the consent for a paitnet granting a healthcare provider with access to his/her EHR health data.",
"min" : 1,
"fixedUri" : "http://www.cylaw.org/nomoi/enop/non-ind/2019_1_59/index.html"
},
{
"id" : "Consent.policyRule",
"path" : "Consent.policyRule",
"min" : 1,
"patternCodeableConcept" : {
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
"code" : "GRANTORCHOICE"
}
]
},
"mustSupport" : true
},
{
"id" : "Consent.policyRule.coding",
"path" : "Consent.policyRule.coding",
"min" : 1
},
{
"id" : "Consent.verification",
"path" : "Consent.verification",
"max" : "0"
},
{
"id" : "Consent.provision",
"path" : "Consent.provision",
"comment" : "CyprusEHR: For the prototype of the national integrated EHR, a healthcare provider shall be granted with a consent by the patient in order to be able to access the patient's EHR health data. The Patient shall be able to create his/her consent preferences and request from the healthcare provider to accept it in order to gain access to the Patient's EHR data. Therefore, an instance of this profile shall be created if and only if the patient creates a consent preference for a particular healthcare provider. The consent preference includes all the provisions that should be in the actual healthcare associate consent which will dictate to which data the health care provider has access. In this framework, the root provision.type will be always \"permit\" declaring that the proposed consent includes the agreement of the patient to the policy. The nested provision can be then used to define any further preferred restrictions in terms of hidden data that will be executed if the healthcare provider accepts the consent preference.",
"min" : 1,
"mustSupport" : true
},
{
"id" : "Consent.provision.type",
"path" : "Consent.provision.type",
"comment" : "Note that FHIR strings SHALL NOT exceed 1MB in size\r\n\r\nCyprusEHR: It shall be \"permit\" in the root provision meaining that the Patient agrees with the consent's policy. Then first level provision (provision.provision.type) can be deny if the Patient denies access to data to the selected healthcare provider. Second level provision (provision.provision.provision) and thereafter can be defined with \"deny\" type to specify which data are denied to specific members of the medical team.",
"min" : 1,
"fixedCode" : "permit",
"mustSupport" : true
},
{
"id" : "Consent.provision.period",
"path" : "Consent.provision.period",
"comment" : "A Period specifies a range of time; the context of use will specify whether the entire range applies (e.g. \"the patient was an inpatient of the hospital for this time range\") or one value from the range applies (e.g. \"give to the patient between these two times\").\n\nPeriod is not used for a duration (a measure of elapsed time). See [Duration](datatypes.html#Duration).\r\n\r\nCyprusEHR: Use only for root provision to defines the period during whcih the proposed consent preferences are valid. Then inactivate the instance.",
"min" : 1
},
{
"id" : "Consent.provision.actor",
"path" : "Consent.provision.actor",
"min" : 1,
"max" : "1"
},
{
"id" : "Consent.provision.actor.role",
"path" : "Consent.provision.actor.role",
"comment" : "Not all terminology uses fit this general pattern. In some cases, models should not use CodeableConcept and use Coding directly and provide their own structure for managing text, codings, translations and the relationship between elements and pre- and post-coordination.\r\n\r\nCyprusEHR: Use the code http://terminology.hl7.org/CodeSystem/v3-ParticipationType|PRCP and reference the medical team in root provision (representing the restrictions imposed by the patient in the consent preference). Use the code http://terminology.hl7.org/CodeSystem/v3-ParticipationType|PRCP and reference particular healthcare associate practitioner roles to further restrict access to data to members of the medical team (imposed by the head practitioner role of the medical team).",
"patternCodeableConcept" : {
"coding" : [
{
"system" : "http://terminology.hl7.org/CodeSystem/v3-ParticipationType",
"code" : "PRCP"
}
]
}
},
{
"id" : "Consent.provision.actor.role.coding",
"path" : "Consent.provision.actor.role.coding",
"min" : 1
},
{
"id" : "Consent.provision.actor.role.coding.system",
"path" : "Consent.provision.actor.role.coding.system",
"min" : 1
},
{
"id" : "Consent.provision.actor.role.coding.code",
"path" : "Consent.provision.actor.role.coding.code",
"min" : 1
},
{
"id" : "Consent.provision.actor.role.coding.display",
"path" : "Consent.provision.actor.role.coding.display",
"min" : 1
},
{
"id" : "Consent.provision.actor.reference",
"path" : "Consent.provision.actor.reference",
"type" : [
{
"code" : "Reference",
"targetProfile" : [
"http://ig.ehealth4u.eu/fhir/StructureDefinition/cyehr-sd-practitionerrolehealthcareassociate-r4"
]
}
]
},
{
"id" : "Consent.provision.actor.reference.reference",
"path" : "Consent.provision.actor.reference.reference",
"min" : 1
},
{
"id" : "Consent.provision.action",
"path" : "Consent.provision.action",
"comment" : "Note that this is the direct action (not the grounds for the action covered in the purpose element). At present, the only action in the understood and tested scope of this resource is 'read'.\r\n\r\nCyprusEHR: CyprusEHR: When all actions must be denied or permitted this is left empty."
},
{
"id" : "Consent.provision.securityLabel",
"path" : "Consent.provision.securityLabel",
"definition" : "A security label, comprised of 0..* security label fields (Privacy tags), which define which resources are controlled by this exception.\r\n\r\nCyprusEHR: Not to be used in the context of Cyprus EHR.",
"comment" : "If the consent specifies a security label of \"R\" then it applies to all resources that are labeled \"R\" or lower. E.g. for Confidentiality, it's a high water mark. For other kinds of security labels, subsumption logic applies. When the purpose of use tag is on the data, access request purpose of use shall not conflict.\r\n\r\nCyprusEHR: Not to be used in the first phase of eHealth4U."
},
{
"id" : "Consent.provision.purpose",
"path" : "Consent.provision.purpose",
"definition" : "The context of the activities a user is taking - why the user is accessing the data - that are controlled by this rule.\r\n\r\nCyprusEHR: Not to be used in the context of Cyprus EHR.",
"max" : "0"
},
{
"id" : "Consent.provision.class",
"path" : "Consent.provision.class",
"definition" : "The class of information covered by this rule. The type can be a FHIR resource type, a profile on a type, or a CDA document, or some other type that indicates what sort of information the consent relates to.\r\n\r\nCyprusEHR: Not to be used in the context of Cyprus EHR.",
"max" : "0"
},
{
"id" : "Consent.provision.code",
"path" : "Consent.provision.code",
"definition" : "If this code is found in an instance, then the rule applies.\r\n\r\nCyprusEHR: Not to be used in the context of Cyprus EHR.",
"max" : "0"
},
{
"id" : "Consent.provision.dataPeriod",
"path" : "Consent.provision.dataPeriod",
"definition" : "Clinical or Operational Relevant period of time that bounds the data controlled by this rule.\r\n\r\nCyprusEHR: Not to be used in the context of Cyprus EHR.",
"max" : "0"
},
{
"id" : "Consent.provision.data",
"path" : "Consent.provision.data",
"definition" : "The resources controlled by this rule if specific resources are referenced.\r\n\r\nCyprusEHR: Use for \"deny\" nested provsions to specify the exact data for whcih access is denied."
},
{
"id" : "Consent.provision.provision",
"path" : "Consent.provision.provision",
"comment" : "CyprusEHR: Use it with a \"deny\" type to define the patient's locked data if the patient wishes to lock/hide data.",
"contentReference" : "http://hl7.org/fhir/StructureDefinition/Consent#Consent.provision"
}
]
},
"text" : {
}
}
XIG built as of ??metadata-date??. Found ??metadata-resources?? resources in ??metadata-packages?? packages.