{ "resourceType": "StructureDefinition", "id": "c2s-consent", "meta": { "versionId": "12", "lastUpdated": "2018-02-27T21:48:13.931+00:00" }, "language": "US-en", "text": { "status": "generated", "div": "
The FHIR STU3 (Release 3) Consent profile describes how Consent2Share\n\t\t\t(C2S) application and associated access control solution uses FHIR\n\t\t\tresources to represent and persist patient consent for treatment,\n\t\t\tresearch, or disclosure (e.g. 42 CFR Part 2, Title 38).\n\t\t\tThis\n\t\t\tspecification describes how C2S populates a FHIR Consent resource.\n\t\t\tThis Consent profile does not use any contained resources. Contained\n\t\t\tresources allow the inadvertent sharing of Protected Information to\n\t\t\tunauthorized users and application. Therefore, any references to\n\t\t\tpatients, providers, organizations are described as external\n\t\t\treferences to resources stored on the same server.\n\t\t\tDependencies:\n\t\t\tConsents that conform to this specification must include reference\n\t\t\tother resources \n
" }, "url": "http://hl7.org/fhir/StructureDefinition/c2s-consent", "version": "1.1", "name": "C2S Consent Profile", "title": "C2S Consent Profile", "status": "active", "date": "2017-11-01", "contact": [ { "name": "Ioana Singureanu", "telecom": [ { "system": "email", "value": "ioana@eversolve.com", "use": "work" }, { "system": "url", "value": "www.eversolve.com", "period": { "start": "1999-06-15" } } ] } ], "description": "The FHIR STU3 (Release 3) Consent profile describes how Consent2Share (C2S) application and associated access control solution uses FHIR resources to represent and persist patient consent for treatment, research, or disclosure (e.g. 42 CFR Part 2, Title 38). \r\nThis specification describes how C2S populates a FHIR Consent resource. This Consent profile does not use any contained resources. Contained resources allow the inadvertent sharing of Protected Information to unauthorized users and application. Therefore, any references to patients, providers, organizations are described as external references to resources stored on the same server. \r\n Dependencies: Consents that conform to this specification must include reference other resources: \r\n- Patient (as patient and/or consenting party), RelatedPerson (as consenting party) \r\n- Practitioner (custodians, information recipients), and - Organization (custodian, custodians, information recipients", "jurisdiction": [ { "coding": [ { "code": "US", "display": "US-Realm" } ], "text": "US-Realm Consent Profile published by Consent2Share" } ], "purpose": "This profile is intended to be implemented by consent management systems.", "copyright": "+Copyright (c) 2017 SAMHSA. All Rights Reserved.\r\n This product is licensed to you under the Apache License, Version 2.0 (the \"License\"). You may not use this product except in compliance with the License", "fhirVersion": "3.0.1", "kind": "resource", "abstract": false, "type": "Consent", "baseDefinition": "http://hl7.org/fhir/StructureDefinition/Consent", "derivation": "constraint", "differential": { "element": [ { "id": "Consent", "path": "Consent", "definition": "The following is a final draft profile for approval specification that describes the use of FHIR Consent resources in the Consent2Share (C2S) application and associated access control solution.\r\nThis specification describes how C2S populates a FHIR Consent resource. This Consent profile does not use any contained resources. All the references to patients, providers, organizations are described as external references.\r\nLimitation: Current C2S implementation supports multiple identifier types and identifier registry IDs from FHIR. The specification does not support consents to allow other individuals (i.e. FHIR RelatedPerson, Person) to access a patient's protected information (e.g. 42 CFR Part 2).\r\nA record of a healthcare consumer’s policy choices, which permits or denies identified recipient(s) or recipient role(s) to perform one or more actions within a given policy context, for specific purposes and periods of time.", "mustSupport": true }, { "id": "Consent.identifier", "path": "Consent.identifier", "definition": "FHIR Reference: \"Unique identifier for this copy of the Consent Statement.\"\r\n\r\nNote: This identifier is set by the consent management application (e.g. GUID).", "min": 1, "mustSupport": true }, { "id": "Consent.identifier.use", "path": "Consent.identifier.use", "max": "0", "mustSupport": false }, { "id": "Consent.identifier.type", "path": "Consent.identifier.type", "max": "0" }, { "id": "Consent.identifier.system", "path": "Consent.identifier.system", "min": 1, "mustSupport": true }, { "id": "Consent.identifier.value", "path": "Consent.identifier.value", "min": 1, "mustSupport": true }, { "id": "Consent.identifier.period", "path": "Consent.identifier.period", "max": "0" }, { "id": "Consent.identifier.assigner", "path": "Consent.identifier.assigner", "max": "0" }, { "id": "Consent.status", "path": "Consent.status", "short": "Current state of the Consent", "definition": "FHIR Reference: \"Indicates the current state of this consent.\"\r\nConstraints introduced in this profile are indicated below:\r\n\r\nStates supported: \r\n\"proposed\" - created but not signed\r\nFHIR Reference: \"The consent has been proposed but not yet agreed to by all parties. The negotiation stage. (Proposed)\"\r\n\r\n\"active\" - the consent is signed\r\nFHIR Reference: \"The consent is to be followed and enforced (Active)\"\r\n\r\n\"inactive\" - the consent either expired or was revoked through an update.\r\nFHIR Reference: \"The consent is terminated or replaced (Inactive)\"\r\n \r\n\"entered-in-error\" - may also be supported\r\nFHIR Reference: \"The consent was created wrongly (e.g. wrong patient) and should be ignored (Entered in Error)\"", "mustSupport": true }, { "id": "Consent.category", "path": "Consent.category", "definition": "FHIR Reference: \"A classification of the type of consents found in the statement. This element supports indexing and retrieval of consent statements.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.patient", "path": "Consent.patient", "label": "Consent subject", "short": "Who the consent applies to (external reference)", "definition": "FHIR Reference: \"The patient/healthcare consumer to whom this consent applies.\" \r\nThis data elemen identifies the patient whose records are subject to the consent for disclosure or who agrees to treatment or research study.", "mustSupport": true }, { "id": "Consent.period", "path": "Consent.period", "definition": "FHIR Reference: \"Relevant time or time-period when this Consent is applicable.\"\r\nThe \"start\" date is set when the consent is made active. Even if the consent is post-signed, the \"start\" date is the date when the consent becomes active\r\nThe \"end\" date is set when the consent is expired or revoked or made inactive\r\nThe start date cannot be earlier than the \"dateTime\".", "min": 1, "mustSupport": true }, { "id": "Consent.period.start", "path": "Consent.period.start", "definition": "The start date of when the Consent goes into effect. If the Consent is post-signed then the Consent.period.start is the date when the consent becomes active. The boundary is inclusive.", "mustSupport": true }, { "id": "Consent.period.end", "path": "Consent.period.end", "definition": "The end date when the consent terms is expired (inactive) or was revoked (expiration date = consent.period.end). If the end of the period is missing, it means that the period is ongoing. The start may be in the past, and the end date in the future, which means that period is expected/planned to end at that time." }, { "id": "Consent.dateTime", "path": "Consent.dateTime", "definition": "FHIR Reference: \"When this Consent was issued / created / indexed.\"\r\n\r\nNote: This is the date the consent was signed by the consenter and made active. Unsigned consents will not contain this date.", "min": 1, "mustSupport": true }, { "id": "Consent.consentingParty", "path": "Consent.consentingParty", "label": "Consent Signing Party", "definition": "FHIR Reference: \"Either the Grantor, which is the entity responsible for granting the rights listed in a Consent Directive or the Grantee, which is the entity responsible for complying with the Consent Directive, including any obligations or limitations on authorizations and enforcement of prohibitions.\"\r\n\r\nNote: For this profile, this data element identifes the individual authorized to sign the consent, Typically the consenting party/consenter is the patient but the consent may also be signed by a proxy.", "min": 1, "max": "1", "type": [ { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Patient" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/RelatedPerson" } ], "mustSupport": true }, { "id": "Consent.actor", "path": "Consent.actor", "label": "Providers", "slicing": { "discriminator": [ { "type": "value", "path": "role.coding.code" } ], "description": "This data element was constrained to two slices for \"information custodian\" and \"information recipient\" roles but additoinal roles may added by specializations.", "rules": "open" }, "definition": "FHIR Reference: \"Who or what is controlled by this consent. Use group to identify a set of actors by some property they share (e.g. 'admitting officers').\"\r\n\r\nThis data element may occur at least two times:\r\n - at least one occurrence of custodian actor (slice)\r\n - at least one occurrence of information recipient actor (slice)\r\n\r\nThe profile for this data element will use \"slicing\" to distinguish the custodians from the information recipients and ensure at least one of each was specified.\r\n\r\nNote: This data element is used to specify the custodian (role code: INF) and intended recipient(s) (role code: IRCP) of the information referenced by the consent. According to US Federal policy (e.g. 42 CFR Part 2) this data element can be used to reference one or more individuals/organizations for both roles.", "comment": "actor cardinality is [2..*] and at least one CST (Custodian) representing the entity/entities making the disclosure and one or more IRCP (Information Recipient) -representing the entity/entities receiving the information subject to this consent- must be required but there could be more than 2.", "requirements": "At least one CST and one IRCP must be required but there could be more of either side.", "min": 2, "mustSupport": true }, { "id": "Consent.actor.role", "path": "Consent.actor.role", "label": "Disclosure Providers" }, { "id": "Consent.actor.role.coding", "path": "Consent.actor.role.coding", "binding": { "strength": "extensible", "description": "V3 Participation Type", "valueSetUri": "http://hl7.org/fhir/v3/ParticipationType" } }, { "id": "Consent.actor.role.coding.code", "path": "Consent.actor.role.coding.code", "binding": { "strength": "extensible", "description": "V3 Participation Type", "valueSetUri": "http://hl7.org/fhir/v3/ParticipationType" } }, { "id": "Consent.actor.role.coding.display", "extension": [ { "url": "http://hl7.org/fhir/StructureDefinition/elementdefinition-translatable", "valueBoolean": true } ], "path": "Consent.actor.role.coding.display", "definition": "A representation of the meaning of the code in the system, following the rules of the system.", "comment": "At least one CST (Custodian) and one IRCP (Information Recipient) must be required but there could be more of either side. Note that FHIR strings may not exceed 1MB in size" }, { "id": "Consent.actor.reference", "path": "Consent.actor.reference", "type": [ { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Group" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/CareTeam" }, { "code": "Reference", "profile": "Organization", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Organization", "aggregation": [ "referenced" ] }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Patient" }, { "code": "Reference", "profile": "Practitioner", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Practitioner", "aggregation": [ "referenced" ] }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/RelatedPerson" } ] }, { "id": "Consent.actor:custodianActor", "path": "Consent.actor", "sliceName": "custodianActor", "label": "custodian", "code": [ { "code": "CST", "display": "Custodian Actor" } ], "short": "Custodian controlled by this consent (or group, by role)", "definition": "This \"actor\" structure is used to specify the custodian information in Consent.actor data element.", "comment": "This slice identifiers the actors authorized by this consent; this actor is the custodian of the information intended to be disclosed.", "min": 1, "mustSupport": true }, { "id": "Consent.actor:custodianActor.role", "path": "Consent.actor.role", "definition": "FHIR Reference: Custodian (CST) Definition: \"An entity (person, organization or device) that is in charge of maintaining the information of this act (e.g., who maintains the report or the master service catalog item, etc.).\"\r\n\r\nCustodian (CST) identifies the provider or organization that is the custodian of the information that is subject to this consent.", "mustSupport": true }, { "id": "Consent.actor:custodianActor.role.coding", "path": "Consent.actor.role.coding", "min": 1, "max": "1", "mustSupport": true }, { "id": "Consent.actor:custodianActor.role.coding.system", "path": "Consent.actor.role.coding.system", "min": 1, "fixedUri": "http://hl7.org/fhir/v3/ParticipationType", "mustSupport": true, "binding": { "strength": "required", "valueSetUri": "http://hl7.org/fhir/ValueSet/security-role-type" } }, { "id": "Consent.actor:custodianActor.role.coding.version", "path": "Consent.actor.role.coding.version", "max": "0" }, { "id": "Consent.actor:custodianActor.role.coding.code", "path": "Consent.actor.role.coding.code", "code": [ { "code": "CST" } ], "min": 1, "fixedCode": "CST", "mustSupport": true }, { "id": "Consent.actor:custodianActor.role.coding.userSelected", "path": "Consent.actor.role.coding.userSelected", "max": "0" }, { "id": "Consent.actor:custodianActor.reference", "path": "Consent.actor.reference", "definition": "FHIR Reference: \"The resource that identifies the actor. To identify actors by type, use group to identify a set of actors by some property they share (e.g. 'admitting officers').\" In C2S to specify a \"General Designation Consent\", we specify CareTeam resource as intended recipient or Organization resource corresponding to HIE is the intended recipient. Providers will be added and removed as needed over time to the patient.", "type": [ { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/CareTeam" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Organization" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Patient" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Practitioner" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/RelatedPerson" } ], "mustSupport": true }, { "id": "Consent.actor:recipientActor", "path": "Consent.actor", "sliceName": "recipientActor", "label": "information recipient", "short": "Recipient controlled by this consent (or group, by role)", "definition": "This \"actor\" structure is used to specify the recipient of information in Consent.actor data element.", "comment": "This slice is used to specify the intended recipient(s) of the consent. It identifies the indivdiuals or organizations who are authorized to receive the information specified in the consent.", "min": 1, "mustSupport": true }, { "id": "Consent.actor:recipientActor.role", "path": "Consent.actor.role", "code": [ { "system": "http://hl7.org/fhir/v3/ParticipationType", "code": "IRCP", "display": "Information Recipient" } ], "definition": "FHIR Reference: Information Recipient (IRCP) Definition: \"A party, who may or should receive or who has received the Act or subsequent or derivative information of that Act. Information recipient is inert, i.e., independent of mood.\" Rationale: this is a generalization of a too diverse family that the definition can't be any more specific, and the concept is abstract so one of the specializations should be used.\"\r\n\r\nThis data element identifies how the individual/organization is involved:\r\nInformation Recipient (IRCP) identifies the provider or organization that is intended to receive the disclosed information.", "mustSupport": true }, { "id": "Consent.actor:recipientActor.role.coding", "path": "Consent.actor.role.coding", "min": 1, "mustSupport": true }, { "id": "Consent.actor:recipientActor.role.coding.system", "path": "Consent.actor.role.coding.system", "min": 1, "fixedUri": "http://hl7.org/fhir/v3/ParticipationType", "mustSupport": true, "binding": { "strength": "required", "valueSetUri": "http://hl7.org/fhir/ValueSet/security-role-type" } }, { "id": "Consent.actor:recipientActor.role.coding.version", "path": "Consent.actor.role.coding.version", "max": "0" }, { "id": "Consent.actor:recipientActor.role.coding.code", "path": "Consent.actor.role.coding.code", "code": [ { "system": "http://hl7.org/fhir/v3/ParticipationType", "code": "IRCP" } ], "min": 1, "fixedCode": "IRCP", "mustSupport": true }, { "id": "Consent.actor:recipientActor.role.coding.userSelected", "path": "Consent.actor.role.coding.userSelected", "max": "0" }, { "id": "Consent.actor:recipientActor.reference", "path": "Consent.actor.reference", "definition": "FHIR Reference: \"The resource that identifies the actor. To identify actors by type, use group to identify a set of actors by some property they share (e.g. 'admitting officers').\"", "type": [ { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Organization" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Patient" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/Practitioner" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/RelatedPerson" } ], "mustSupport": true }, { "id": "Consent.action", "path": "Consent.action", "definition": "FHIR Reference: \"Actions controlled by this consent.\"\r\n\r\nNote: The actions apply to the data specified in the \"Consent.except\" data element. Typically \"disclose\" is the default action.", "min": 1, "mustSupport": true }, { "id": "Consent.organization", "path": "Consent.organization", "definition": "FHIR Reference: \"The organization that manages the consent, and the framework within which it is executed.\"\r\nThis organization is the custodian of the consent rather than the data referenced by consent. In most cases this is also the custodian of the protected data specified in Consent.actor (role=CST).", "min": 1, "max": "1", "mustSupport": true }, { "id": "Consent.organization.reference", "path": "Consent.organization.reference", "min": 1, "mustSupport": true }, { "id": "Consent.source[x]", "path": "Consent.source[x]", "definition": "FHIR Reference: \"The source on which this consent statement is based. The source might be a scanned original paper form, or a reference to a consent that links back to such a source, a reference to a document repository (e.g. XDS) that stores the original consent document.\r\nThe following sources listed below:\r\nsourceAttachment - FHIR Reference: \"The source can be contained inline (Attachment)\"\r\nsourceIdentifier - FHIR Reference: \"The source can be referenced simply by an identifier (Identifier), e.g. a CDA document id.\"\r\nsourceReference - FHIR Reference: \"The source can be referenced directly (Consent), referenced in a consent repository (DocumentReference), referenced as a contract, or referenced in a QuestionnaireResponse (Reference(Consent | DocumentReference | Contract | QuestionnaireResponse))\".\r\nThe C2S application will populate \"contentType\" as \"application/pdf\" and \"data\" as the base64encoded PDF document.\r\nCurrently source specifies a link to the CDA consent or to a Questionnaire responses. \r\ne.g; \"sourceAttachment\": {\r\n \"contentType\": \"application/pdf\",\r\n \"title\": \"The Consent Example.\",\r\n \"data\": \"data object\"\r\nIf there is no attachment, then we should not have a \"sourceAttachment\".\r\nIf there is no attachment, there should be a title.", "type": [ { "code": "Attachment" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/QuestionnaireResponse" }, { "code": "Reference", "targetProfile": "http://hl7.org/fhir/StructureDefinition/c2s-consent-1.0" } ] }, { "id": "Consent.policy", "path": "Consent.policy", "definition": "FHIR Reference: \"The references to the policies that are included in this consent scope. Policies may be organizational, but are often defined jurisdictionally, or in law.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.policyRule", "path": "Consent.policyRule", "definition": "FHIR Reference: \"A reference to the specific computable policy. Might be a unique identifier of a policy set in XACML, or other rules engine. If the policy reference is not known, the resource cannot be processed. Where the reference is absent, there is no particular policy other than what is expressed directly in the consent resource.\"\r\nNote: This data element may reference one or more policies addressed by the consent, may reference the URI of XACML policy that Consent 2 Share (C2S) uses to execute this Consent at run time.", "mustSupport": true }, { "id": "Consent.securityLabel", "path": "Consent.securityLabel", "definition": "FHIR Reference: \"A set of security labels that define which resources are controlled by this consent. If more than one label is specified, all resources must have all the specified labels.\"\r\nNote: The \"Consent.except.securityLabel\" is used to specify the protected information specified by the consenter.\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.purpose", "path": "Consent.purpose", "definition": "FHIR Reference: \"The context of the activities a user is taking - why the user is accessing the data - that are controlled by this consent.\"\r\n\r\nNote: The consent purpose may be for \"treatment\", \"research\" (e.g. patient-centered outcomes research, precision medicine research). In the case of 42 CFR Part 2, the purpose of the consent is permit disclsoure for treatment. If the purpose of the discslosure is in repsonse to an emergnecy, the consent is not necessary. The emergency disclosure is typically referred as \"break the glass\".", "min": 1, "mustSupport": true, "binding": { "strength": "required", "valueSetUri": "http://hl7.org/fhir/ValueSet/v3-PurposeOfUse" } }, { "id": "Consent.purpose.system", "path": "Consent.purpose.system", "min": 1, "fixedUri": "http://hl7.org/fhir/v3/ActReason", "mustSupport": true }, { "id": "Consent.purpose.code", "path": "Consent.purpose.code", "min": 1, "mustSupport": true }, { "id": "Consent.dataPeriod", "path": "Consent.dataPeriod", "definition": "FHIR Reference: \"Clinical or Operational Relevant period of time that bounds the data controlled by this consent.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.data", "path": "Consent.data", "definition": "FHIR Reference: \"The resources controlled by this consent, if specific resources are referenced.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.data.meaning", "path": "Consent.data.meaning", "short": "How the resource reference is interpreted when testing consent restrictions", "definition": "How the resource reference is interpreted when testing consent restrictions.\r\nThe following resource reference listed below:\r\ninstance - FHIR Reference: \"The consent applies directly to the instance of the resource\"\r\nrelated - FHIR Reference: \"The consent applies directly to the instance of the resource and instances it refers to\"\r\ndependents - FHIR Reference: \"The consent applies directly to the instance of the resource and instances that refer to it\"\r\nauthoredby - FHIR Reference: \"The consent applies to instances of resources that are authored by\"" }, { "id": "Consent.data.reference", "path": "Consent.data.reference", "definition": "FHIR Reference: A reference to a specific resource that defines which resources are covered by this consent." }, { "id": "Consent.except", "extension": [ { "url": "http://hl7.org/fhir/StructureDefinition/structuredefinition-explicit-type-name", "valueString": "Except" } ], "path": "Consent.except", "label": "Sensitive Information Categories", "definition": "FHIR Reference: \"An exception to the base policy of this consent. An exception can be an addition or removal of access permissions.\"\r\n\r\nThis structure is used to specify the exception to the privacy policy. \r\n\r\nNote: This repeated data element identifies specific types of protected information and they are not needed if the consent reference \"all protected information\" held by the authorized organization. If the consent does not specify any \"exceptions\" (i.e. Consent.Except), the security label should be used instead.", "min": 1, "mustSupport": true }, { "id": "Consent.except.type", "path": "Consent.except.type", "short": "Action to take - permit or deny", "definition": "FHIR Reference: \"Action to take - permit or deny - when the exception conditions are met.\"\r\n\r\nThis structure is used to specify how an exception statement is applied as a \"permission\" or \"denial\" of the action (e.g. disclosure) for specific types of protected information.\r\nThe default for Conset2Share (C2S) is \"permit\" since C2S users specify information that is \"permitted\" for disclosure.\r\n\r\nThe following are the defined codes for Consent-Except-Type:\r\n• deny\r\n• permit\r\n\r\ndeny - FHIR Reference: \"Consent is denied for actions meeting these rules (Deny/Opt Out).\r\npermit - FHIR Reference: \"Consent is provided for actions meeting these rules (Permit/Opt In).\"", "defaultValueCode": "permit", "mustSupport": true }, { "id": "Consent.except.period", "path": "Consent.except.period", "definition": "FHIR Reference: \"The timeframe in this exception is valid.\"\r\nThis concept is supported by \"Consent.period\".\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.actor", "extension": [ { "url": "http://hl7.org/fhir/StructureDefinition/structuredefinition-explicit-type-name", "valueString": "ExceptActor" } ], "path": "Consent.except.actor", "definition": "FHIR Reference: \"Who or what is controlled by this Exception. Use group to identify a set of actors by some property they share (e.g. 'admitting officers').\"\r\nThis concept is addressed by \"Consent.actor\".\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.action", "path": "Consent.except.action", "definition": "FHIR Reference: \"Actions controlled by this Exception.\" \r\nThis concept is addressed by \"Consent.action\".\r\n\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.securityLabel", "path": "Consent.except.securityLabel", "definition": "FHIR Reference: \"A set of security labels that define which resources are controlled by this exception. If more than one label is specified, all resources must have all the specified labels.\"", "min": 1, "mustSupport": true }, { "id": "Consent.except.securityLabel.system", "path": "Consent.except.securityLabel.system", "min": 1, "fixedUri": "http://hl7.org/fhir/v3/ActCode", "mustSupport": true }, { "id": "Consent.except.securityLabel.version", "path": "Consent.except.securityLabel.version", "max": "0" }, { "id": "Consent.except.securityLabel.code", "path": "Consent.except.securityLabel.code", "min": 1, "mustSupport": true }, { "id": "Consent.except.securityLabel.userSelected", "path": "Consent.except.securityLabel.userSelected", "max": "0" }, { "id": "Consent.except.purpose", "path": "Consent.except.purpose", "definition": "FHIR Reference: \"The context of the activities a user is taking - why the user is accessing the data - that are controlled by this exception.\" This concept is addressed by \"Consent.purpose\".\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.class", "path": "Consent.except.class", "short": "Class of information covered by this exception", "definition": "FHIR Reference: \"The class of information covered by this exception. The type can be a FHIR resource type, a profile on a type, or a CDA document, or some other type that indicates what sort of information the consent relates to.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.code", "path": "Consent.except.code", "short": "Code found in an instance of the content (LOINC or SNOMED CT code, etc)", "definition": "FHIR Reference: \"If this code is found in an instance, then the exception applies.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.code.version", "path": "Consent.except.code.version", "max": "0" }, { "id": "Consent.except.dataPeriod", "path": "Consent.except.dataPeriod", "definition": "FHIR Reference: \"Clinical or Operational Relevant period of time that bounds the data controlled by this exception.\"\r\nNot supported for this profile - the Consent.period applies to this exception.", "max": "0" }, { "id": "Consent.except.data", "extension": [ { "url": "http://hl7.org/fhir/StructureDefinition/structuredefinition-explicit-type-name", "valueString": "ExceptData" } ], "path": "Consent.except.data", "definition": "FHIR Reference: \"The resources controlled by this consent, if specific resources are referenced.\"\r\nNot supported for this profile.", "max": "0" }, { "id": "Consent.except.data.meaning", "path": "Consent.except.data.meaning", "comment": "This structure is not supported for this profile. \r\nNote that FHIR strings may not exceed 1MB in size" } ] } }