This wiki has undergone a migration to Confluence found Here
Difference between revisions of "FHIR Consent Directive Implemenation Guide"
Jump to navigation
Jump to search
JohnMoehrke (talk | contribs) |
JohnMoehrke (talk | contribs) |
||
| Line 2: | Line 2: | ||
[[HL7 FHIR Consent Directive Project | Back to HL7 FHIR Consent Directive Project]] | [[HL7 FHIR Consent Directive Project | Back to HL7 FHIR Consent Directive Project]] | ||
| + | |||
| + | You can get to current [http://hl7-fhir.github.io/pcd/pcd.html Privacy Consent Directive IG] in the continuous build directly: http://hl7-fhir.github.io/pcd/pcd.html | ||
| + | |||
| + | This page is used to develop new content before committing it to the Current build. | ||
| + | * Do NOT write more than is necessary for our reader to understand how to use | ||
| + | ** Rely on prior works to explain basics | ||
| + | ** Less is More | ||
= Draft Privacy Consent Directive IG = | = Draft Privacy Consent Directive IG = | ||
| + | ==Introduction (Glen)== | ||
| + | * Need to have consent be informed consent | ||
| + | * Relationship with Contract - why is a consent a contract? (Kathleen) | ||
| + | * Relationship with the resources it uses - Patient, Document, AuditEvent, Provenance | ||
| + | * Relationship with Resources it controls - | ||
| + | * Use of Questionnaire for UX with patient | ||
| − | + | ==Abstract Data Model (Kathleen)== | |
| + | * What needs to be recorded | ||
| + | * Types of Consent | ||
| + | ** Basic - TPO | ||
| + | ** Exception vs Inclusion | ||
| + | ** Research (Beth) | ||
| + | ** Patient Centric | ||
| + | * Jurisdiction Models (David) -- look to Goldstein paper | ||
| + | ** Implied | ||
| + | ** Explicit | ||
| + | ** Chinese? | ||
| + | * Cross-Organization vs Within-an-Organization | ||
| + | ==Abstract Interaction Model (John)== | ||
| + | * Actors | ||
| + | ** Involved in capturing consent | ||
| + | ** Involved in enforcing consent | ||
| + | ** Affected transparently | ||
| + | * Transactions | ||
| + | ** Create, Read, Update, Delete -- Replace | ||
| + | ** Request access decision | ||
| + | ==Related Work (John, Kathleen)== | ||
| + | * Consent Receipt | ||
| + | ** Use of AuditEvent - disclosure | ||
| + | * Relationship to OAuth scopes | ||
| + | * Relationship to UMA -- HEART | ||
| + | * IHE BPPC and APPC | ||
| + | * HL7 CDA Privacy Consent Directive IG | ||
| + | * HL7 Patient Frendly Consent | ||
| + | * HL7 HCS | ||
| + | * ONC Patient Choice (David) | ||
| + | ==Examples== | ||
| + | * USA Realm examples (Kathleen) | ||
| + | * Canada Examples (Pat, Ken) | ||
| + | * European Examples (Alex, Tarik) | ||
| + | * Research Examples (Rob, Kathleen) | ||
| − | = | + | =Other Draft Materials= |
*[http://www.hl7.org/documentcenter/public_temp_A58A06F7-1C23-BA17-0CBF5EBEE6FE410C/wg/secure/Report%20to%20Security%20WG_Blobel_Implications%20of%20SOA%20architectures%20for%20security%20and%20privacy.pdf Implications of SOA Architectures for Security and Privacy Bernd Blobel, PhD, FACMI, FACHI, FHL7 eHealth Competence Center Regensburg] | *[http://www.hl7.org/documentcenter/public_temp_A58A06F7-1C23-BA17-0CBF5EBEE6FE410C/wg/secure/Report%20to%20Security%20WG_Blobel_Implications%20of%20SOA%20architectures%20for%20security%20and%20privacy.pdf Implications of SOA Architectures for Security and Privacy Bernd Blobel, PhD, FACMI, FACHI, FHL7 eHealth Competence Center Regensburg] | ||
Revision as of 15:04, 13 February 2016
Back to HL7 FHIR Consent Directive Project
You can get to current Privacy Consent Directive IG in the continuous build directly: http://hl7-fhir.github.io/pcd/pcd.html
This page is used to develop new content before committing it to the Current build.
- Do NOT write more than is necessary for our reader to understand how to use
- Rely on prior works to explain basics
- Less is More
Draft Privacy Consent Directive IG
Introduction (Glen)
- Need to have consent be informed consent
- Relationship with Contract - why is a consent a contract? (Kathleen)
- Relationship with the resources it uses - Patient, Document, AuditEvent, Provenance
- Relationship with Resources it controls -
- Use of Questionnaire for UX with patient
Abstract Data Model (Kathleen)
- What needs to be recorded
- Types of Consent
- Basic - TPO
- Exception vs Inclusion
- Research (Beth)
- Patient Centric
- Jurisdiction Models (David) -- look to Goldstein paper
- Implied
- Explicit
- Chinese?
- Cross-Organization vs Within-an-Organization
Abstract Interaction Model (John)
- Actors
- Involved in capturing consent
- Involved in enforcing consent
- Affected transparently
- Transactions
- Create, Read, Update, Delete -- Replace
- Request access decision
Related Work (John, Kathleen)
- Consent Receipt
- Use of AuditEvent - disclosure
- Relationship to OAuth scopes
- Relationship to UMA -- HEART
- IHE BPPC and APPC
- HL7 CDA Privacy Consent Directive IG
- HL7 Patient Frendly Consent
- HL7 HCS
- ONC Patient Choice (David)
Examples
- USA Realm examples (Kathleen)
- Canada Examples (Pat, Ken)
- European Examples (Alex, Tarik)
- Research Examples (Rob, Kathleen)
Other Draft Materials
FHIR Consent Directive in Trust Framework
Discussed in Mike Davis' FHIR Contract Design Considerations
HL7 FHIR Consent Directive Implementation Guide "Comic Book"
