SMART Consent - SMART PH4H v0.1.0

SMART PH4H
0.1.0 - ci-build

SMART PH4H, published by WHO. This guide is not an authorized publication; it is the continuous build for version 0.1.0 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/WorldHealthOrganization/smart-ph4h/tree/main and changes regularly. See the Directory of published versions

Resource Profile: SMART Consent

Official URL: http://smart.who.int/ph4h/StructureDefinition/SmartConsent				Version: 0.1.0
Draft as of 2024-10-07				Computable Name: SmartConsent

A profile of the consent resource to track consent of a pilgrim to participate

FHIR R5 upgrade notes (need this implemented as a structure map):

make cardinality of decision 1.. and should stop using it in lieu of verification.verified
use verification.verifiedBy instead of Consent.organization
the period extenion should be replaced by Consent.period
the Consent.patient should be replaced by Consent.subject
Consent.verification.verifiedBy should be used instead of Consent.organization

Usage:

Examples for this Resource Profile: Consent/c7781f44-6df8-4a8b-9e06-0b34263a47c6

Formal Views of Profile Content

Description of Profiles, Differentials, Snapshots and how the different presentations work.

This structure is derived from IntermediateConsent

Name	Card.	Type	Description & Constraints
Consent	0..*	IntermediateConsent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
provision
period	1..1	Period	Timeframe for this rule
purpose	1..*	Coding	Context of activities covered by this rule
Documentation for this format

Name	Flags	Card.	Type	Description & Constraints
Consent	C	0..*	IntermediateConsent	A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time ppc-1: Either a Policy or PolicyRule ppc-2: IF Scope=privacy, there must be a patient ppc-3: IF Scope=research, there must be a patient ppc-4: IF Scope=adr, there must be a patient ppc-5: IF Scope=treatment, there must be a patient
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
status	?!Σ	1..1	code	draft \| proposed \| active \| rejected \| inactive \| entered-in-error Binding: ConsentState (required): Indicates the state of the consent.
scope	?!Σ	1..1	CodeableConcept	Which of the four areas this resource covers (extensible) Binding: ConsentScopeCodes (extensible): The four anticipated uses for the Consent Resource. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/consentscope
code		1..1	code	Symbol in syntax defined by the system Fixed Value: patient-privacy
category	Σ	1..*	CodeableConcept	Classification of the consent statement - for indexing/retrieval Binding: ConsentCategoryCodes (extensible): A classification of the type of consents found in a consent statement.
patient	Σ	1..1	Reference(Patient)	Who the consent applies to
dateTime	Σ	1..1	dateTime	When this Consent was created or indexed
performer	Σ	1..*	Reference(Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Who is agreeing to the policy and rules
organization	Σ	1..*	Reference(Organization)	Custodian of the consent
source[x]	Σ	1..1		Source from which this consent is taken
sourceAttachment			Attachment
sourceReference			Reference(Consent \| DocumentReference \| Contract \| QuestionnaireResponse)
provision	SΣ	1..1	BackboneElement	Constraints to the base Consent.policyRule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type	Σ	1..1	code	deny \| permit Binding: ConsentProvisionType (required): How a rule statement is applied, such as adding additional consent or removing consent.
period	SΣ	1..1	Period	Timeframe for this rule
actor	S	0..*	BackboneElement	Who\|what controlled by this rule (or group, by role)
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
role		1..1	CodeableConcept	How the actor is involved Binding: SecurityRoleType (extensible): How an actor is involved in the consent considerations. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
reference		1..1	Reference(Device \| Group \| CareTeam \| Organization \| Patient \| Practitioner \| RelatedPerson \| PractitionerRole)	Resource for the actor (or group, by role)
purpose	SΣ	1..*	Coding	Context of activities covered by this rule Binding: PurposeOfUse (extensible): What purposes of use are controlled by this exception. If more than one label is specified, operations must have all the specified labels.
dataPeriod	SΣ	0..1	Period	Timeframe for data controlled by this rule
Slices for data	SΣ	0..*	BackboneElement	Data controlled by this rule Slice: Unordered, Closed by value:meaning
data:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions.
reference	Σ	1..1	Reference(Resource)	The actual data reference
data:iData	Σ	0..*	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: instance
reference	Σ	1..1	Reference(Resource)	The actual data reference
data:rData	Σ	0..*	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: related
reference	Σ	1..1	Reference(Encounter \| CarePlan \| EpisodeOfCare)	The actual data reference
data:aData	Σ	0..*	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: authoredby
reference	Σ	1..1	Reference(Practitioner \| PractitionerRole \| Organization \| Device \| Group \| CareTeam \| Patient \| RelatedPerson)	The actual data reference
provision	S	0..*	BackboneElement	Nested Exception Rules
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
purpose	SΣ	0..*	Coding	Context of activities covered by this rule Binding: PurposeOfUse (extensible): What purposes of use are controlled by this exception. If more than one label is specified, operations must have all the specified labels.
dataPeriod	SΣ	0..1	Period	Timeframe for data controlled by this rule
Slices for data	SΣ	0..*	BackboneElement	Data controlled by this rule Slice: Unordered, Closed by value:meaning
data:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions.
reference	Σ	1..1	Reference(Resource)	The actual data reference
data:iDataP	Σ	0..1	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: instance
reference	Σ	1..1	Reference(Resource)	The actual data reference
data:rDataP	Σ	0..1	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: related
reference	Σ	1..1	Reference(Encounter \| CarePlan \| EpisodeOfCare)	The actual data reference
data:aDataP	Σ	0..1	BackboneElement	Data controlled by this rule
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
meaning	Σ	1..1	code	instance \| related \| dependents \| authoredby Binding: ConsentDataMeaning (required): How a resource reference is interpreted when testing consent restrictions. Required Pattern: authoredby
reference	Σ	1..1	Reference(Practitioner \| PractitionerRole \| Organization \| Device \| Group \| CareTeam \| Patient \| RelatedPerson)	The actual data reference
Documentation for this format

Terminology Bindings

Path	Conformance	ValueSet / Code	URI
Consent.status	required	ConsentState `http://hl7.org/fhir/ValueSet/consent-state-codes\|4.0.1` from the FHIR Standard
Consent.scope	extensible	Pattern: patient-privacy `http://hl7.org/fhir/ValueSet/consent-scope` from the FHIR Standard
Consent.category	extensible	ConsentCategoryCodes `http://hl7.org/fhir/ValueSet/consent-category` from the FHIR Standard
Consent.provision.type	required	ConsentProvisionType `http://hl7.org/fhir/ValueSet/consent-provision-type\|4.0.1` from the FHIR Standard
Consent.provision.actor.role	extensible	Pattern: IRCP `http://hl7.org/fhir/ValueSet/security-role-type` from the FHIR Standard
Consent.provision.purpose	extensible	PurposeOfUse `http://terminology.hl7.org/ValueSet/v3-PurposeOfUse`
Consent.provision.data.meaning	required	ConsentDataMeaning `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.data:iData.meaning	required	Pattern: instance `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.data:rData.meaning	required	Pattern: related `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.data:aData.meaning	required	Pattern: authoredby `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.provision.purpose	extensible	PurposeOfUse `http://terminology.hl7.org/ValueSet/v3-PurposeOfUse`
Consent.provision.provision.data.meaning	required	ConsentDataMeaning `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.provision.data:iDataP.meaning	required	Pattern: instance `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.provision.data:rDataP.meaning	required	Pattern: related `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard
Consent.provision.provision.data:aDataP.meaning	required	Pattern: authoredby `http://hl7.org/fhir/ValueSet/consent-data-meaning\|4.0.1` from the FHIR Standard

Constraints

Id	Grade	Path(s)	Details	Requirements
dom-2	error	Consent	If the resource is contained in another resource, it SHALL NOT contain nested Resources : contained.contained.empty()
dom-3	error	Consent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource : contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()
dom-4	error	Consent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated : contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()
dom-5	error	Consent	If a resource is contained in another resource, it SHALL NOT have a security label : contained.meta.security.empty()
dom-6	best practice	Consent	A resource should have narrative for robust management : text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children : hasValue() or (children().count() > id.count())
ext-1	error	ALL extensions	Must have either extensions or value[x], not both : extension.exists() != value.exists()
ppc-1	error	Consent	Either a Policy or PolicyRule : policy.exists() or policyRule.exists()
ppc-2	error	Consent	IF Scope=privacy, there must be a patient : patient.exists() or scope.coding.where(system='something' and code='patient-privacy').exists().not()
ppc-3	error	Consent	IF Scope=research, there must be a patient : patient.exists() or scope.coding.where(system='something' and code='research').exists().not()
ppc-4	error	Consent	IF Scope=adr, there must be a patient : patient.exists() or scope.coding.where(system='something' and code='adr').exists().not()
ppc-5	error	Consent	IF Scope=treatment, there must be a patient : patient.exists() or scope.coding.where(system='something' and code='treatment').exists().not()

Description & Constraints

Consent

C

0..*

IntermediateConsent

A healthcare consumer's choices to permit or deny recipients or roles to perform actions for specific purposes and periods of time
ppc-1: Either a Policy or PolicyRule
ppc-2: IF Scope=privacy, there must be a patient
ppc-3: IF Scope=research, there must be a patient
ppc-4: IF Scope=adr, there must be a patient
ppc-5: IF Scope=treatment, there must be a patient

id

Σ

0..1

id

Logical id of this artifact