This page is part of the Making EHR Data MOre available for Research and Public Health (MedMorph) (v0.2.0: STU 1 Draft) based on FHIR R4. . For a full list of available versions, see the Directory of published versions
This section defines the specific requirements for a Trust Service Provider as specified in this MedMorph Reference Architecture IG.
A Trust Service Provider enables trust services such as anonymization, de-identification, re-identification, and pseudonymization. These services are used when required (e.g., to send data to research organizations the data may have to be de-identified whereas public health reporting for cancer does not require de-identification of data).
The next section identifies specific requirements for Trust Service Provider:
Trust Service Provider SHALL support the APIs defined by the Trust Service Provider Capability Statement.
Trust Service Providers SHALL be able to re-identify bundles that were de-identified by itself using the de-identify operation.
Trust Service Providers MAY choose their own anonymization, de-identification, re-identification, and pseudonymization algorithms.
Content IGs will identify specific data elements within resources that need to be processed by Trust Services based on the use case.