This page is part of the US Prescription Drug Monitoring Program (PDMP) (v1.0.0: STU1) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version in its permanent home (it will always be available at this URL). For a full list of available versions, see the Directory of published versions
In each of the exchanges described in this guide, the PDMP Requester SHALL provide proof of authorization. PDMP Requester and PDMP Responder systems SHOULD implement OAuth 2.0 access management in accordance with the SMART Backend Services: Authorization Guide, as the exchanges in this guide do not require user access authorization and may run autonomously.
Provider Systems and REMS Administrators SHALL follow security guidance defined in…
In addition, implementers are expected to…
follow core FHIR security principles.
protect patient privacy as described in FHIR Security and Privacy Considerations.