This page is part of the FHIR Specification (v0.0.82: DSTU 1). The current version which supercedes this version is 5.0.0. For a full list of available versions, see the Directory of published versions
This value set (http://hl7.org/fhir/v3/vs/SecurityPolicy) is defined as part of HL7 v3.
Formal value Set definition: XML or JSON
Types of security policies that further specify the ActClassPolicy value set. Examples:
encrypt prohibit redisclosure without consent directive (OID = 2.16.840.1.113883.1.11.20444)
This value set includes codes defined in other code systems, using the following rules:
Code | System | Display |
SecurityPolicy | http://hl7.org/fhir/v3/ActCode | security policy |
ObligationPolicy | http://hl7.org/fhir/v3/ActCode | obligation policy |
ANONY | http://hl7.org/fhir/v3/ActCode | anonymize |
AOD | http://hl7.org/fhir/v3/ActCode | accounting of disclosure |
AUDIT | http://hl7.org/fhir/v3/ActCode | audit |
AUDTR | http://hl7.org/fhir/v3/ActCode | audit trail |
CPLYCC | http://hl7.org/fhir/v3/ActCode | comply with confidentiality code |
CPLYCD | http://hl7.org/fhir/v3/ActCode | comply with consent directive |
CPLYJPP | http://hl7.org/fhir/v3/ActCode | comply with jurisdictional privacy policy |
CPLYOPP | http://hl7.org/fhir/v3/ActCode | comply with organizational privacy policy |
CPLYOSP | http://hl7.org/fhir/v3/ActCode | comply with organizational security policy |
CPLYPOL | http://hl7.org/fhir/v3/ActCode | comply with policy |
DEID | http://hl7.org/fhir/v3/ActCode | deidentify |
DELAU | http://hl7.org/fhir/v3/ActCode | delete after use |
ENCRYPT | http://hl7.org/fhir/v3/ActCode | encrypt |
ENCRYPTR | http://hl7.org/fhir/v3/ActCode | encrypt at rest |
ENCRYPTT | http://hl7.org/fhir/v3/ActCode | encrypt in transit |
ENCRYPTU | http://hl7.org/fhir/v3/ActCode | encrypt in use |
HUAPRV | http://hl7.org/fhir/v3/ActCode | human approval |
MASK | http://hl7.org/fhir/v3/ActCode | mask |
MINEC | http://hl7.org/fhir/v3/ActCode | minimum necessary |
PRIVMARK | http://hl7.org/fhir/v3/ActCode | privacy mark |
PSEUD | http://hl7.org/fhir/v3/ActCode | pseudonymize |
REDACT | http://hl7.org/fhir/v3/ActCode | redact |
RefrainPolicy | http://hl7.org/fhir/v3/ActCode | refrain policy |
NOAUTH | http://hl7.org/fhir/v3/ActCode | no disclosure without subject authorization |
NOCOLLECT | http://hl7.org/fhir/v3/ActCode | no collection |
NODSCLCD | http://hl7.org/fhir/v3/ActCode | no disclosure without consent directive |
NODSCLCDS | http://hl7.org/fhir/v3/ActCode | no disclosure without information subject's consent directive |
NOINTEGRATE | http://hl7.org/fhir/v3/ActCode | no integration |
NOLIST | http://hl7.org/fhir/v3/ActCode | no unlisted entity disclosure |
NOMOU | http://hl7.org/fhir/v3/ActCode | no disclosure without MOU |
NOORGPOL | http://hl7.org/fhir/v3/ActCode | no disclosure without organizational authorization |
NOPAT | http://hl7.org/fhir/v3/ActCode | no disclosure to patient, family or caregivers without attending provider's authorization |
NOPERSISTP | http://hl7.org/fhir/v3/ActCode | no collection beyond purpose of use |
NORDSCLCD | http://hl7.org/fhir/v3/ActCode | no redisclosure without consent directive |
NORDSCLCDS | http://hl7.org/fhir/v3/ActCode | no redisclosure without information subject's consent directive |
NORDSCLW | http://hl7.org/fhir/v3/ActCode | no disclosure without jurisdictional authorization |
NORELINK | http://hl7.org/fhir/v3/ActCode | no relinking |
NOREUSE | http://hl7.org/fhir/v3/ActCode | no reuse beyond purpose of use |
NOVIP | http://hl7.org/fhir/v3/ActCode | no unauthorized VIP disclosure |
ORCON | http://hl7.org/fhir/v3/ActCode | no disclosure without originator authorization |