| Name | Flags | Card. | Type | Description & Constraints |
|---|---|---|---|---|
  Permission | TU | DomainResource | Access Rules Elements defined in Ancestors: id, meta, implicitRules, language, text, contained, extension, modifierExtension | |
  status | Σ | 1..1 | code | active | entered-in-error | draft | rejected Binding: Permission Status (Required) |
 asserter | Σ | 0..1 | Reference(Practitioner | PractitionerRole | Organization | CareTeam | Patient | RelatedPerson | HealthcareService) | The person or entity that asserts the permission |
| date | Σ | 0..* | dateTime | The date that permission was asserted |
 validity | Σ | 0..1 | Period | The period in which the permission is active |
 justification | Σ | 0..1 | BackboneElement | The asserted justification for using the data |
 basis | Σ | 0..* | CodeableConcept | The regulatory grounds upon which this Permission builds Binding: Consent PolicyRule Codes (Example) |
 evidence | Σ | 0..* | Reference(Any) | Justifing rational |
| combining | ?!Σ | 1..1 | code | deny-overrides | permit-overrides | ordered-deny-overrides | ordered-permit-overrides | deny-unless-permit | permit-unless-deny Binding: Permission Rule Combining (Required) |
| rule | Σ | 0..* | BackboneElement | Constraints to the Permission This repeating element order: The order of the rules processing is defined in rule-combining |
 type | ?!Σ | 0..1 | code | deny | permit Binding: Consent Provision Type (Required) |
| data | Σ | 0..* | BackboneElement | The selection criteria to identify data that is within scope of this provision |
| resource | Σ | 0..* | BackboneElement | Explicit FHIR Resource references |
| meaning | Σ | 1..1 | code | instance | related | dependents | authoredby Binding: Consent Data Meaning (Required) |
| reference | Σ | 1..1 | Reference(Any) | The actual data reference |
| security | Σ | 0..* | Coding | Security tag code on .meta.security |
| period | Σ | 0..* | Period | Timeframe encompasing data create/update |
| expression | Σ | 0..1 | Expression | Expression identifying the data |
| activity | Σ | 0..* | BackboneElement | A description or definition of which activities are allowed to be done on the data |
| actor | Σ | 0..* | Reference(Device | Group | CareTeam | Organization | Patient | Practitioner | RelatedPerson | PractitionerRole) | Authorized actor(s) |
| action | Σ | 0..* | CodeableConcept | Actions controlled by this rule Binding: Consent Action Codes (Example) |
| purpose | Σ | 0..* | CodeableConcept | The purpose for which the permission is given Binding: PurposeOfUse (Preferred) |
| limit | Σ | 0..* | CodeableConcept | What limits apply to the use of the data Binding: Example set of Event / Bundle used Security Labels (Example) |
| Documentation for this format | ||||