This page is part of the CARIN Digital Insurance Card (v1.1.0: STU1) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions
Security and privacy are critical aspects to consider with any interface where data, like that described in this Implementation Guide, is shared or otherwise made accessible. Implementers of this Implementation Guide should make sure their APIs are secure in accordance with guidance defined in the FHIR standard where applicable:
Implementers must ensure that APIs fully and successfully implement privacy and security features such as, but not limited to, those required to comply with HIPAA privacy and security requirements and other applicable law protecting the privacy and security of protected health information. Note that the HIPAA regulations apply only to HIPAA covered entities and their business associates. After information leaves the control of an entity covered under HIPAA, the HIPAA regulations do not apply. FTC consumer protection laws and other state and federal laws may apply.
Client applications and Payers SHALL support the standalone launch sequence (launch/Patient) of the SMART App Launch framework for user authorization and client authentication. Payers SHALL publish their authorization and token endpoints for discovery in accordance with the SMART App Launch framework. If the app needs to authenticate the identity of the end-user, it MAY include two OpenID Connect scopes: openid and fhirUser. When these scopes are requested, and the request is granted, the app MAY receive an id token along with the access token.
The use of this Implementation Guide is predicated on client applications being registered with a payer’s system of record in order to retrieve a client_id and client_secret for API access. The registration process is outside the scope of this IG.
This IG is also predicated on an insurance plan member (or their personal representative) consenting for their data to be shared with a consumer-facing application. This process follows the SMART on FHIR protocols linked above and typically involves the member (or their personal representative) agreeing to the terms of service and privacy policies of both the insurance plan and the consuming application before the data exchange takes place.