FHIR Cross-Version Extensions package for FHIR R4 from FHIR R5
0.0.1-snapshot-2 - informative
FHIR Cross-Version Extensions package for FHIR R4 from FHIR R5
0.0.1-snapshot-2 - informative
FHIR Cross-Version Extensions package for FHIR R4 from FHIR R5 - Version 0.0.1-snapshot-2. See the Directory of published versions
| Page standards status: Informative | Maturity Level: 1 |
<ValueSet xmlns="http://hl7.org/fhir">
<id value="R5-security-label-examples-for-R4"/>
<text>
<status value="generated"/>
<div xmlns="http://www.w3.org/1999/xhtml"><p class="res-header-id"><b>Generated Narrative: ValueSet R5-security-label-examples-for-R4</b></p><a name="R5-security-label-examples-for-R4"> </a><a name="hcR5-security-label-examples-for-R4"> </a><p>This value set expansion contains 11 concepts.</p><table class="codes"><tr><td style="white-space:nowrap"><b>Code</b></td><td><b>System</b></td><td><b>Display</b></td><td><b>Definition</b></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-Confidentiality-N"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-Confidentiality.html#v3-Confidentiality-N">N</a></td><td>http://terminology.hl7.org/CodeSystem/v3-Confidentiality</td><td>normal</td><td><div><p>Privacy metadata indicating the level of protection required to safeguard personal and healthcare information, which if disclosed without authorization, would present a considerable risk of harm to an individual's reputation and sense of privacy.</p>
<p><em>Usage Note:</em> The level of protection afforded normatively confidential information is dictated by the prevailing normative privacy policies, which are intended to engender patient trust in their healthcare providers.</p>
<p>Privacy policies mandating normative levels of protection, which preempt less protective privacy policies when the information is used in the delivery and management of healthcare. May be pre-empted by jurisdictional law (e.g., for public health reporting or emergency treatment).</p>
<p>Confidentiality code total order hierarchy: Normal (N) is less protective than <em>V</em> and <em>R</em>, and subsumes all other protection levels (i.e., <em>M, L, and U</em>).</p>
<p>**Map:**Partial Map to ISO 13606-4 Sensitivity Level (3) Clinical Care when purpose of use is treatment: Default for normal clinical care access (i.e., most clinical staff directly caring for the patient should be able to access nearly all of the EHR). Maps to normal confidentiality for treatment information but not to ancillary care, payment and operations.</p>
<p><strong>Examples:</strong></p>
<p>n the US, this includes what HIPAA identifies as protected health information (PHI) under 45 CFR Section 160.103.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-Confidentiality-R"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-Confidentiality.html#v3-Confidentiality-R">R</a></td><td>http://terminology.hl7.org/CodeSystem/v3-Confidentiality</td><td>restricted</td><td><div><p>Privacy metadata indicating the level of protection required to safeguard potentially stigmatizing information, which if disclosed without authorization, would present a high risk of harm to an individual's reputation and sense of privacy.</p>
<p><em>Usage Note:</em> The level of protection afforded restricted confidential information is dictated by specially protective organizational or jurisdictional privacy policies, including at an authorized individual's request, intended to engender patient trust in providers of sensitive services.</p>
<p>Privacy policies mandating additional levels of protection by restricting information access preempt less protective privacy policies when the information is used in the delivery and management of healthcare. May be pre-empted by jurisdictional law (e.g., for public health reporting or emergency treatment).</p>
<p>Confidentiality code total order hierarchy: Restricted (R) is less protective than <em>V</em>, and subsumes all other protection levels (i.e., <em>N, M, L, and U</em>).</p>
<p><strong>Examples:</strong></p>
<p>Includes information that is additionally protected such as sensitive conditions mental health, HIV, substance abuse, domestic violence, child abuse, genetic disease, and reproductive health; or sensitive demographic information such as a patient's standing as an employee or a celebrity. May be used to indicate proprietary or classified information that is not related to an individual (e.g., secret ingredients in a therapeutic substance; or the name of a manufacturer).</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-ETH"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-ETH">ETH</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>substance abuse information sensitivity</td><td><div><p>Policy for handling alcohol or drug-abuse information, which will be afforded heightened confidentiality. Information handling protocols based on organizational policies related to alcohol or drug-abuse information that is deemed sensitive.</p>
<p><em>Usage Note:</em> If there is a jurisdictional mandate, then use the applicable ActPrivacyLaw code system, and specify the law rather than or in addition to this more generic code.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-PSY"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-PSY">PSY</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>psychiatry disorder information sensitivity</td><td><div><p>Policy for handling psychiatry psychiatric disorder information, which is afforded heightened confidentiality.</p>
<p><em>Usage Note:</em> If there is a jurisdictional mandate, then use the applicable ActPrivacyLaw code system, and specify the law rather than or in addition to this more generic code.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-STD"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-STD">STD</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>sexually transmitted disease information sensitivity</td><td><div><p>Policy for handling sexually transmitted disease information, which will be afforded heightened confidentiality. Information handling protocols based on organizational policies related to sexually transmitted disease information that is deemed sensitive.</p>
<p><em>Usage Note:</em> If there is a jurisdictional mandate, then use the applicable ActPrivacyLaw code system, and specify the law rather than or in addition to this more generic code.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActReason-TREAT"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActReason.html#v3-ActReason-TREAT">TREAT</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActReason</td><td>treatment</td><td><div><p>To perform one or more operations on information for provision of health care.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActReason-HPAYMT"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActReason.html#v3-ActReason-HPAYMT">HPAYMT</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActReason</td><td>healthcare payment</td><td><div><p>To perform one or more operations on information for conducting financial or contractual activities related to payment for provision of health care.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActReason-ETREAT"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActReason.html#v3-ActReason-ETREAT">ETREAT</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActReason</td><td>Emergency Treatment</td><td><div><p>To perform one or more operations on information for provision of immediately needed health care for an emergent condition.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-NOAUTH"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-NOAUTH">NOAUTH</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>no disclosure without subject authorization</td><td><div><p>Prohibition on disclosure without information subject's authorization.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-DELAU"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-DELAU">DELAU</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>delete after use</td><td><div><p>Custodian system must remove target information from access after use.</p>
</div></td></tr><tr><td style="white-space:nowrap"><a name="R5-security-label-examples-for-R4-http://terminology.hl7.org/CodeSystem/v3-ActCode-NORDSCLCD"> </a> <a href="http://terminology.hl7.org/6.5.0/CodeSystem-v3-ActCode.html#v3-ActCode-NORDSCLCD">NORDSCLCD</a></td><td>http://terminology.hl7.org/CodeSystem/v3-ActCode</td><td>no redisclosure without consent directive</td><td><div><p>Prohibition on redisclosure without patient consent directive.</p>
</div></td></tr></table></div>
</text>
<extension
url="http://hl7.org/fhir/StructureDefinition/structuredefinition-fmm">
<valueInteger value="1"/>
</extension>
<extension
url="http://hl7.org/fhir/StructureDefinition/structuredefinition-wg">
<valueCode value="sec"/>
</extension>
<extension url="http://hl7.org/fhir/StructureDefinition/package-source">
<extension url="packageId">
<valueId value="hl7.fhir.uv.xver-r5.r4"/>
</extension>
<extension url="version">
<valueString value="0.0.1-snapshot-2"/>
</extension>
</extension>
<extension
url="http://hl7.org/fhir/StructureDefinition/structuredefinition-standards-status">
<valueCode value="informative">
<extension
url="http://hl7.org/fhir/StructureDefinition/structuredefinition-conformance-derivedFrom">
<valueCanonical
value="http://hl7.org/fhir/5.0/ImplementationGuide/hl7.fhir.uv.xver-r5.r4"/>
</extension>
</valueCode>
</extension>
<url
value="http://hl7.org/fhir/5.0/ValueSet/R5-security-label-examples-for-R4"/>
<version value="0.0.1-snapshot-2"/>
<name value="R5_security_label_examples_for_R4"/>
<title
value="Cross-version VS for R5.SecurityLabelExamples for use in FHIR R4"/>
<status value="active"/>
<experimental value="false"/>
<date value="2025-09-01T22:37:03.134444+10:00"/>
<publisher value="Security"/>
<contact>
<name value="Security"/>
<telecom>
<system value="url"/>
<value value="http://www.hl7.org/Special/committees/secure"/>
</telecom>
</contact>
<description
value="This cross-version ValueSet represents concepts from http://hl7.org/fhir/ValueSet/security-label-examples|5.0.0 for use in FHIR R4. Concepts not present here have direct `equivalent` mappings crossing all versions from R5 to R4."/>
<jurisdiction>
<coding>
<system value="http://unstats.un.org/unsd/methods/m49/m49.htm"/>
<code value="001"/>
<display value="World"/>
</coding>
</jurisdiction>
<compose>
<include>
<system
value="http://terminology.hl7.org/CodeSystem/v3-Confidentiality"/>
<version value="2.2.0"/>
<concept>
<code value="N"/>
<display value="normal"/>
</concept>
<concept>
<code value="R"/>
<display value="restricted"/>
</concept>
</include>
<include>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<concept>
<code value="ETH"/>
<display value="substance abuse information sensitivity"/>
</concept>
<concept>
<code value="PSY"/>
<display value="psychiatry disorder information sensitivity"/>
</concept>
<concept>
<code value="STD"/>
<display
value="sexually transmitted disease information sensitivity"/>
</concept>
<concept>
<code value="NOAUTH"/>
<display value="no disclosure without subject authorization"/>
</concept>
<concept>
<code value="DELAU"/>
<display value="delete after use"/>
</concept>
<concept>
<code value="NORDSCLCD"/>
<display value="no redisclosure without consent directive"/>
</concept>
</include>
<include>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
<version value="2.1.0"/>
<concept>
<code value="TREAT"/>
<display value="treatment"/>
</concept>
<concept>
<code value="HPAYMT"/>
<display value="healthcare payment"/>
</concept>
<concept>
<code value="ETREAT"/>
<display value="Emergency Treatment"/>
</concept>
</include>
</compose>
<expansion>
<timestamp value="2025-09-01T22:37:03.13444+10:00"/>
<contains>
<system
value="http://terminology.hl7.org/CodeSystem/v3-Confidentiality"/>
<version value="2.2.0"/>
<code value="N"/>
<display value="normal"/>
</contains>
<contains>
<system
value="http://terminology.hl7.org/CodeSystem/v3-Confidentiality"/>
<version value="2.2.0"/>
<code value="R"/>
<display value="restricted"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="ETH"/>
<display value="substance abuse information sensitivity"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="PSY"/>
<display value="psychiatry disorder information sensitivity"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="STD"/>
<display value="sexually transmitted disease information sensitivity"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
<version value="2.1.0"/>
<code value="TREAT"/>
<display value="treatment"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
<version value="2.1.0"/>
<code value="HPAYMT"/>
<display value="healthcare payment"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
<version value="2.1.0"/>
<code value="ETREAT"/>
<display value="Emergency Treatment"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="NOAUTH"/>
<display value="no disclosure without subject authorization"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="DELAU"/>
<display value="delete after use"/>
</contains>
<contains>
<system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/>
<version value="8.0.0"/>
<code value="NORDSCLCD"/>
<display value="no redisclosure without consent directive"/>
</contains>
</expansion>
</ValueSet>
IG © 2025+ FHIR Infrastructure. Package hl7.fhir.uv.xver-r5.r4#0.0.1-snapshot-2 based on FHIR 4.0.1. Generated 2025-09-13
Links: Table of Contents |
QA Report
| Version History |
|
History