Stream: Security and Privacy
Topic: Google Consent API
Josh Mandel (Oct 12 2020 at 18:02):
Really great stuff coming out of https://cloud.google.com/healthcare/docs/how-tos/consent -- and I'm curious whether the HL7 Security WG is looking at some of these ideas as "feature requests" or "requirements" for a FHIR-based Consent API (resources, operations, etc). It'd be great to learn from real-world experience and drive toward some common patterns.
FYI @John Moehrke and @Paul Church (and my apologies if this has come up already; I didn't see it on a quick Zulip search).
David Pyke (Oct 12 2020 at 18:17):
I'll have a look at these. It's CBCP that handles Consent and Privacy
John Moehrke (Oct 12 2020 at 18:53):
I think that the SOA workgroup also has a project open in HL7 on consent service
John Moehrke (Oct 12 2020 at 18:54):
I also noticed that HAPI had a nice consent api built into hapi
Paul Church (Oct 12 2020 at 19:50):
We're looking at import/export into FHIR Consent resources for interoperability. There are some patterns that are apparent in the consent evaluation methods currently in the API (checkDataAccess, evaluateUserConsents, queryAccessibleData) that came from early feedback.
Last updated: Apr 12 2022 at 19:14 UTC
