Stream: cds hooks/github
Topic: docs / Issue #250 May 2018 Ballot Comment 44
Github Notifications (May 16 2018 at 22:58):
cds-hooks-bot opened Issue #250
## May 2018 Ballot Comment 44
Submitted by @bvdh from Philips Healthcare
Chapter: CDS Services
Section: FHIR Resource Access
Type: NEG :exclamation:
In Person Requested? Yes :bust_in_silhouette:Existing Wording:
As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access MUST BE limited to the same restrictions and authorizations afforded the current user.
Proposed Wording:
As the CDS Service executes on behalf of a user. CDS Service MUST assume it can only access content within the same restrictions and authorizations of the current user.
Comment:
This makes sense, but to which entiry is this a mandatory requirement.## Triage Information
Triage Notes:
Reviewed with BasProposed Disposition: Persuasive with Mod
Proposed Disposition Comment:
It must be an EHR requirement, as that is the only one that could reasonably enforce it. Will add clarifying text"As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access by the EHR MUST BE limited to the same restrictions and authorizations afforded the current user."
_This issue was imported by @cds-hooks-bot from the consolidated CDS Hooks May 2018 ballot spreadsheet._
Github Notifications (May 16 2018 at 22:58):
cds-hooks-bot milestoned Issue #250
Github Notifications (May 16 2018 at 22:58):
cds-hooks-bot labeled Issue #250
Github Notifications (May 16 2018 at 22:58):
cds-hooks-bot edited Issue #250
## May 2018 Ballot Comment 44
Submitted by @bvdh from Philips Healthcare
Chapter: CDS Services
Section: FHIR Resource Access
Type: NEG :exclamation:
In Person Requested? Yes :bust_in_silhouette:Existing Wording:
As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access MUST BE limited to the same restrictions and authorizations afforded the current user.
Proposed Wording:
As the CDS Service executes on behalf of a user. CDS Service MUST assume it can only access content within the same restrictions and authorizations of the current user.
Comment:
This makes sense, but to which entiry is this a mandatory requirement.## Triage Information
Triage Notes:
Reviewed with BasProposed Disposition: Persuasive with Mod
Proposed Disposition Comment:
It must be an EHR requirement, as that is the only one that could reasonably enforce it. Will add clarifying text"As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access by the EHR MUST BE limited to the same restrictions and authorizations afforded the current user."
_This issue was imported by @cds-hooks-bot from the consolidated CDS Hooks May 2018 ballot spreadsheet._
Github Notifications (May 18 2018 at 09:22):
cds-hooks-bot commented on Issue #250
Proposed Disposition: Persuasive with Mod
Proposed Disposition Comment:
It must be an EHR requirement, as that is the only one that could reasonably enforce it. Will add clarifying text"As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access by the EHR MUST BE limited to the same restrictions and authorizations afforded the current user."
Github Notifications (May 18 2018 at 09:43):
cds-hooks-bot labeled Issue #250
Github Notifications (May 30 2018 at 22:20):
cds-hooks-bot commented on Issue #250
## :telephone_receiver: CDS Working Group Block Vote (5-30-2018)
Meeting notes: http://wiki.hl7.org/index.php?title=File:2018-05-30_CDS_WG_Call_Minutes.docx
Julia Skapik moved the following disposition, seconded by @brynrhodes.
Disposition: Persuasive with Mod
Disposition Comment:
It must be an EHR requirement, as that is the only one that could reasonably enforce it. Will add clarifying text"As the CDS Service executes on behalf of a user, the data to which the CDS Service is given access by the EHR MUST BE limited to the same restrictions and authorizations afforded the current user."
:+1: For: 12
:expressionless: Abstain: 0
:-1: Against: 0:tada: The motion passed! :tada:
Github Notifications (Jun 14 2018 at 13:38):
cds-hooks-bot assigned Issue #250
Github Notifications (Aug 01 2018 at 21:33):
kpshek closed Issue #250
Last updated: Apr 12 2022 at 19:14 UTC
