{
"package" : "hl7.terminology.r5@6.3.0",
"definition" : "A displayed mark rendered to end users as \\\"Restricted Confidentiality\\\", which indicates that the electronic or hardcopy information they are viewing, must be protected at a restricted level of confidentiality protection as defined by HL7 Confidentiality code \\\"R\\\" (restricted). Examples: Includes information that is additionally protected such as sensitive conditions mental health, HIV, substance abuse, domestic violence, child abuse, genetic disease, and reproductive health; or sensitive demographic information such as a patient's standing as an employee or a celebrity. Use cases include a display to alert authorized EHR users that they are viewing additionally protected health information deemed sensitive by an applicable jurisdictional, organizational, or personal privacy policy.\\r\\n\\r\\n*Usage Note:* The definition is based on HL7 Confidentiality code \\\"R\\\" (restricted), which is described as:\\r\\n\\r\\nPrivacy metadata indicating highly sensitive, potentially stigmatizing information, which presents a high risk to the information subject if disclosed without authorization. May be pre-empted by jurisdictional law, e.g., for public health reporting or emergency treatment. Foundational definitions of Confidentiality: From HL7 Confidentiality Concept Domain: Types of privacy metadata classifying an IT resource (data, information object, service, or system capability) according to its level of sensitivity, which is based on an analysis of applicable privacy policies and the risk of financial, reputational, or other harm to an individual or entity that could result if made available or disclosed to unauthorized individuals, entities, or processes.\\r\\n\\r\\nUsage Note from HL7 Confidentiality code \\\"R\\\": Confidentiality codes may be used in security labels and privacy markings to classify IT resources based on sensitivity to indicate the obligation of a custodian or receiver to ensure that the protected resource is not made available or disclosed to individuals, entities, or processes (security principals) unless authorized per applicable policies. Confidentiality codes may also be used in the clearances of initiators requesting access to protected resources.\\r\\n\\r\\nThis metadata indicates that the receiver may be obligated to comply with applicable, prevailing (default) jurisdictional privacy law or disclosure authorization.\\r\\n\\r\\nMap: Definition aligns with ISO 7498-2:1989 - Confidentiality is the property that information is not made available or disclosed to unauthorized individuals, entities, or processes. Map: Partial Map to ISO 13606-4 Sensitivity Level (3) Clinical Care: Default for normal clinical care access (i.e. most clinical staff directly caring for the patient should be able to access nearly all of the EHR). Maps to normal confidentiality for treatment information but not to ancillary care, payment and operations.",
"system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
"property" : [ {
"_uri" : "http://hl7.org/fhir/concept-properties#status",
"code" : "status",
"valueCode" : "active"
}, {
"_uri" : "http://terminology.hl7.org/CodeSystem/utg-concept-properties#v3-internal-id",
"code" : "internalId",
"valueCode" : "24047"
}, {
"_uri" : "http://hl7.org/fhir/concept-properties#parent",
"code" : "subsumedBy",
"valueCode" : "SecurityLabelMark"
} ],
"codesystem" : "3f3ee941-b4ac-567a-82e4-52aefc2cff3b",
"concept_id" : "98b04419-4398-5f90-91e6-93d294560d84",
"ancestors" : {
"PrivacyMark" : 2,
"SecurityPolicy" : 3,
"_ActPolicyType" : 4,
"SecurityLabelMark" : 1,
"RestrictedConfidentialityMark" : 0
},
"id" : "3fbed414-83d8-4a83-9967-d2dd784b67d7",
"code" : "RestrictedConfidentialityMark",
"display" : "restricted confidentiality mark",
"version" : "9.0.0"
}