EHRS-FM IG

ISO/HL7 10781 - Electronic Health Record System Functional Model, Release 2.1
0.14.0 - CI Build

ISO/HL7 10781 - Electronic Health Record System Functional Model, Release 2.1 - Local Development build (v0.14.0) built by the FHIR (HL7® FHIR® Standard) Build Tools. See the Directory of published versions

Requirements: RI.1.1.26.1 Evidence of Record Entry Encryption Event (Function)

Active as of 2024-06-01
Statement N:

Maintain Evidence of Record Entry Encryption Event

Description I:

Evidence of Record Entry Encryption Event includes key metadata, ensures health record integrity (and trust) and enables record audit.

Criteria N:
RI.1.1.26.1#01 SHALL

The system SHALL audit each occurrence when Record Entry content is encrypted.

RI.1.1.26.1#02 SHALL

The system SHALL capture identity of the organization where Record Entry content is encrypted.

RI.1.1.26.1#03 SHALL

The system SHALL capture identity of the patient who is subject of encrypted Record Entry content.

RI.1.1.26.1#04 SHALL

IF a user initiated a Record Entry content encryption, THEN the system SHALL capture identity of the user initiating Record Entry content encryption.

RI.1.1.26.1#05 SHALL

The system SHALL capture identity of the system application which encrypted Record Entry content.

RI.1.1.26.1#06 SHALL

The system SHALL capture the type of Record Event trigger (i.e., encryption).

RI.1.1.26.1#07 SHALL

The system SHALL capture the date and time Record Entry content is encrypted.

RI.1.1.26.1#08 SHALL

The system SHALL capture identity of the location (i.e., network address) where Record Entry content is encrypted.

RI.1.1.26.1#09 MAY

IF a user initiated a Record Entry encryption, THEN the system MAY capture the rationale for encrypting Record Entry content.

RI.1.1.26.1#10 SHALL

The system SHALL capture a sequence identifier for encrypted Record Entry content.

RI.1.1.26.1#11 SHOULD

The system SHOULD capture the identifier and version of Encryption Tools used for each encrypted Record Entry.

RI.1.1.26.1#12 SHOULD

The system SHOULD capture a reference (e.g., link, pointer) to pre-encrypted data for each Record Entry encryption.