Details
-
Change Request
-
Resolution: Not Persuasive
-
Medium
-
SMART on FHIR (FHIR)
-
2.1.0-ballot
-
FHIR Infrastructure
-
STU
-
SMART App State
-
-
Rick Geimer/Vadim Peretokin: 8-0-1
Description
There are several major considerations that implementers of smart-app-state need to consider that go beyond what is needed for other parts of the SMART spec. For example:
- smart-app-state imposes significant new liability on the implementing EHR and hosting healthcare organizations (for an extreme example, an app stores CSAM material).
- In the case of a data breach in the EHR, disclosure notification for smart-app-state is difficult. For example, if keys are leaked, the EHR does not know what those keys grant access to. Does the key grant access only to the patient's health data, or their entire iCloud account?
- Managing data access policies for the smart-app-state data is difficult/impossible for the EHR to do (since EHRs won't understand the data to apply EHR-specific access policies, and the app doesn't know who the viewing users are, so they can't apply app-specific access policies). There is no clearly responsible party for determining who is responsible for managing which users can see app state content.
- Managing client identity access rules is a major new responsibility (which clients have access to state submitted by other clients). Note that even in the Apple use case, there are two client identities, the patient submitting app and the provider viewing app.
- It is unclear how smart-app-state data should be handled with respect to EHI and Info Blocking (and maybe GDPR?). Similar to the access policy issue, how would an EHR or healthcare organization know if smart-app-state content should be included or not due to privacy or other exceptions. Or what fee structures are allowed.
For the reasons above, and especially because there is significant risk of regulatory agencies (in the US, but also in the EU) naming the SMART App Launch IG as a a required technology without carving out smart-app-launch or experimental features, we'd strongly prefer to see the smart-app-state split into a separate IG so that implementing EHRs are not forced to bear the liability, disclosure reporting and other responsibilities that are imposed by this feature.
Attachments
Issue Links
- is voted on by
-
BALLOT-46343 Negative - Christopher Schaut : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47212 Negative - Danielle Friend : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47213 Negative - Daniel Zhang : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47266 Negative - Cooper Thompson : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47267 Negative - Amit Popat : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47268 Negative - Kimberly Herman : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47269 Negative - Daniel Rutz : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47270 Negative - David Sundaram-Stukel : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47271 Negative - Thanos Tsiolis : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47272 Negative - Chris Courville : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47338 Negative - Isaac Vetter : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47379 Negative - Carl Dvorak : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Withdrawn
-
BALLOT-47339 Negative - Vassil Peytchev : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
- mentioned in
-
Page Loading...