Loading...

XML

Word

Printable

JSON

Details

Type: Change Request
Resolution: Not Persuasive
Priority: Medium

Specification:

SMART on FHIR (FHIR)
Raised in Version:

2.1.0-ballot
Work Group:

FHIR Infrastructure
Outstanding Negatives:
STU
Related URL:
https://hl7.org/fhir/smart-app-launch/2023Jan/app-state.html
Related Artifact(s):

SMART App State
Grouping:
- WGM
Resolution Description:

Hide

There are many real-world considerations involved in developing health IT systems. The SMART App State capability standardizes functionality that has already been built and deployed (in less standard ways – that's what we're trying to fix here) by at least 5 EHR vendors, so there's good reason to be confident that the use cases themselves can be addressed, with risks mitigated by real-world systems.

We have included explicit implementation considerations (https://hl7.org/fhir/smart-app-launch/2023Jan/app-state.html#implementation-considerations-for-ehrs) and design notes (https://hl7.org/fhir/smart-app-launch/2023Jan/app-state.html#design-notes) to address known issues, and would consider expanding these sections based on specific feedback.

Splitting this content out into a separate IG would cause fragmentation of content and would make changes harder to synchronize.

Show
There are many real-world considerations involved in developing health IT systems. The SMART App State capability standardizes functionality that has already been built and deployed (in less standard ways – that's what we're trying to fix here) by at least 5 EHR vendors, so there's good reason to be confident that the use cases themselves can be addressed, with risks mitigated by real-world systems. We have included explicit implementation considerations ( https://hl7.org/fhir/smart-app-launch/2023Jan/app-state.html#implementation-considerations-for-ehrs ) and design notes ( https://hl7.org/fhir/smart-app-launch/2023Jan/app-state.html#design-notes ) to address known issues, and would consider expanding these sections based on specific feedback. Splitting this content out into a separate IG would cause fragmentation of content and would make changes harder to synchronize.
Resolution Vote:
Rick Geimer/Vadim Peretokin: 8-0-1

Description

There are several major considerations that implementers of smart-app-state need to consider that go beyond what is needed for other parts of the SMART spec. For example:

smart-app-state imposes significant new liability on the implementing EHR and hosting healthcare organizations (for an extreme example, an app stores CSAM material).
In the case of a data breach in the EHR, disclosure notification for smart-app-state is difficult. For example, if keys are leaked, the EHR does not know what those keys grant access to. Does the key grant access only to the patient's health data, or their entire iCloud account?
Managing data access policies for the smart-app-state data is difficult/impossible for the EHR to do (since EHRs won't understand the data to apply EHR-specific access policies, and the app doesn't know who the viewing users are, so they can't apply app-specific access policies). There is no clearly responsible party for determining who is responsible for managing which users can see app state content.
Managing client identity access rules is a major new responsibility (which clients have access to state submitted by other clients). Note that even in the Apple use case, there are two client identities, the patient submitting app and the provider viewing app.
It is unclear how smart-app-state data should be handled with respect to EHI and Info Blocking (and maybe GDPR?). Similar to the access policy issue, how would an EHR or healthcare organization know if smart-app-state content should be included or not due to privacy or other exceptions. Or what fee structures are allowed.

For the reasons above, and especially because there is significant risk of regulatory agencies (in the US, but also in the EU) naming the SMART App Launch IG as a a required technology without carving out smart-app-launch or experimental features, we'd strongly prefer to see the smart-app-state split into a separate IG so that implementing EHRs are not forced to bear the liability, disclosure reporting and other responsibilities that are imposed by this feature.

Attachments

Issue Links

is voted on by

BALLOT-46343 Negative - Christopher Schaut : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47212 Negative - Danielle Friend : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47213 Negative - Daniel Zhang : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47266 Negative - Cooper Thompson : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47267 Negative - Amit Popat : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47268 Negative - Kimberly Herman : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47269 Negative - Daniel Rutz : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47270 Negative - David Sundaram-Stukel : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47271 Negative - Thanos Tsiolis : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47272 Negative - Chris Courville : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47338 Negative - Isaac Vetter : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47379 Negative - Carl Dvorak : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Withdrawn

BALLOT-47339 Negative - Vassil Peytchev : 2023-Jan-HL7 FHIR IG SMART APP LAUNCH R2 STU

Closed

mentioned in: Page Loading...

(8 is voted on by, 1 mentioned in)

Activity

People

Assignee:: Unassigned

Reporter:: Cooper Thompson

Watchers:: 2 Start watching this issue

Dates

Created:: 2023-01-02 09:34

Updated:: 2023-01-19 08:00

Resolved:: 2023-01-18 08:00

Vote Date:: 2023-01-19