Existing Wording: AuditEvent.object.sensitivity: Denotes policy-defined sensitivity for the Participant Object ID such as VIP, HIV status, mental health status or similar topics. AuditEventObjectSensitivity: Example: See http://hl7.org/fhir/vs/audit-event-sensitivity (The sensitivity of an object. May also encompass confidentiality and rudimentary access control (e.g. HCS)).

Requirements: This field identifies a specific instance of an object, such as a patient, to detect/track privacy and security issues.

Comments: Values from ATNA are institution- and implementation-defined text strings (in sensitivity. Text). HL7 defines confidentiality codes for records, documents etc. that can also be used here.

Proposed Wording: AuditEvent.object.confidentiality: Denotes policy-defined confidentiality classification for the Participant Object ID, as conveyed by the HL7 InformationSensitivityPolicy from the FHIR Security Label vocabulary such as VIP, HIV status, mental health status or other sensitive health information.

Comment:

AuditEvent.object.sensitivity: This should be confidentiality, not sensitivity. Sensitivity is the security characteristic related to the risk and vulnerability of the subject if the information is disclosed to unauthorized recipients. Confidentiality is the security classification that indicates the stringency with which this sensitive information should be additionally protected or segmented from unauthorized recipients.