We can decide that different aspects of the data within a document can be made available, whereas other attributes can not.
For example, in a patient record, we could decide that a patient’s name would be accessible by only the practitioners and the accounting department. But the patient history would never be available to accounting. Further, we could decide that a researcher could have access to everything but the person’s identifying information, name, social, and address number, but for research purposes, we might want to know the street name and zip.
This capability is called fine-grained access controls, or element level security. This means that every element within the document can have unique permissions on it—depending on the organizational policies.
We can decide that different aspects of the data within a document can be made available, whereas other attributes can not.
For example, in a patient record, we could decide that a patient’s name would be accessible by only the practitioners and the accounting department. But the patient history would never be available to accounting. Further, we could decide that a researcher could have access to everything but the person’s identifying information, name, social, and address number, but for research purposes, we might want to know the street name and zip.
This capability is called fine-grained access controls, or element level security. This means that every element within the document can have unique permissions on it—depending on the organizational policies.