Defines data objects for describing rules for distributing or sharing electronic healthcare records in part or whole. Establishes general principles for interaction of these data objects with other mechanisms and components within an electronic healthcare record application, and controlling the distribution of whole or part records. Establishes ways to create information with associated security attributes, and specifies principles allowing security policies to be implemented and incorporated enabling the safe use of data. Allows the sharing of records distributed in space, time or responsibility, but does not specify the data objects and packages represented in an Information System.