Update operational policy overrides | CAIL Health

Merges the supplied override fields into the operator’s existing override document. Only the keys present in the request body change; everything else is preserved. After per-field validation runs, the merged document is re-validated against the canonical policy schema; refinements that span multiple fields (such as priorHours strictly greater than recentHours) are enforced in that second pass.

Authentication

AuthorizationBearer

Bearer authentication of the form Bearer <token>, where token is your auth token.

Path parameters

idstringRequired

Stable identifier of the operator’s organisation.

Request

This endpoint expects an object.

waitTimeobjectOptional

targetsobjectOptional

reportingobjectOptional

sessionsobjectOptional

exploreobjectOptional

Response

The updated operational policy overrides.

organizationIdstring

Stable identifier of the operator’s organisation.

overridesobject

Per-organisation overrides on top of the jurisdiction defaults. Only the values explicitly overridden by the operator are present; the resolved (merged) policy is what the rest of the platform applies at runtime.

versionIddouble

Monotonically-increasing version number used for optimistic concurrency on updates.

lastUpdatedstring

ISO 8601 timestamp of the last update.

updatedByobject or null

Identifier of the operator who applied the most recent change. Null when the row is the synthetic "no overrides yet" placeholder.

$	curl -X PATCH https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/operational-policy \
>	-H "Authorization: Bearer <token>" \
>	-H "Content-Type: application/json" \
>	-d '{}'

1	{
2	"organizationId": "f47ac10b-58cc-4372-a567-0e02b2c3d479",
3	"overrides": {
4	"waitTime": {
5	"staleWindowHours": 3
6	}
7	},
8	"versionId": 1,
9	"lastUpdated": "2026-05-13T14:21:00.000Z",
10	"updatedBy": "0c1d2e3f-4a5b-4677-8899-aabbccddeeff"
11	}