scholarly journals Data Protection by Design in the E-Health Care Sector

2021 ◽  
Author(s):  
Giorgia Bincoletto
Keyword(s):  
Health Care ◽  
Data Protection ◽  
Medical Information ◽  
Health Care Sector ◽  
Design Stage ◽  
Personal Health ◽  
Sensitive Information ◽  
Primary Concern ◽  
Health Technologies ◽  
Data Subject

In the digital age, e-health technologies play a pivotal role in the processing of medical information. As personal health data represent sensitive information concerning a data subject, enhancing data protection and security of systems and practices has become a primary concern. This book explores how an e-health system could be developed and how data processing activities could be carried out to apply data protection principles and requirements from the design stage. There is currently a lack of clarity and knowledge on the topic among developers, data controllers and stakeholders. The research attempts to bridge the gap between the legal and technical disciplines on DPbD by providing a set of guidelines for the implementation of the principle in the e-health care sector.

scholarly journals Continuity of care in Ghana: the promise of smart-med

2014 ◽  
Vol 3 (4) ◽  
pp. 473
Author(s):  
Henry Ogoe ◽  
Odame Agyapong ◽  
Fredrick Troas Lutterodt
Keyword(s):  
Health Care ◽  
Health Care Providers ◽  
Continuity Of Care ◽  
Medical Information ◽  
Care Delivery ◽  
Personal Health Records ◽  
Personal Health ◽  
Care Providers ◽  
Health Records ◽  
Fragmentation Of Care

Individuals tend to receive medical care from different health care providers as they drift from one location to another. Oftentimes, multiple providers operate disparate systems of managing patients medical records. These disparate systems, which are unable to share and/or exchange information, have the propensity to create fragmentation of care, which poses a serious threat to the realization of continuity of care in the Ghanaian health care delivery. Continuity of care, which is the ability to seamlessly access, update, and manage patients medical information as they visit multiple providers, is a crucial component of quality of care in any health delivery system. The current system of managing patients records in Ghanapaper-basedmakes continuity of care difficult to actualize. To this end, we have developed a smartcard based personal health records system, SMART-MED, which can effectively promote continuity of care in Ghana. SMART-MED is platform-independent; it can run as standalone or configured to plug into any Java-based electronic medical record system. Results of a lab simulation test suggest that it can effectively promote continuity of care through improved data security, support interoperability for disparate systems, and seamless access and update of patients health records. Keywords: Continuity of Care, Fragmentation of Care, Interoperability, Personal Health Records, Smartcard.

scholarly journals Making the Case for a P2P Personal Health Record

Information ◽  
2020 ◽  
Vol 11 (11) ◽  
pp. 512
Author(s):  
William Connor Horne ◽  
Zina Ben Miled
Keyword(s):  
Health Care ◽  
Health Care Providers ◽  
Medical Information ◽  
Third Party ◽  
Personal Health ◽  
Health Record ◽  
Care Providers ◽  
Health Records ◽  
Client Server ◽  
Proposed Model

Improved health care services can benefit from a more seamless exchange of medical information between patients and health care providers. This exchange is especially important considering the increasing trends in mobility, comorbidity and outbreaks. However, current Electronic Health Records (EHR) tend to be institution-centric, often leaving the medical information of the patient fragmented and more importantly inaccessible to the patient for sharing with other health providers in a timely manner. Nearly a decade ago, several client–server models for personal health records (PHR) were proposed. The aim of these previous PHRs was to address data fragmentation issues. However, these models were not widely adopted by patients. This paper discusses the need for a new PHR model that can enhance the patient experience by making medical services more accessible. The aims of the proposed model are to (1) help patients maintain a complete lifelong health record, (2) facilitate timely communication and data sharing with health care providers from multiple institutions and (3) promote integration with advanced third-party services (e.g., risk prediction for chronic diseases) that require access to the patient’s health data. The proposed model is based on a Peer-to-Peer (P2P) network as opposed to the client–server architecture of the previous PHR models. This architecture consists of a central index server that manages the network and acts as a mediator, a peer client for patients and providers that allows them to manage health records and connect to the network, and a service client that enables third-party providers to offer services to the patients. This distributed architecture is essential since it promotes ownership of the health record by the patient instead of the health care institution. Moreover, it allows the patient to subscribe to an extended range of personalized e-health services.

scholarly journals The Complex Path to Quantum Resistance

Queue ◽  
2021 ◽  
Vol 19 (2) ◽  
pp. 65-92
Author(s):  
Atefeh Mashatan ◽  
Douglas Heintzman
Keyword(s):  
Health Care ◽  
Quantum Computing ◽  
Communication Technology ◽  
Data Protection ◽  
Quantum Communication ◽  
New Technology ◽  
Security And Privacy ◽  
Sensitive Information ◽  
Information Communication ◽  
Cryptographic Techniques

There is a new technology on the horizon that will forever change the information security and privacy industry landscape. Quantum computing, together with quantum communication, will have many beneficial applications but will also be capable of breaking many of today's most popular cryptographic techniques that help ensure data protection?in particular, confidentiality and integrity of sensitive information. These techniques are ubiquitously embedded in today's digital fabric and implemented by many industries such as finance, health care, utilities, and the broader information communication technology (ICT) community. It is therefore imperative for ICT executives to prepare for the transition from quantum-vulnerable to quantum-resistant technologies.

scholarly journals Data Transmission and Access Protection of Community Medical Internet of Things

2017 ◽  
Vol 2017 ◽  
pp. 1-14 ◽  
Author(s):  
Xunbao Wang ◽  
Fulong Chen ◽  
Heping Ye ◽  
Jie Yang ◽  
Junru Zhu ◽  
...  
Keyword(s):  
Internet Of Things ◽  
Access Control ◽  
Data Protection ◽  
Data Transmission ◽  
High Performance ◽  
Medical Information ◽  
Medical Data ◽  
Medical Information System ◽  
Sensitive Information ◽  
Protection Scheme

On the basis of Internet of Things (IoT) technologies, Community Medical Internet of Things (CMIoT) is a new medical information system and generates massive multiple types of medical data which contain all kinds of user identity data, various types of medical data, and other sensitive information. To effectively protect users’ privacy, we propose a secure privacy data protection scheme including transmission protection and access control. For the uplink transmission data protection, bidirectional identity authentication and fragmented multipath data transmission are used, and for the downlink data protection, fine grained access control and dynamic authorization are used. Through theoretical analysis and experiment evaluation, it is proved that the community medical data can be effectively protected in the transmission and access process without high performance loss.

scholarly journals Privacy Laws and Privacy by Design Schemes for the Internet of Things

2021 ◽  
Vol 54 (5) ◽  
pp. 1-38
Author(s):  
Atheer Aljeraisy ◽  
Masoud Barati ◽  
Omer Rana ◽  
Charith Perera
Keyword(s):  
Internet Of Things ◽  
Data Protection ◽  
Personal Information ◽  
Design Stage ◽  
Sensitive Information ◽  
Privacy By Design ◽  
Framework Analysis ◽  
Systematic Analysis ◽  
Consumer Privacy ◽  
Privacy Act

Internet of Things applications have the potential to derive sensitive information about individuals. Therefore, developers must exercise due diligence to make sure that data are managed according to the privacy regulations and data protection laws. However, doing so can be a difficult and challenging task. Recent research has revealed that developers typically face difficulties when complying with regulations. One key reason is that, at times, regulations are vague and could be challenging to extract and enact such legal requirements. In this article, we have conducted a systematic analysis of the privacy and data protection laws that are used across different continents, namely (i) General Data Protection Regulations, (ii) the Personal Information Protection and Electronic Documents Act, (iii) the California Consumer Privacy Act, (iv) Australian Privacy Principles, and (v) New Zealand’s Privacy Act 1993. Then, we used framework analysis method to attain a comprehensive view of different privacy and data protection laws and highlighted the disparities to assist developers in adhering to the regulations across different regions, along with creating a Combined Privacy Law Framework (CPLF). After that, the key principles and individuals’ rights of the CPLF were mapped with Privacy by Design (PbD) schemes (e.g., privacy principles, strategies, guidelines, and patterns) developed previously by different researchers to investigate the gaps in existing schemes. Subsequently, we have demonstrated how to apply and map privacy patterns into IoT architectures at the design stage and have also highlighted the complexity of doing such mapping. Finally, we have identified the major challenges that should be addressed and potential research directions to take the burden off software developers when applying privacy-preserving techniques that comply with privacy and data protection laws. We have released a companion technical report [3] that comprises all definitions, detailed steps on how we developed the CPLF, and detailed mappings between CPLF and PbD schemes.

Sign in / Sign up

Export Citation Format

Share Document