Suchergebnisse

A transformed health ecosystem is a multi-stakeholder coalition that collects, stores, and shares personal health information (PHI) for different purposes, such as for personalized care, prevention, health prediction, precise medicine, personal health management, and public health purposes. Those services are data driven, and a lot of PHI is needed not only from received care and treatments, but also from a person's normal life. Collecting, processing, storing, and sharing of the huge amount of sensitive PHI in the ecosystem cause many security, privacy, and trust challenges to be solved. The authors have studied those challenges from different perspectives using existing literature and found that current security and privacy solutions are insufficient, and for the user it is difficult to know whom to trust, and how much. Furthermore, in today's widely used privacy approaches, such as privacy as choice or control and belief or perception based trust does not work in digital health ecosystems. The authors state that it is necessary to redefine the way privacy and trust are understood in health, to develop new legislation to support new privacy and approaches, and to force the stakeholders of the health ecosystem to make their privacy and trust practices and features of their information systems available. The authors have also studied some candidate solutions for security, privacy, and trust to be used in future health ecosystems. ; publishedVersion ; Peer reviewed

Today's digital information systems and applications collect every day a huge amount of personal health information (PHI) from sensor and surveillance systems, and every time we use personal computers or mobile phones. Collected data is processed in clouds, platforms and ecosystems by digital algorithms and machine learning. Pervasive technology, insufficient and ineffective privacy legislation, strong ICT industry and low political will to protect data subject's privacy have together made it almost impossible for a user to know what PHI is collected, how it is used and to whom it is disclosed. Service providers' and organizations' privacy policy documents are cumbersome and they do not guarantee that PHI is not misused. Instead, service users are expected to blindly trust in privacy promises made. In spite of that, majority of individuals are concerned of their privacy, and governments' assurance that they meet the responsibility to protect citizens in real life privacy is actually dead. Because PHI is probably the most sensitive data we have, and the authors claim it cannot be a commodity or public good, they have studied novel privacy approaches to find a way out from the current unsatisfactory situation. Based on findings got, the authors have developed a promising solution for privacy-enabled use of PHI. It is a combination of the concept of information fiduciary duty, Privacy as Trust approach, and privacy by smart contract. This approach shifts the onus of privacy protection onto data collectors and service providers. A specific information fiduciary duty law is needed to harmonize privacy requirements and force the acceptance of proposed solutions. Furthermore, the authors have studied strengths and weaknesses of existing or emerging solutions. ; publishedVersion ; Peer reviewed

Datenschutz und Datensicherheit sind im Gesundheits- und Sozialbereich eine unabdingbare Voraussetzung zur Schaffung des notwendigen Vertrauens zwischen Betroffenen und Institutionen, wie z.B. Patient, Arzt, Arztpraxis, Krankenhaus oder Krankenversicherung. Experten des Arbeitskreises "Datenschutz und Datensicherheit im Gesundheits- und Sozialwesen" der GDD e.V., Bonn, behandeln typische Probleme ihrer Arbeitsfelder und geben auf Basis ihrer langjährigen Erfahrung hilfreiche Tipps und Anregungen für die tägliche Arbeit als Datenschutz- und IT-Sicherheitsbeauftragte/r im Gesundheits- und Sozialbereich, wobei sie das Sozialwesen vor allem an seinen Schnittstellen zum Gesundheitswesen betrachten. Die zweite überarbeitete Auflage wird Ergänzungen zu den Problemkreisen Chipkarten- und Videotechnik, WLANs, elektronische Archivierung, Auditierung u.a. bringen und dabei den jeweils kurzgefassten Handbuchcharakter beibehalten. Ein über 400 Seiten umfassendes Anlagenverzeichnis auf beigefügter CD bietet zahlreiche Beispiele, Muster, Checklisten, Literaturempfehlungen und Rechtsprechungshinweise sowie einschlägige Gesetzestexte. Zielgruppe: Dieses Praktikerhandbuch richtet sich an alle Datenschutz- und Sicherheitsbeauftragte, Revisoren sowie an all diejenigen, die im Gesundheits- und Sozialwesen Verantwortung tragen

The SARS-CoV-2 health emergency has demonstrated the need for developing structured telemedicine systems to protect citizens from the spread of the virus. Thereby, their importance and the necessity to tailor their diffusion at large scale for providing services both at a distance and in time has been shown. For these reasons, the European Union advocates the digital transition of health systems for the next 5 years. The main aim of this work is to revisit the telemedicine research projects financed by European Community during the period 2000-2020 with particular respect to the results derived from their application. The analysis showed that some integration of tele-care and tele-health could be obtained with tele-monitoring systems and the implementation of Electronic Personal Record (EPR). Furthermore, telemedicine allows enhancing health care in critical environments, to protect health and life of the most vulnerable patients, and to encourage cross-border dialogue. The criteria of "from distance" and "timely delivered" are granted, but the effectiveness of the overall offered services highly depends on the availability and the quality of the input data. Unfortunately, this remains a relevant problem in the SARS-CoV-2 pandemic.