Uncategorized

Commission publishes study on Assessment of the EU Member States’ rules on health data in the light of GDPR 150 150 gdpr4h-project.eu

Commission publishes study on Assessment of the EU Member States’ rules on health data in the light of GDPR

Today, the Commission published a study on the “Assessment of the EU Member States’ rules on health data in the light of GDPR”. The study finds that while the General Data Protection Regulation (GDPR) lays down horizontal directly applicable rules in all Member States, there remains variation in the range of national-level legislation linked to its implementation in the area of health. This, the study suggests, has led to a fragmented approach in the way that health data processing for health and research is conducted in the Member States. This can negatively impact cross-border cooperation for care provision, healthcare system administration, public health or research.

To ensure that European healthcare systems can make the best possible use of health data and to support the development of the European Health Data Space, a number of legal and operational issues need to be addressed in a multi-faceted approach. The study identified potential future EU level actions, including stakeholder-driven Codes of Conduct as well as new targeted and sector-specific EU level legislation. In addition to legal requirements and governance, the study also points to the need for a more harmonised approach across the Member States when it comes to technical infrastructure, technical and semantic interoperability. Data quality and acquisition, digital skills and capacity-building for primary and secondary use of health data were also areas identified where a harmonised approach could be beneficial.

The study goes on to highlight that co-operation between the EU, Member States and relevant stakeholders is important, with a particular focus on the interests of patients. The study specifies that they should be supported as active agents in their own health and care, with full capacity to exercise their health data related rights. In conclusion, the development of the European Health Data Space, including specific legislation to be adopted to complement the proposal for a Data Governance Act, is believed to offer the ideal opportunity to build upon the suggestions outlined in the study. In addition, it is believed to ensure that health data can be used to promote better patient care, more resilient healthcare systems and stronger collaborative public health protection and healthcare research across the European Union.

The study is available at: https://ec.europa.eu/health/sites/health/files/ehealth/docs/ms_rules_health-data_en.pdf .


GDPR APPLICATION IN MEDICAL PRACTICE. OPPORTUNITIES AND BARRIERS. EMA Parnters 622 186 gdpr4h-project.eu

GDPR APPLICATION IN MEDICAL PRACTICE. OPPORTUNITIES AND BARRIERS. EMA Parnters

This meeting, chaired by Vincenzo Costigliola, President of the European Medical Association (EMA), which is a partner of the GDPR for Health Project, https://gdpr4h-project.eu/ , took place as a webinar managed on MEET, with the participation of several members of EMA, February 8th 2021.

This summarized preliminary report is developed by the EMA Director for media, e-learning and e-medicine, integrating the main points developed in the discussion.

The General Data Protection Regulation (GDPR) 2016/679, directly applicable in all Member States by 25 May 2018 requires healthcare organizations to re-think about their data flows and how they handle and monitor patient data. This is needed to make sure they complies with the National and International regulation. Such very important step toward has the goal of building a more digital and inclusive society.

Dr. Costigliola described how its application is already increasing the distance and the promptness of feedback in the relationship between individual patient and physician. Diseases, and much more events that arise in urgency or with important psychological implications, can only rarely wait to be inserted into forms and templates.

The current digital architecture is still quite schematic if not frankly old-fashioned, so that solicits the doctor to a clinical approach based more on formalities rather than on needs deriving from the patient’s interview, visit and study.

The guarantees may become, and are already becoming, barriers for the direct physical contact and intervention in medical practice. Rules, forms and templates to be filled are actual slowing and distancing tools, and for the menaces of controversies, and the ever-looming threat of legal disputes is becoming an obstacle, as demonstrated by the large number of complaints in all European countries. Regardless of the relevance and outcome of these complaints, the effect on the mutual trust between the doctor and patient, and therefore on the final efficacy of many necessary medical acts, is highly disadvantageous.

The permanent confrontation between the many doctors Google and the doctor with immediate ethical, professional and legal responsibility for the patient who relies on him has become a source of positive stimulus, but also a trigger for useless discussions and behaviors full of fake news and irrational approaches, or for proposals and behaviors frankly fanatic or superstitious.

In such conditions, it is safer for the doctor to fall back on quasi-bureaucratic positions, leaving the patients to a fictitious participatory management of their health or illness. The Ethical call for privacy respect and transparency of processes and of data management, while is very appropriate for health organizations and facilities, as well for industries and research institutions, may seriously impair the freedom and the confidentiality of the doctor-patient relationship, challenging the limited possibilities of smaller family practice and limited resources facilities. The need of agile models and systems, well known and applied in several fields and tasks involving computer science, should be taken in greater account, as it is needed and possible.

Among the sustainable mitigation strategies, EMA Members recommend:

1. It is necessary to provide a clear and safe legal umbrella for the whole phase of meeting, interview and visit that the doctor must carry out in all contexts, but especially in small clinics and with minimal IT facilities.

2. National or local health systems, public or private, must be able to provide all context support to the individual professional, who must not be called upon to implement and control the many data, as appropriately required by EU directives and national laws.

3. Greater surveillance and limitation of all health-related activities that are illegally carried out by people who do not have the necessary qualifications (degrees and qualifications), nor an adequate level of professional and scientific updating and certifications are required.

4. The accuracy of the GDPR rules is clearly and appropriately designed and addressed to non-small health organizations and to clinical trials. These last, which are vital for the development of drugs and medical devices, has been and will be a real advance in scientific and ethical civilization. In this role, the European contribution is of pivotal relevance to build skills for life, and improve confidence and interest in learning for successful participation of all medical professionals in all the health aspects of our society.[CP1] 


 [CP1]

Μultiplier Event in Greece: The importance of Data Protection in Healtchare 150 150 gdpr4h-project.eu

Μultiplier Event in Greece: The importance of Data Protection in Healtchare

On January 29th, the final multiplier event in Greece took place online, due to Covid restrictions. The event was a great success with a total of 41 active participants that joined in the lively discussion about the significance of ensuring data protection in the healthcare sector.

Amongst the participants were current DPO professionals as well as inspiring DPO’s from the pharmaceutical industry and specialists, academia and information technology companies.

Participants were interested to learn about European developments in the field of data protection in a post GDPR and post Covid-era. The feedback acquired was valuable to the partnership as it included input and opinions regarding the GDPR4H courses which some participants has already concluded.

During the meeting, participants that were unaware of the GDPR4H Courses were re-introduced and described the outcomes of the GDPR4H partnership and had an exchange of view for the benefits to upskilling their knowledge on data protection rules. Participants were also able to discuss current predicaments and grey-zone legislations in Greece with professional DPO’s in two of the largest pharmaceutical companies of Greece, regarding Covid related data processing.

Mr. Antonis Evangelidis, Director of Regulatory Compliance and Data Protection at Vianex Group presented new digital technological advances used in light of the COVID-19 crisis. While Dr. Georgia Chatzitheodorou, Lawyer and Data Protection Officer at Elpen Group presented the legal challenges for data protection in Health as they were experienced by local pharmaceutical companies during the crises and the actions they took to mitigate legal challenges. Participants took part in a thorough discussion regarding how to handle ambiguous health data related to measures such as employee health information and temperature collection.

Furthermore, during the event the participants were presented with the new objectives of data protection for the next programming period 2021-2027 in the field of health by Ms. Marilida Tsiplakou, European Programs Advisor at AMC. They were also privy to a thorough presentation of how technology and data protection are two interlinked fields by Ms. Chrysa Psyllaki, European Programs Researcher at Skybridge.

Overall the event explored whether technology and skills development can help future DPOs to cope with future public health shocks and how the GDPR4H courses could help develop skills in all professionals dealing with health data. All participants that had not already begun the training courses expressed their interest in doing so and welcomed the initiative as a positive and added value experience that would be used and shared amongst colleagues of their businesses


Întâlnirea finală a proiectului 150 150 gdpr4h-project.eu

Întâlnirea finală a proiectului

Partenerii GDPR4H au organizat ultima reuniune a proiectului pe 13/01/2021. După cooperarea de succes, GDPR4H se încheie la sfârșitul lunii ianuarie 2021. Ședința a avut loc online și toți partenerii au fost prezenți. Fiecare partener de proiect a prezentat progresul activităților de care era responsabil. Discuția partenerilor a avut loc într-un climat minunat și au fost luate concluzii foarte utile.

Workshops on GDPR 554 311 gdpr4h-project.eu

Workshops on GDPR

Starting on January 25th 2021, we organized daily workshops on GDPR in health in Romania, Greece and Germany. The kick-off workshop took place via Zoom and was well attended. To see the presentation, see below 

C training

GDPR4H presentation intro

Instrumentul de mobilitate GDPR4H pentru RPDS în Grecia, Germania și România 554 355 gdpr4h-project.eu

Instrumentul de mobilitate GDPR4H pentru RPDS în Grecia, Germania și România

Platforma web online pentru susținerea mobilității RPDs în Grecia, Germania și România a fost stabilită ca „instrument de mobilitate” pentru WBL, sprijinind mobilitatea transfrontalieră.
Instrumentul GDPR4H Mobility este disponibil la: https://mobility.gdpr4h-project.eu/help-page/.

Pentru a vă înregistra, trebuie să:
• adăugați numele, adresa de e-mail și să setați o parolă.
• Alegeți dintre cele 2 opțiuni: candidat sau companie. Opțiunea selectată va fi trimisă într-o cutie verde.
Citiți termenii și condițiile și vă rugăm să consimțiți să acceptați să continuați.
După crearea contului dvs., veți putea completa datele dvs. fie candidat, căutând WBL, fie ca o companie care oferă poziții WBL.

Curs online gratuit pentru formare profesională: Curs de specializare pentru protecția datelor în sănătate, disponibil în germană, greacă și română 960 641 gdpr4h-project.eu

Curs online gratuit pentru formare profesională: Curs de specializare pentru protecția datelor în sănătate, disponibil în germană, greacă și română

Cursul de specializare pentru protecția datelor în sănătate vizează îmbunătățirea competențelor pentru responsabilii cu protecția datelor. Modulele de curs sunt:

  1. Aspecte juridice – baza pentru fiecare RPD: Legea privind protecția datelor
  2. Securitatea IT – cum să asigurați securitatea sistemelor IT în organizații: instrumente și metodologii IT aplicate în protecția datelor
  3. Soft Skills – cum să comunicați și să implementați gândirea privind protecția datelor în organizații: Soft Skills pentru RPD
  4. Învățare bazată pe muncă (WBL) – Învățare din exemple practice (online prin videoclipuri interactive și seminarii web)

Cursul este disponibil în:
• Germană: https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+01DE+2020/course/

• greacă: https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+01GR+2020/course/

• Română: https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+01RO+2020/course/

Curs online gratuit: CREȘTEREA CONȘTIENTIZĂRII PROTECȚIEI DATELOR ÎN SĂNĂTATE disponibilă în germană, greacă și română 554 398 gdpr4h-project.eu

Curs online gratuit: CREȘTEREA CONȘTIENTIZĂRII PROTECȚIEI DATELOR ÎN SĂNĂTATE disponibilă în germană, greacă și română

Cursul ce creștere a conștientizării protecției datelor în sănătate introduce profesioniștii din domeniul sănătății și persoanele interesate de protecția datelor în sănătate, în conceptele de bază ale GDPR în domeniul asistenței medicale.

Cursul este disponibil în:

• Germană: https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+02AR_DE+2020/course/

• greacă: https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+02A_GR+2020/course/

•Română: . https://mooc.gdpr4h-project.eu/courses/course-v1:gdpr4h+01RO+2020/course/

Chestionare pentru monitorizarea absolvenților 1024 1024 gdpr4h-project.eu

Chestionare pentru monitorizarea absolvenților

Consorțiul GDPR4H a lansat sondajul pentru 1. Mecanisme de urmărire a absolvenților din țările partenere.
Dacă sunteți o instituție de învățământ sau un furnizor de formare, în Germania, Grecia și România, vă rugăm să dedicați 5-10 minute pentru a completa următorul chestionar.
Chestionarul este disponibil în următoarele limbi:
• Engleză: https://docs.google.com/forms/d/e/1FAIpQLScrwTpekwiBM82szfAVz4FuPi2sZlSokmi7p7ZcgsBS4zgHQQ/viewform?usp=sf_link
• Greacă: https://docs.google.com/forms/d/e/1FAIpQLSftUVdG9GZOWHsT13WUXxbCIoIcdXLe20DwLDePmZQoGy0kiA/viewform?usp=sf_link
• Germană: https://docs.google.com/forms/d/e/1FAIpQLSfe2LSeXbQlirXBmPr9t39L-LmgEfcwpq27rP-oC4BBm9sbmA/viewform?usp=sf_link
• Română: https://docs.google.com/forms/d/e/1FAIpQLSc1jGQIsnMlt_KCQk_uz8zOH12cwvCbfItM4IOFZbo_YCfadA/viewform?usp=sf_link

Curs online gratuit: CREȘTEREA CONȘTIENTIZĂRII PROTECȚIEI DATELOR ÎN SĂNĂTATE 522 207 gdpr4h-project.eu

Curs online gratuit: CREȘTEREA CONȘTIENTIZĂRII PROTECȚIEI DATELOR ÎN SĂNĂTATE

Cursul ce creștere a conștientizării protecției datelor în sănătate introduce profesioniștii din domeniul sănătății și persoanele care sunt interesate de protecția datelor în sănătate, în conceptele de bază ale GDPR în domeniul sănătății. Cursul va dura aproximativ 10 ore.
Acesta include 4 unități în care sunt analizate și prezentate istoricul protecției datelor din UE, responsabilitățile medicilor, procedurile de evaluare a riscurilor și drepturile pacienților.
• Unitatea 1: enumeră responsabilitățile și atribuțiile de bază ale unui RPD, precum și importanța procesatorilor și controlorilor de date.
• Unitatea 2: conține informații despre importanța gestionării încălcărilor de date, precum și drepturile de bază ale pacienților în UE.
• Unitatea 3: descrie amenințările digitale de bază care există în lumea noastră. Mai mult, introduce cursantul în funcționalitățile de bază ale noului plan de E-health.
• Unitatea 4: include un rezumat al principalelor aspecte istorice ale GDPR, precum și principalele responsabilități ale medicilor în procesarea și protejarea datelor personale și de sănătate
Grup țintă: angajați din sectorul sănătății, care nu sunt RPD, dar care intră în contact cu datele pacienților și cu orice alte persoane interesate.

Privacy Policy

You may find our privacy policy here.

Privacy Settings

When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Here you can change your Privacy preferences. It is worth noting that blocking some types of cookies may impact your experience on our website and the services we are able to offer.

Click to enable/disable Google Analytics tracking code.
Click to enable/disable Google Fonts.
Click to enable/disable Google Maps.
Click to enable/disable video embeds.
 
Our website uses cookies, mainly from 3rd party services. Feel free to define your Privacy Preferences and/or agree to our use of cookies.