Unkategorisiert

Commission publishes study on Assessment of the EU Member States’ rules on health data in the light of GDPR 150 150 gdpr4h-project.eu

Commission publishes study on Assessment of the EU Member States’ rules on health data in the light of GDPR

Today, the Commission published a study on the “Assessment of the EU Member States’ rules on health data in the light of GDPR”. The study finds that while the General Data Protection Regulation (GDPR) lays down horizontal directly applicable rules in all Member States, there remains variation in the range of national-level legislation linked to its implementation in the area of health. This, the study suggests, has led to a fragmented approach in the way that health data processing for health and research is conducted in the Member States. This can negatively impact cross-border cooperation for care provision, healthcare system administration, public health or research.

To ensure that European healthcare systems can make the best possible use of health data and to support the development of the European Health Data Space, a number of legal and operational issues need to be addressed in a multi-faceted approach. The study identified potential future EU level actions, including stakeholder-driven Codes of Conduct as well as new targeted and sector-specific EU level legislation. In addition to legal requirements and governance, the study also points to the need for a more harmonised approach across the Member States when it comes to technical infrastructure, technical and semantic interoperability. Data quality and acquisition, digital skills and capacity-building for primary and secondary use of health data were also areas identified where a harmonised approach could be beneficial.

The study goes on to highlight that co-operation between the EU, Member States and relevant stakeholders is important, with a particular focus on the interests of patients. The study specifies that they should be supported as active agents in their own health and care, with full capacity to exercise their health data related rights. In conclusion, the development of the European Health Data Space, including specific legislation to be adopted to complement the proposal for a Data Governance Act, is believed to offer the ideal opportunity to build upon the suggestions outlined in the study. In addition, it is believed to ensure that health data can be used to promote better patient care, more resilient healthcare systems and stronger collaborative public health protection and healthcare research across the European Union.

The study is available at: https://ec.europa.eu/health/sites/health/files/ehealth/docs/ms_rules_health-data_en.pdf .


GDPR APPLICATION IN MEDICAL PRACTICE. OPPORTUNITIES AND BARRIERS. EMA Parnters 622 186 gdpr4h-project.eu

GDPR APPLICATION IN MEDICAL PRACTICE. OPPORTUNITIES AND BARRIERS. EMA Parnters

This meeting, chaired by Vincenzo Costigliola, President of the European Medical Association (EMA), which is a partner of the GDPR for Health Project, https://gdpr4h-project.eu/ , took place as a webinar managed on MEET, with the participation of several members of EMA, February 8th 2021.

This summarized preliminary report is developed by the EMA Director for media, e-learning and e-medicine, integrating the main points developed in the discussion.

The General Data Protection Regulation (GDPR) 2016/679, directly applicable in all Member States by 25 May 2018 requires healthcare organizations to re-think about their data flows and how they handle and monitor patient data. This is needed to make sure they complies with the National and International regulation. Such very important step toward has the goal of building a more digital and inclusive society.

Dr. Costigliola described how its application is already increasing the distance and the promptness of feedback in the relationship between individual patient and physician. Diseases, and much more events that arise in urgency or with important psychological implications, can only rarely wait to be inserted into forms and templates.

The current digital architecture is still quite schematic if not frankly old-fashioned, so that solicits the doctor to a clinical approach based more on formalities rather than on needs deriving from the patient’s interview, visit and study.

The guarantees may become, and are already becoming, barriers for the direct physical contact and intervention in medical practice. Rules, forms and templates to be filled are actual slowing and distancing tools, and for the menaces of controversies, and the ever-looming threat of legal disputes is becoming an obstacle, as demonstrated by the large number of complaints in all European countries. Regardless of the relevance and outcome of these complaints, the effect on the mutual trust between the doctor and patient, and therefore on the final efficacy of many necessary medical acts, is highly disadvantageous.

The permanent confrontation between the many doctors Google and the doctor with immediate ethical, professional and legal responsibility for the patient who relies on him has become a source of positive stimulus, but also a trigger for useless discussions and behaviors full of fake news and irrational approaches, or for proposals and behaviors frankly fanatic or superstitious.

In such conditions, it is safer for the doctor to fall back on quasi-bureaucratic positions, leaving the patients to a fictitious participatory management of their health or illness. The Ethical call for privacy respect and transparency of processes and of data management, while is very appropriate for health organizations and facilities, as well for industries and research institutions, may seriously impair the freedom and the confidentiality of the doctor-patient relationship, challenging the limited possibilities of smaller family practice and limited resources facilities. The need of agile models and systems, well known and applied in several fields and tasks involving computer science, should be taken in greater account, as it is needed and possible.

Among the sustainable mitigation strategies, EMA Members recommend:

1. It is necessary to provide a clear and safe legal umbrella for the whole phase of meeting, interview and visit that the doctor must carry out in all contexts, but especially in small clinics and with minimal IT facilities.

2. National or local health systems, public or private, must be able to provide all context support to the individual professional, who must not be called upon to implement and control the many data, as appropriately required by EU directives and national laws.

3. Greater surveillance and limitation of all health-related activities that are illegally carried out by people who do not have the necessary qualifications (degrees and qualifications), nor an adequate level of professional and scientific updating and certifications are required.

4. The accuracy of the GDPR rules is clearly and appropriately designed and addressed to non-small health organizations and to clinical trials. These last, which are vital for the development of drugs and medical devices, has been and will be a real advance in scientific and ethical civilization. In this role, the European contribution is of pivotal relevance to build skills for life, and improve confidence and interest in learning for successful participation of all medical professionals in all the health aspects of our society.[CP1] 


 [CP1]

Μultiplier Event in Greece: The importance of Data Protection in Healtchare 150 150 gdpr4h-project.eu

Μultiplier Event in Greece: The importance of Data Protection in Healtchare

On January 29th, the final multiplier event in Greece took place online, due to Covid restrictions. The event was a great success with a total of 41 active participants that joined in the lively discussion about the significance of ensuring data protection in the healthcare sector.

Amongst the participants were current DPO professionals as well as inspiring DPO’s from the pharmaceutical industry and specialists, academia and information technology companies.

Participants were interested to learn about European developments in the field of data protection in a post GDPR and post Covid-era. The feedback acquired was valuable to the partnership as it included input and opinions regarding the GDPR4H courses which some participants has already concluded.

During the meeting, participants that were unaware of the GDPR4H Courses were re-introduced and described the outcomes of the GDPR4H partnership and had an exchange of view for the benefits to upskilling their knowledge on data protection rules. Participants were also able to discuss current predicaments and grey-zone legislations in Greece with professional DPO’s in two of the largest pharmaceutical companies of Greece, regarding Covid related data processing.

Mr. Antonis Evangelidis, Director of Regulatory Compliance and Data Protection at Vianex Group presented new digital technological advances used in light of the COVID-19 crisis. While Dr. Georgia Chatzitheodorou, Lawyer and Data Protection Officer at Elpen Group presented the legal challenges for data protection in Health as they were experienced by local pharmaceutical companies during the crises and the actions they took to mitigate legal challenges. Participants took part in a thorough discussion regarding how to handle ambiguous health data related to measures such as employee health information and temperature collection.

Furthermore, during the event the participants were presented with the new objectives of data protection for the next programming period 2021-2027 in the field of health by Ms. Marilida Tsiplakou, European Programs Advisor at AMC. They were also privy to a thorough presentation of how technology and data protection are two interlinked fields by Ms. Chrysa Psyllaki, European Programs Researcher at Skybridge.

Overall the event explored whether technology and skills development can help future DPOs to cope with future public health shocks and how the GDPR4H courses could help develop skills in all professionals dealing with health data. All participants that had not already begun the training courses expressed their interest in doing so and welcomed the initiative as a positive and added value experience that would be used and shared amongst colleagues of their businesses


Abschlussmeeting 554 461 gdpr4h-project.eu

Abschlussmeeting

Die GDPR4H-Partner hielten die letzte Projektsitzung am 13.01.2021 ab. Nach der erfolgreichen Zusammenarbeit endet das GDPR4H Projekt Ende Januar 2021. Das Treffen fand online statt und alle Partner waren anwesend. Jeder Projektpartner stellte den Fortschritt der Aktivitäten vor, für die er verantwortlich war. Die Diskussion der Partner fand in einem angenehmen Klima statt, und es wurden sehr nützliche Schlussfolgerungen gezogen.


Workshops on GDPR 554 311 gdpr4h-project.eu

Workshops on GDPR

Starting on January 25th 2021, we organized daily workshops on GDPR in health in Romania, Greece and Germany. The kick-off workshop took place via Zoom and was well attended. To see the presentation, see below 

C training

GDPR4H presentation intro

GDPR4H Mobility tool for DPOS in Greece, Germany and Romania 554 355 gdpr4h-project.eu

GDPR4H Mobility tool for DPOS in Greece, Germany and Romania

Die Online-Webplattform zur Förderung der Mobilität von Datenschutzbeauftragten in Griechenland, Deutschland und Rumänien wurde   als „Mobility Tool“ für arbeitsbasiertes Lernen etabliert und unterstützt die grenzüberschreitende Mobilität.

Das Mobilitätstool GDPR4H ist unter hier erreichbar: https://mobility.gdpr4h-project.eu/help-page/ .

• Um sich zu registrieren, müssen Sie:

  • Ihren Namen, email Adresse einfügen und ein Passwort wählen.
  • Zwischen 2 Optionen wählen: Kandidat oder Unternehmen. Die ausgewählte Option wird in einem grünen Feld zu sehen sein.

Lesen Sie die Geschäftsbedingungen und stimmen Sie bitte zu, dass Sie damit einverstanden sind, weiterzumachen.

Nach der Erstellung Ihres Kontos können Sie Ihre Daten entweder als Kandidat, für ein Praktikum oder als Unternehmen Praktikumsplätzen ausfüllen.[CP1] 


 [CP1]

Kostenloser Online-Kurs für Berufsbildung: Intensivkurs für Datenschutz im Gesundheitswesen, verfügbar in Deutsch, Griechisch und Rumänisch 960 641 gdpr4h-project.eu

Kostenloser Online-Kurs für Berufsbildung: Intensivkurs für Datenschutz im Gesundheitswesen, verfügbar in Deutsch, Griechisch und Rumänisch

Der Intensivkurs Datenschutz im Gesundheitswesen zielt auf  die Kompetenzerweiterung  für  Datenschutzbeauftragte hin:

  1. Rechtliche Aspekte – die Grundlage für jeden DSB:  Datenschutzrecht
  2. IT Security – Wie sie die Sicherheit von IT-Systemen in Organisationen gewährleisten können: IT-Tools und -Methoden für den Datenschutz
  3. Soft Skills – wie Sie Datenschutzdenken in Organisationen kommunizieren und umsetzen: Soft Skills für DSB
  4. Arbeitsbasiertes Lernen (Work based Learning – WBL) –Lernen aus praktischen Beispielen (online über interaktive Videos und Webinare)

Der Kurs ist verfügbar in:


 [CP1]

Kostenloser Online-Kurs: Sensibilisierung für den Datenschutz im Gesundheitswesen. 554 398 gdpr4h-project.eu

Kostenloser Online-Kurs: Sensibilisierung für den Datenschutz im Gesundheitswesen.

Der Sensibilisierungskurs führt Angehörige der Gesundheitsberufe und Menschen, die sich für Datenschutz im Gesundheitswesen interessieren, in die Grundkonzepte der DSGVO im Gesundheitswesen ein..

Der Kurs ist verfügbar in:


 [CP1]

Questionnaires for Graduate Tracking 1024 1024 gdpr4h-project.eu

Questionnaires for Graduate Tracking

Das GDPR4H-Konsortium startete die Umfrage zu den Graduate Tracking Mechanismen in den  Partnerländern.

Wenn Sie eine Bildungseinrichtung oder Ausbildungsanbieter sind, in Deutschland, Griechenland und Rumänien, widmen Sie bitte 5-10 Minuten, um den folgenden Fragebogen auszufüllen.

Der Fragebogen ist in folgenden Sprachen verfügbar:


 [CP1]

Kostenloser Online-Kurs: Sensibilisierung für den Datenschutz im Gesundheitswesen. 522 207 gdpr4h-project.eu

Kostenloser Online-Kurs: Sensibilisierung für den Datenschutz im Gesundheitswesen.

Der Sensibilisierungskurs führt Angehörige der Gesundheitsberufe und Menschen, die sich für Datenschutz im Gesundheitswesen interessieren, in die Grundkonzepte der DSGVO im Gesundheitswesen ein. Der Kurs dauert ca. 10 Stunden.

Es umfasst 4 Einheiten, in denen die Geschichte des EU-Datenschutzes, die Verantwortlichkeiten von Ärzten, Risikobewertungsverfahren und die Rechte der Patienten analysiert und vorgestellt werden.

  • Einheit 1: listet die grundlegenden Verantwortlichkeiten und Pflichten eines DSB sowie die Bedeutung der Datenverarbeiter und -controller auf.
  • Einheit 2: enthält Informationen über die Bedeutung des Umgangs mit Datenschutzverletzungen sowie über die grundlegenden Patientenrechte in der EU.
  • Einheit 3: beschreibt die grundlegenden digitalen Bedrohungen, die in unserer Welt existieren. Darüber hinaus führt es den Lernenden in die grundlegenden Funktionalitäten des neuen E-Health-Plans ein.
  • Einheit 4: enthält eine Zusammenfassung der wichtigsten historischen Aspekte der DSGVO sowie der Hauptaufgaben der Ärzte bei der Verarbeitung und dem Schutz von persönlichen und gesundheitlichen Daten

Zielgruppe: Mitarbeitende im Gesundheitswesen, die keine DSB sind, aber mit Patientendaten und anderen interessierten Personen in Kontakt kommen .


 [CP1]ΝEW!

Privacy Policy

You may find our privacy policy here.

Privacy Settings

When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Here you can change your Privacy preferences. It is worth noting that blocking some types of cookies may impact your experience on our website and the services we are able to offer.

Click to enable/disable Google Analytics tracking code.
Click to enable/disable Google Fonts.
Click to enable/disable Google Maps.
Click to enable/disable video embeds.
 
Our website uses cookies, mainly from 3rd party services. Feel free to define your Privacy Preferences and/or agree to our use of cookies.