Golden article for the Healthcare people. Processing individual(s)’ health data will soon be subject to stricter requirements after enactment of the EU GDPR.
Consent must be given clearly, freely, explicitly, informed and must agree on all purposes. An additional one must be approved by the individual and this cannot be covered in advance.
– that of scientific reserch (given the impossibility to foresee all posisble studies),
– that of anonymised data (but the threshold is really high in EU: it must be absolutely impossible using the top-notch technology and a professional company’s resources), and
– to prevent public outcries.
From 1/1/2018 all medical devices need to be registerd with CFDA. See the further 5 highlights.
Such exemption has been used, for example , to share information on pool historic loss (potentially harming competition and rising premia).
On the other side, this could burden further insurance companies, already under compliance duties at state level.
Test results, treatment plans and further confidential information belonging to hundreds of thousands of patients may have gone lost from 2011 to 2016.
Interesting development in the Dutch Healthcare Law: when the current system had been set up, the government foresaw a ban on profits distribution to shareholders, given the public interest of social healthcare.
The ban has been extended from time to time and the nth extension is about to arrive.
The original purpose of this law was to force companies to lower their premium but this is not automatically the outcome. In fact, in order to preserve quality and accessibility, the law also prohibits profits to be used to lower premia.
Last but not least, this makes it harder for new players to enter this market.
Is it just, is it not? What is just? To be or not to be?
The ever lasting debate over whether a DNA is patentable or not. While EU (see Directive for the Legal Protection of Biotechnological Inventions (98/44/EC)) gave some guidance on the patentability of biological process, South African Law has no indications.
Guidelines on the safety and risk management of patient data in the healthcare’s app industry from the U.S.
- connection is insecure.
- cookies may be placed without users’ consent.
One of the possible consequences may be third parties breaching in your life, offering you products to solve your diseases, spamming or even blackmailing you.
What can you do?
- First off, check my post where I advice on how not being tracked by Facebook and similar internet service providers.
- Provide as many true data as possible. if necessary, 10minutesmail.com allows you to create temporary e-mail addresses.
Finally France joins the club. If citizens don’t opt out, their organs will be donated (after death) to who needs them .
France’s Health Minister is stepping up against cyber(in)security, given that 90% of cyber attacks generally targets hospital and healthcare institutions.
THe proposed plan foresees 3 levels of measures to be implemented in, respectively, 6, 12 and 18 months.
First layer: installation of an antivirus program, the use of strong passwords, and their frequent renewal, as well as a backup carried out on a regular basis
Second and third layer: bolster security of users’ accounts, of access to the wireless internet, segregation of the information systems, and an audit of the risks of information systems