Implementation of the General Data Protection Regulation: A Survey in Health Clinics

Isabel Maria Lopes, Pedro Oliveira

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

Abstract

The new General Data Protection Regulation (GDPR) was approved on April 27 2016. The GDPR 2016/679 aims to ensure the coherence of natural persons' protection within the European Union (EU), comprising very important innovative rules that will be applied across the EU and will directly affect every Member State. Furthermore, it aims to overcome the existing fragmented regulations and to modernise the principles of privacy in the EU. This regulation will come into force in May 2018, bringing along several challenges for citizens, companies and other private and public organisations. The protection of personal data is a fundamental right. The GDPR considers a 'special category of personal data', which includes data regarding health, since this is sensitive data and is therefore subject to special conditions regarding treatment and access by third parties. This premise provides the focus of this research work, where the implementation of the GDPR in health clinics in Portugal is analysed. The results are discussed in light of the data collected in the survey and possible future works are identified.

Original languageEnglish
Title of host publication13th Iberian Conference on Information Systems and Technologies. CISTI 2018
EditorsAlvaro Rocha, Manuel Perez Cota, Adolfo Lozano-Tello, Ramiro Goncalves
Number of pages6
Place of PublicationLos Alamitos
PublisherIEEE Computer Society Press
Publication date2018
ISBN (Print)9781538648858
ISBN (Electronic)9789899843486
DOIs
Publication statusPublished - 2018
Externally publishedYes
Event13th Iberian Conference on Information Systems and Technologies, CISTI 2018 - Caceres, Spain
Duration: 13 Jun 201816 Jun 2018
Conference number: 13

Conference

Conference13th Iberian Conference on Information Systems and Technologies, CISTI 2018
Number13
Country/TerritorySpain
CityCaceres
Period13/06/201816/06/2018
SeriesIberian Conference on Information Systems and Technologies, CISTI
ISSN2166-0727

Keywords

  • General data protection regulation
  • Health clinics
  • Personal data
  • Regulation (EU) 2016/679

Cite this