Skip main navigation

Data retention

Apart from anonymisation, another important safeguard is data retention. Data retention means that personal data cannot be kept longer than necessary for the purpose for which it was processed. It …

Meet the Data Protection Officer

Hospitals process large amounts of sensitive health data. This is why the GDPR provides that a Data Protection Officer (DPO) needs to be appointed. The DPO is involved whenever an …

Safeguards

You learned that a lot of data are being collected and used within the healthcare sector in order to treat patients as well as for medical research purposes. As long …

Data security

There are always risks involved when working with personal data, if it’s an electronic or hardcopy patient file. This is why the GDPR provides for provisions relating to security of …

Medical research

You learned that the GDPR requires a legal basis for processing personal (health) data, consent being one of them. Article 6 determines that personal data may be processed if a …

Cross-border health data and research

You have learned that health data can cross borders in different ways. In Anna’s case, her medical file was sent from her Dutch gynaecologist to her German gynaecologist and back. …

Cross-border health data

In the modern age we live in, health data flows in different ways. The increase in such flows raises challenges and concerns as regards the protection of personal data. In …

Crossing borders

Health data can cross borders in different ways. It is inherent to the modern age with all its technologies that there are no limits to a country’s borders. Due to …

Risks involved in processing health data

As Anna’s doctor explained, using commercial apps in a medical context is not always as easy or well-recommended as one might think. Three elements are of importance when using modern …

Commercial apps in a medical context

You have seen all Anna’s data flows. Some of these data flows are generated by using commercial apps and wearables. Medical professionals are generally not big fans of using commercial …

Apps and wearables

Last week you learned that medical data is part of health data and that this is a special categories of data according to Article 9 GDPR. Besides this legal protection …

Summary and closing

Congratulations for finishing this course! We discussed various topics relating to the protection of health data. You learned about all the relevant legal aspects and you gained knowledge on the …

Closing remarks

This week, we introduced how health data is protected in light of the GDPR. You learned about the background, general legal aspects, obligations and responsibilities for controllers and processors for …

Risks involved with processing health data

Processing personal data may lead to risks to the rights and freedoms of persons. Even more so if it concerns sensitive data, like health data. The GDPR provides for legal …

Rights of data subjects

We have seen that with processing personal data come great responsibilities and obligations for controllers and processors. This includes making sure that data subjects are able to exercise their rights. …