On April 7, the International Health Day was celebrated. Personal data relating to health are considered as a special category and therefore specially protected. At the BD4QoL project, we are aware of the importance of treating the most sensitive data correctly.
BD4QoL considers and addresses ethical and legal aspects related to sensitive data collection, supervised remote patients’ support by Point-of-Care (PoC) physicians and data transfer and integration, under privacy and security regulations established by General Data Protection Regulation (GDPR).
Data Protection Officers (DPOs) at participating hospitals, data management institutions and organizations (including industrial partners and SMEs, and Lombardy Region) are actively involved under the supervision of the Coordinator in the management of Ethics.
Inetum complies with all requirements relating to the processing of health data as set out by all ethics committees, and in particular the UK IRAS. Moreover, strict perimeter security tests have been carried out on the datacenter, and no vulnerability has been found at either the infrastructure or application level.
Among the deliverables that have been made during the project in terms of privacy and security we highlight:
- Agreement for sharing and use of confidential information and Data
- Privacy protection and ethics management specifications
- Data Protection Impact Assessment (DPIA)
