RESUMO
BACKGROUND: Art. 50 of the proposal for a Regulation on the European Health Data Space (EHDS) states that "health data access bodies shall provide access to electronic health data only through a secure processing environment, with technical and organizational measures and security and interoperability requirements". OBJECTIVE: To identify specific security measures that nodes participating in health data spaces shall implement based on the results of the IMPaCT-Data project, whose goal is to facilitate the exchange of electronic health records (EHR) between public entities based in Spain and the secondary use of this information for precision medicine research in compliance with the General Data Protection Regulation (GDPR). DATA AND METHODS: This article presents an analysis of 24 out of a list of 72 security measures identified in the Spanish National Security Scheme (ENS) and adopted by members of the federated data infrastructure developed during the IMPaCT-Data project. RESULTS: The IMPaCT-Data case helps clarify roles and responsibilities of entities willing to participate in the EHDS by reconciling technical system notions with the legal terminology. Most relevant security measures for Data Space Gatekeepers, Enablers and Prosumers are identified and explained. CONCLUSION: The EHDS can only be viable as long as the fiduciary duty of care of public health authorities is preserved; this implies that the secondary use of personal data shall contribute to the public interest and/or to protect the vital interests of the data subjects. This condition can only be met if all nodes participating in a health data space adopt the appropriate organizational and technical security measures necessary to fulfill their role.
Assuntos
Segurança Computacional , Registros Eletrônicos de Saúde , Medicina de Precisão , Medicina de Precisão/métodos , Humanos , Espanha , Europa (Continente) , ConfidencialidadeRESUMO
BACKGROUND: The future European Health Research and Innovation Cloud (HRIC), as fundamental part of the European Health Data Space (EHDS), will promote the secondary use of data and the capabilities to push the boundaries of health research within an ethical and legally compliant framework that reinforces the trust of patients and citizens. OBJECTIVE: This study aimed to analyse health data management mechanisms in Europe to determine their alignment with FAIR principles and data discovery generating best. practices for new data hubs joining the HRIC ecosystem. In this line, the compliance of health data hubs with FAIR principles and data discovery were assessed, and a set of best practices for health data hubs was concluded. METHODS: A survey was conducted in January 2022, involving 99 representative health data hubs from multiple countries, and 42 responses were obtained in June 2022. Stratification methods were employed to cover different levels of granularity. The survey data was analysed to assess compliance with FAIR and data discovery principles. The study started with a general analysis of survey responses, followed by the creation of specific profiles based on three categories: organization type, function, and level of data aggregation. RESULTS: The study produced specific best practices for data hubs regarding the adoption of FAIR principles and data discoverability. It also provided an overview of the survey study and specific profiles derived from category analysis, considering different types of data hubs. CONCLUSIONS: The study concluded that a significant number of health data hubs in Europe did not fully comply with FAIR and data discovery principles. However, the study identified specific best practices that can guide new data hubs in adhering to these principles. The study highlighted the importance of aligning health data management mechanisms with FAIR principles to enhance interoperability and reusability in the future HRIC.
Assuntos
Computação em Nuvem , Humanos , Europa (Continente) , Inquéritos e Questionários , Gerenciamento de Dados/métodos , Registros Eletrônicos de Saúde , Informática Médica/métodosRESUMO
Key Research Areas (KRAs) were identified to establish a semantic interoperability framework for intensive medicine data in Europe. These include assessing common data model value, ensuring smooth data interoperability, supporting data standardization for efficient dataset use, and defining anonymization requirements to balance data protection and innovation.
Assuntos
Registros Eletrônicos de Saúde , Europa (Continente) , Humanos , Interoperabilidade da Informação em Saúde , Cuidados Críticos , Segurança Computacional , SemânticaRESUMO
The objective of this study, as part of the European HealthyCloud project, has been to analyse the data management mechanisms of representative data hubs in Europe and identify whether they comply with an adequate adoption of FAIR principles that will enable data discovery. A dedicated consultation survey was performed, and the analysis of the results allowed to generate a set of comprehensive recommendations and best practices so that these data hubs can be integrated into a data sharing ecosystem such as the future European Health Research and Innovation Cloud.