Medical data as personal data – rules of their processing Review article

Article Sidebar

Requires Subscription PDF (Język Polski)


Published: Mar 31, 2019
DOI: https://doi.org/10.24292/01.MF.0119.1
Keywords:
General Data Protection Regulation, GDPR, personal data, processing, medical data, controller, data processing principles

Main Article Content

Tomasz Osiej
Omni Modo w Warszawie

Abstract

This article presents main rules of the General Data Protection Regulation (GDPR) and explains its application to the healthcare sector. It starts with description of legal nature of the aforementioned regulation as the act of the European Union law and then indicates which entities in the medical sector should be considered the controller of personal data. Then, the notion of personal data processing is discussed in more detail, taking into account the specific features of medical data. Subsequently, the general principles of protection of personal data and their application in healthcare sector are outlined. These include: lawfulness, fairness and transparency; purpose limitation; data minimisation; accuracy; storage limitation as well as integrity and confidentiality.

Article Details

How to Cite
Osiej, T. (2019). Medical data as personal data – rules of their processing. Medycyna Faktow (J EBM), 12(1(42), 6-9. https://doi.org/10.24292/01.MF.0119.1
Issue
Vol 12 No 1(42) (2019)
Section
Articles

Copyright © by Medical Education. All rights reserved.

References

1. Rozporządzenia Parlamentu Europejskiego i Rady (UE) 2016/679 z dnia 27 kwietnia 2016 r. w sprawie ochrony osób fizycznych w związku z przetwarzaniem danych osobowych i w sprawie swobodnego przepływu takich danych oraz uchylenia dyrektywy 95/46/WE (ogólne rozporządzenie o ochronie danych) (Dz.U. L 119 z 4.5.2016, str. 1-88).
2. Litwiński P. (red.): Rozporządzenie UE w sprawie ochrony osób fizycznych w związku z przetwarzaniem danych osobowych i swobodnym przepływem takich danych. Komentarz. Wyd. 1, art. 5. Legalis, Warszawa 2018.