Publication: Mecanismos de prevención del acceso indebido a la historia clínica por parte del personal sanitario y nueva legislación de protección de datos
Authors
Casanova Asencio, Andrea Salud
item.page.secondaryauthor
item.page.director
Publisher
publication.page.editor
publication.page.department
DOI
https://doi.org/10.6018/bioderecho.360771
item.page.type
info:eu-repo/semantics/article
Description
Abstract
El acceso injustificado a la historia clínica por parte del personal sanitario es un problema práctico de marcada incidencia en la actualidad, que no ha conseguido resolverse a pesar de los avances de los últimos años en materia de historia clínica. Al mismo tiempo, la nueva legislación de protección de datos (RGPD y la nueva LOPDGDD) supone un cambio en el modelo de seguridad de los mismos, al requerir una responsabilidad proactiva por parte del responsable del tratamiento, que deberá estudiar el riesgo al que los datos están sometidos por dicho tratamiento con el fin de adoptar las medidas técnicas y organizativas más adecuadas para garantizar la seguridad de los datos ya desde el propio diseño del sistema. Con esta perspectiva, se realiza una exposición y análisis de una serie de mecanismos preventivos de diverso tipo que, aplicados en conjunto, habrían de ser útiles para gestionar de mejor manera el problema de los accesos indebidos a la historia clínica por parte del personal sanitario sin vinculación asistencial.
Access to the medical history by health personnel that isn’t justified by the supplying of the adequate health care –hence being deemed as an unjustified access-is currently a prominent practical problem which hasn’t been solved despite the advance shown by medical history regulations in the last few years. At the same time, the new data protection regulation (GDPR and Spanish LOPDGDD) introduces a new model for the security of the data, emphasizing what is known as “accountability” by the controller of the data, which translates into data protection by design and by default. From this perspective, a series of preventive mechanisms to avoid unjustified access to a medical history is analysed and presented, assuming that the problem requires the joint application of at least several of these preventive tools.
Access to the medical history by health personnel that isn’t justified by the supplying of the adequate health care –hence being deemed as an unjustified access-is currently a prominent practical problem which hasn’t been solved despite the advance shown by medical history regulations in the last few years. At the same time, the new data protection regulation (GDPR and Spanish LOPDGDD) introduces a new model for the security of the data, emphasizing what is known as “accountability” by the controller of the data, which translates into data protection by design and by default. From this perspective, a series of preventive mechanisms to avoid unjustified access to a medical history is analysed and presented, assuming that the problem requires the joint application of at least several of these preventive tools.
publication.page.subject
Historia clínica , Datos de salud , Acceso , Personal sanitario , Vinculación asistencial , Confidencialidad , Seguridad de los datos , Reglamento General de Protección de Datos , Medical history , Health data , Data access , Health personnel , Health care , Confidentiality , Data protection , General Data Protection Regulation
Citation
item.page.embargo
Collections
Ir a Estadísticas
Sin licencia Creative Commons.