WSEAS Transactions on Environment and Development


Print ISSN: 1790-5079
E-ISSN: 2224-3496

Volume 14, 2018

Notice: As of 2014 and for the forthcoming years, the publication frequency/periodicity of WSEAS Journals is adapted to the 'continuously updated' model. What this means is that instead of being separated into issues, new papers will be added on a continuous basis, allowing a more regular flow and shorter publication times. The papers will appear in reverse order, therefore the most recent one will be on top.

Volume 14, 2018


GDPR and its Implementation in a Healthcare Facility

AUTHORS: Michaela Zelená, Petr Svoboda, Jakub Rak, Miroslav Tomek

Download as PDF

ABSTRACT: This article deals with the implementation of the GDPR in a selected healthcare facility. The theoretical part of the article introduces the legislative framework that regulates issues and the most relevant terms relating to the GDPR. The practical part is focused on the characteristics of the selected facility which is subjected to a GAP analysis. Subsequently, the processes carried out in the facility are described. Based on the information available, appropriate measures are proposed and summarized to protect personal data and to guarantee compliance with the requirements of the GDPR. The last part of the article describes data processing and a security incident report form

KEYWORDS: data, GDPR, implementation, protection, personal

REFERENCES:

[1] ZELENÁ, Michaela, Petr SVOBODA, Jakub RAK a Miroslav TOMEK. The Use of GAP Analysis Method for Implementing the GDPR in a Healthcare Facility: Applied Physics, System Science and Computers III: Proceedings of the 3nd International Conference on Applied Physics, Systém Science and Computers (APSAC2018. Dubrovnik, Croatia: Springer, 2018. ISSN 978-3-319- 75605-9.

[2] NEZMAR, Luděk. GDPR: praktický průvodce implementací. (GDPR: Practical Implementation Guide). Praha: Grada Publishing, 2017, 304 s. Právo pro praxi. ISBN 978-80-271-0668-4.

[3] ČESKO. Zákon č. 101/2000 Sb., o ochraně osobních údajů a o změně některých zákonů. (The Czech Republic. Act No. 101/2000 Sb., on the Protection of Personal Data and on Amendment to Some Acts).

[4] EVROPSKÁ UNIE. Nařízení Evropského parlamentu a Rady EU č. 2016/679 o ochraně fyzických osob v souvislosti se zpracováním osobních údajů a o volném pohybu těchto údajů (Regulation EU 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data) Obecné nařízení o ochraně osobních údajů – General Data Protection Regulation – GDPR.

[5] Rozhovor s jednatelem nejmenovaného vybraného subjektu nestátního zdravotnického zařízení ze dne 5. 4. 2018 (Interview with the manager of the unnamed non-state health care facility of 5 April 2018)

[6] DATOVÝ OCHRÁNCE S.R.O., © Copyright 2018. Datový ochránce: GDPR ve zdravotnictví

[online]. (The Data Protector: GDPR in Health Services) 2018

[cit. 2018-04- 07]. Available at: https://www.datovyochrance.cz/gdpr-vezdravotnictvi/

[7] LA POLLA, M, Fabio MARTINELLI a D SGANDURRA. Survey on Security for Mobile Devices. IEEE Communications Surveys

[online]. IEEE, 2013, 15(1), 446-471

[cit. 2018-04-04]. DOI: 10.1109/SURV.2012.013012.00028. ISSN 1553877X.

[8] KRÁL, Mojmír, Bezpečný internet: Chraňte sebe i svůj počítač. (Safe Internet: Protect yourself and your computer) Prague: Grada Publishing, 2015, 184 p. ISBN 978-80-247- 5453-6

WSEAS Transactions on Environment and Development, ISSN / E-ISSN: 1790-5079 / 2224-3496, Volume 14, 2018, Art. #70, pp. 643-652


Copyright © 2018 Author(s) retain the copyright of this article. This article is published under the terms of the Creative Commons Attribution License 4.0

Bulletin Board

Currently:

The editorial board is accepting papers.


WSEAS Main Site