Boussi Rahmouni, H., Solomonides, T., Casassa Mont, M. and Shiu, S.
Privacy compliance in European healthgrid domains: an ontology-based approach.
22nd IEEE International Symposium on Computer-Based Medical Systems, 2009. CBMS 2009. Albuquerque, NM., 2-5 Au.
Available from: http://eprints.uwe.ac.uk/13298
- Published Version
Publisher's URL: http://dx.doi.org/10.1109/CBMS.2009.5255423
The integration of different European medical systems by means of grid technologies will continue to be challenging if technology does not intervene to enhance interoperability between national regulatory frameworks on data protection. Achieving compliance in European healthgrid domains is crucial but challenging because of the diversity and complexity of Member State legislation across Europe. Lack of automation and inconsistency of processes across health¬care organizations increase the complexity of the compliance task. In the absence of automation, the compliance task entails human intervention. In this paper we present an approach to automate privacy requirements for the sharing of patient data between Member States across Europe in a healthgrid domain and ensure its enforcement internally and within external domains where the data might travel. This approach is based on the semantic modelling of privacy obligations that are of legal, ethical or cultural nature. Our model reflects both similarities and conflicts, if any, between the different Member States. This will allow us to reason on the safeguards a data controller should demand from an organization belonging to another Member State before disclosing medical data to them. The system will also generate the relevant set of policies to be enforced at the process level of the grid to ensure privacy compliance before allowing access to the data.
|Additional Information:||Copyright © 2009 IEEE. Reprinted from 22nd IEEE International Symposium on Computer-Based Medical Systems, 2009. CBMS 2009. 2-5 August 2009. pp. 1-8. ISSN 1063-7125. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of the products or services of the University of the West of England. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to firstname.lastname@example.org.
By choosing to view this document, you agree to all provisions of the copyright laws protecting it.|
|Uncontrolled Keywords:||privacy, healthcare, EU, grid, OWL, rules, biomedical research|
|Faculty/Department:||Faculty of Environment and Technology > Department of Computer Science and Creative Technologies|
H. Boussi Rahmouni
|Deposited On:||04 Nov 2010 12:23|
|Last Modified:||20 Sep 2016 05:57|
Request a change to this item
Total Document Downloads in Past 12 Months