GDPR COMPLIANCE ANALYSIS REGARDING THE USE OF PERSONAL DATA FOR PUBLIC HEALTH PURPOSES IN ROMANIA
Abstract:
The General Data Protection Regulation (GDPR) came into force on 25th of May 2016 and
highlighted the importance of confidentiality in all economic and social areas. The medical sector is
one of the best regulated areas regarding the confidentiality of patient’s health information, as per the
law no. 95/2006 and law no. 46/2003. Although these laws regulate many privacy aspects involving
the doctor-patient relation, there is a need to update them to keep up with the latest evolutions of the
emerging technologies, especially with telemedicine. Using the overview of the rules regarding the
health data processing in Romania, published by the European Data Protection Board (EDPB) in
2021 and comparing it with the public health and research laws currently applied in Romania, it
resulted that there is a non-regulation gap related to the secondary use of health data in terms of
planning, management and improvement of the healthcare system, as well as in terms of using that
data for scientific and historical research purposes.
full text article in English (.EN) |