Project deliverable Open Access

MyHealthMyData (MHMD): Deliverable 2.6 - Privacy-by-design and compliance assessment

Cristofaro, Lorenzo; Panetta, Rocco

MARC21 XML Export

<?xml version='1.0' encoding='UTF-8'?>
<record xmlns="">
  <datafield tag="041" ind1=" " ind2=" ">
    <subfield code="a">eng</subfield>
  <controlfield tag="005">20200120165517.0</controlfield>
  <controlfield tag="001">3541594</controlfield>
  <datafield tag="700" ind1=" " ind2=" ">
    <subfield code="u">Panetta &amp; Associati</subfield>
    <subfield code="a">Panetta, Rocco</subfield>
  <datafield tag="856" ind1="4" ind2=" ">
    <subfield code="s">3880913</subfield>
    <subfield code="z">md5:0a24ebd8eeb01c94a3982f82c39d9d20</subfield>
    <subfield code="u"> and compliance assessment (final) web version.pdf</subfield>
  <datafield tag="542" ind1=" " ind2=" ">
    <subfield code="l">open</subfield>
  <datafield tag="260" ind1=" " ind2=" ">
    <subfield code="c">2019-10-31</subfield>
  <datafield tag="909" ind1="C" ind2="O">
    <subfield code="p">openaire</subfield>
    <subfield code="p">user-myhealthmydata_eu</subfield>
    <subfield code="o"></subfield>
  <datafield tag="100" ind1=" " ind2=" ">
    <subfield code="u">Panetta &amp; Associati</subfield>
    <subfield code="a">Cristofaro, Lorenzo</subfield>
  <datafield tag="245" ind1=" " ind2=" ">
    <subfield code="a">MyHealthMyData (MHMD): Deliverable 2.6 - Privacy-by-design and compliance assessment</subfield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">user-myhealthmydata_eu</subfield>
  <datafield tag="536" ind1=" " ind2=" ">
    <subfield code="c">732907</subfield>
    <subfield code="a">My Health - My Data</subfield>
  <datafield tag="540" ind1=" " ind2=" ">
    <subfield code="u"></subfield>
    <subfield code="a">Creative Commons Attribution 4.0 International</subfield>
  <datafield tag="650" ind1="1" ind2="7">
    <subfield code="a">cc-by</subfield>
    <subfield code="2"></subfield>
  <datafield tag="520" ind1=" " ind2=" ">
    <subfield code="a">&lt;p&gt;This deliverable represents the&amp;nbsp;&lt;em&gt;data protection impact assessment&lt;/em&gt;&amp;nbsp;(DPIA) of the MHMD project. It has been produced to&amp;nbsp;assess and&amp;nbsp;certify the&amp;nbsp;compliance of the MHMD system to the data privacy and security constraints and requirements set out in the GDPR.&amp;nbsp;&lt;/p&gt;

&lt;p&gt;The DPIA is a tool&amp;nbsp;especially required in the GDPR when the processing on a large scale of special categories of data takes place and consists of&amp;nbsp;a process for building and demonstrating compliance.&amp;nbsp;It is&amp;nbsp;designed to&amp;nbsp;describe the processing, assess its necessity and proportionality, and help manage the risks to the rights and freedoms of data subjects&amp;nbsp;which may result from the envisaged operations involving personal data, in order to identify and then adopt the measures which allow the controller to best address such risks.&amp;nbsp;In line with the risk-based approach underpinning by the GDPR, carrying out a DPIA is not mandatory for every processing operation: this is only required where a type of processing, on account of its nature, scope, context and purposes, is likely to result in a &amp;laquo;high risk&amp;raquo; to the rights and freedoms of natural persons (Art. 35.1).&lt;/p&gt;

&lt;p&gt;The MHMD&amp;nbsp;&lt;em&gt;Privacy by design and compliance assessment&amp;nbsp;&lt;/em&gt;describes&amp;nbsp;MHMD actors&amp;nbsp;with relevant roles, obligations and responsibilities,&amp;nbsp;personal data categories and processing operations involved,&amp;nbsp;system components&amp;nbsp;(user and hospital interfaces, data catalogue, blockchain architecture model),&amp;nbsp;data usage modalities&amp;nbsp;(i.e., data sharing and secure local computation),&amp;nbsp;data de-identification measures and&amp;nbsp;system security.&lt;/p&gt;</subfield>
  <datafield tag="773" ind1=" " ind2=" ">
    <subfield code="n">doi</subfield>
    <subfield code="i">isVersionOf</subfield>
    <subfield code="a">10.5281/zenodo.3541593</subfield>
  <datafield tag="024" ind1=" " ind2=" ">
    <subfield code="a">10.5281/zenodo.3541594</subfield>
    <subfield code="2">doi</subfield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">publication</subfield>
    <subfield code="b">deliverable</subfield>
All versions This version
Views 165166
Downloads 145145
Data volume 562.7 MB562.7 MB
Unique views 151152
Unique downloads 124124


Cite as