Diagnostics: Data and Processing

My personal assessment

  • You are creating a digital service in the health field.
  • You are using personal health data. This is sensitive data subject to a specific regime, in particular the GDPR regime for Sensitive Data.
  • Their processing requires secure hosting (HDS, health data hosting) and information for individuals.
  • These health data are only consulted by the user. You must set up a strong authentication system.
  • You will exchange data with other information systems. You will integrate your service in tools for professionals, and will be interoperable.
  • If you process personal health data and contribute to care actions. You must unambiguously identify the patient using the INS (national health identifier).

To learn more, see the regulatory topics that concern you.

What to do next? Carry out the Diagnostics of the Purpose of my service, in order to identify whether you are subject to the medical device regulation.

Consult the regulatory files

RGPD Sensitive data

RGPD Sensitive data

The RGPD Sensitive Data corresponds to the General Data Protection Regulation applied to the healthcare sector.

Safety

Enforceable

SIS Interoperability Framework (CI-SIS)

SIS Interoperability Framework (CI-SIS)

The Health Information Systems Interoperability Framework (CI-SIS) sets the rules for communicating healthcare IT.

Interoperability

Soon enforceable

Healthcare data hosting (HDS)

Healthcare data hosting (HDS)

Health data hosting (HDS) must be carried out under security conditions appropriate to their criticality.

Safety

Enforceable

National Health Identity (INS)

National Health Identity (INS)

The National Health Identity (INS) enables healthcare data to be referenced with a unique, long-lasting identity shared by all healthcare professionals.

Safety

Enforceable

Diagnostics: Purpose of my service
Go back to the previous question