E-health: privacy, security questioned
SECURITYBy BiztechAfrica - Feb. 7, 2013, 6:20 a.m.
By Issa Sikiti da Silva, in Dakar, Senegal
Although they would not say it in public, many professionals in Africa, as well as in the developed world, have admitted that e-health implementation could be affected by privacy and security issues, an analyst told Biztechafrica in Dakar.
“There will be a lot of data sharing in e-health systems among various healthcare providers and professionals, meaning people’s medical records will be out there in the open, moving from John to Paul to Mary, and that it’s making many professionals very uncomfortable,” IT consultant Ibrahima Ndoye said.
“The big question now is will these systems through which this data will move be safe, secure and effective? This is EPR we’re talking about here, and it’s not only a sensitive issue, but also confidential.”
EPR stands for electronic patient records, and basically consists of digitised paper-based records. Some however call it EHR, electronic health records.
“People shouldn’t just jump of joy about this e-health thing, it’s a very complicated situation that needs a strong legal framework, and in places such as Africa where chaos and inconsistency reign every day in the governance of these systems, the worries and concerns are justified.”
Ndoye’s sentiments seemed to be echoed by Naipeng Dong, Hugo Jonker and Jun Pang, of the Faculty of Sciences, Technology and Communication at the University of Luxembourg.
They said: “E-health systems have to deal with a far more complex constellation of roles: doctors, patients, pharmacists, insurance companies, medical administration, etc.
“Each of these roles has access to different private information and different privacy concerns. As existing privacy approaches from other domains are not properly equipped to handle such a diverse array of roles, privacy must be tailored to the health-care domain.”
Ndoye said each and every system will have to be fitted with strong monitoring mechanisms to ensure that medical data that goes through is not tampered with. “I don’t think e-health will move forward if the privacy and safety concerns are properly addressed,” he said.
Privacy in e-health has been recognised as one of the paramount requirements necessary for adoption by the general public, according to Dong, Jonker and Pang wrote.
The issue of privacy and security of e-health records sparked a heated debate in Australia last year, with various experts and political parties urging the government to amend some sections of Personally Controlled E-Health Record Bills (PCEHR) before passed into law.
One such party was the Greens, who recommended that the government make five amendments to the proposed legislation to include greater privacy protections.
“The issue of privacy and security is an ongoing debate, even in the countries where e-health has supposedly been adopted. There is still some pockets of resistance out there who fear the unknown, and their fears are truly justified.”
MORE SECURITY NEWS
Cyber security concerns for 2014 and beyondMobile threats, targeted attacks and vulnerabilities for the Internet of Everything have been highlighted in Trend Micro’s annual security predictions report. Read More
Corporate cyber security threats of the year91% of organisations polled suffered a cyber-attack at least once in the past year, says Kaspersky Lab in its security review of 2013. Read More
Managed security services grows in EMEAThe managed security services market in EMEA is experiencing rapid growth as the proliferation of targeted cyber attacks compel organisations to turn to MSS providers for their security needs, says Frost & Sullivan. Read More
Expert predicts ‘doom’ for corporate GhanaA cybercrime expert has warned that urgent steps must be taken to address the ‘incessant cybercrimes' impacting corporates in Ghana. Read More
Q3 2013 sees alarming growth in data threatsThe third quarter of 2013 was a turning point for malware writers specialising in mobile platforms, says Kaspersky Lab. Read More
Fortinet illustrates need for real world firewall testingSecurity solutions firm Fortinet has illustrated the significant difference in performance achieved by various Next Generation Firewalls under real world conditions. Read More
Cyber Security Africa to host the 2nd East Africa IT & Cyber Security ConventionAfter the success of the inaugural East Africa IT & Cyber Security Convention last year, the global event series for heads of ICT and security enters its second year. Read More
New guidelines for securing card dataThe international PCI Security Standards Council (PCI SSC) has published version 3.0 of the PCI Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS). Read More
ARM, NetClean partner to stop child abuse contentSpecialist security distributor African Risk Mitigation (ARM) has partnered with NetClean in the fight against the proliferation of child sexual abuse images across Africa. Read More
FEATURED STORYGaming app introduces investors to trading
A new virtual stock market app is equipping would-be investors with the skills they need to trade.
BEST READ NEWS
IN DEPTHCorporate cyber security threats of the year
91% of organisations polled suffered a cyber-attack at least once in the past year, says Kaspersky Lab in its security review of 2013.
COMPANY NEWSSamsung, 49M embark on consumer educational drive
Samsung Electronics South Africa has announced a national consumer education campaign in support of the 49M initiative, offering practical actions to save energy in daily life.