Regional Hosting of Personal Health Information

K

kreid

Involved In Discussions
Hello,

Does anyone know of any countries and/or regulatory authorities that have restrictions on where personal health information can be stored, transitted through or processed?

For example, if I have a web portal that captures personal health information in Europe and that information is stored on the cloud on servers in Asia and processed in Australia and then returned through the same route.
Some of the data will be stored for a number of years both on the cloud servers and locally in Australia.

And the same example but with the data being American PHI, or any other regions that might be sensitive.

Thanks

kreid
 
A

anmael

Registered
Hi kreid,

as for Europe you should have a look at the General Data Protection Regulation (GDPR) which was adopted on 27 April 2016 and enters into application 25 May 2018. It extends the scope of EU data protection law to all foreign companies processing data of EU residents. The penalties for non-compliance are up to 5% of a company's annual global turnover...

Regards, Angelika.
 
shimonv

shimonv

Trusted Information Resource
And on the US side you should take a look on HIPAA regulation. It has a lot of restrictions regarding the handling of patient health information (PHI).

Shimon
 
You must log in or register to reply here.

Similar threads

Tagin
Hosting in the cloud still requires DR (OVH fire)
Replies
1
Views
1K
Richard Regalado
Richard Regalado
Forum Administrator
  • Locked
  • Sticky
Privacy Policy
Replies
0
Views
22K
Forum Administrator
Forum Administrator
Forum Administrator
  • Locked
  • Sticky
Terms & Conditions of Use
Replies
0
Views
15K
Forum Administrator
Forum Administrator
L
Implementation of ISO 27001 as part of the GDPR compliance journey
Replies
2
Views
2K
AndyN
A
Marc
Guide To Inspections Of Medical Device Manufacturers - 1997 (06/08/2010)
Replies
3
Views
4K
Marc
Marc
Top Bottom