Cloud computing for s-health and the data protection challenge: Getting ready for the General Data Protection Regulation

The recently approved General Data Protection Regulation (GDPR) will change deeply the European privacy framework. Despite the aim of updating the legislative provisions to the challenges of the information society, the GDPR leaves open serious questions and shortcomings, especially in the context of cloud computing for s-health. The purpose of the paper is twofold: after having outlined the major innovations of the new GDPR for ensuring data protection in cloud environments, paying particular attention to the processing in the healthcare sector, the main unresolved issues will be critically addressed.

[1]  Chunxiao Xing,et al.  Chronic Knowledge Retrieval and Smart Health Services Based on Big Data , 2015, ICSH.

[2]  Roberto Di Pietro,et al.  Smart health: A context-aware health paradigm within smart cities , 2014, IEEE Communications Magazine.

[3]  L. Hood,et al.  Predictive, personalized, preventive, participatory (P4) cancer medicine , 2011, Nature Reviews Clinical Oncology.

[4]  Peter Blume Controller and processor: is there a risk of confusion? , 2013 .

[5]  Z. Zhi-qi Strategy and Action for Cloud Computing of the European Union:Unleashing the Potential of Cloud Computing in Europe , 2013 .

[6]  Paolo Balboni,et al.  Cloud Computing: A Guide to Evaluate and Negotiate Cloud Service Agreements in the Light of the Actual European Legal Framework , 2013 .

[7]  Iheanyi Nwankwo Missing Links in the Proposed EU Data Protection Regulation and Cloud Computing Scenarios: A Brief Overview , 2014 .

[8]  Paul De Hert,et al.  The new General Data Protection Regulation: Still a sound system for the protection of individuals? , 2016, Comput. Law Secur. Rev..

[9]  Brendan Van Alsenoy Allocating responsibility among controllers, processors, and "everything in between": the definition of actors and roles in Directive 95/46/EC , 2012, Comput. Law Secur. Rev..

[10]  Bert-Jaap Koops,et al.  The trouble with European data protection law , 2014 .

[11]  Jameela Al-Jaroodi,et al.  e-Health Cloud: Opportunities and Challenges , 2012, Future Internet.

[12]  Gerrit Hornung,et al.  A General Data Protection Regulation for Europe? Light and shade in the Commission’s draft of 25 January 2012 , 2012 .

[13]  Christopher Millard,et al.  The problem of ‘personal data’ in cloud computing: what information is regulated?—the cloud of unknowing , 2011 .

[14]  Martina Ziefle,et al.  From Smart Health to Smart Hospitals , 2015, Smart Health.

[15]  Mauro Conti,et al.  A smart health application and its related privacy issues , 2016, 2016 Smart City Security and Privacy Workshop (SCSP-W).