It’s no longer sufficient that patients consent to
use of their data. To do analytics, machine learning or artificial
intelligence (AI) using health-related data, entities in healthcare
delivery, payment, research, and operations must comply with new
Thankfully, BigPrivacy® preserves and even increases
your ability to use health-related personal data.
EU Health-Related Data: GDPR Facts
The GDPR imposes new restrictions on processing health-related
GDPR processing obligations and liabilities apply to both:
Data Controllers processing health-related personal data;
Data Processors processing personal data on behalf of Data
Penalties of up to 4% of global gross revenues of
health-related Data Processors, plus 4% of global gross revenues of
customers of health-related Data Controller customers are
Health-related Data Controllers and Data Processors can be
liable for failures of one another to comply with processing
restrictions due to GDPR joint and several liability
The sensitive nature of health-related data means special Data
Protection Impact Assessments and prior consultations with data
protection supervisory authorities are required.
Companies are forced to deploy unprecedented new technical
measures for health-related Data Controllers and Data Processors to
have a legitimate “legal�? interest in processing health-related
BigPrivacy technology satisfies GDPR requirements for new
technical measures by controlling the linkability of personal data
to individual data subjects.
US Health-Related Data:
Data that is de-identified with BigPrivacy technology overcomes
restrictions on healthcare/life science data use because it is no
longer Protected Health Information (PHI).
BigPrivacy enabled de-identified data supports:
Precise data use;
Artificial Intelligence (AI);
Iterative sampling and analysis; and
Data breach protection beyond data at rest/in transit to also
protect data in use.
Granular enforcement of data sharing restrictions limits data
use to permitted purposes and reduces risk of PHI disclosure.
State-of-the-art technology controls increase accuracy and
availability of data for research, obviate requirements to
purge/minimize data, support informed consent and enable functional
interoperability among heterogeneous data sources.