GDPR Compliance Process for Health Care Providers
Confidentiality is a key aspect of health care provision, and health professionals must take extraordinary care in order to protect their patient’s privacy.
GDPR introduces significantly stricter general rules for personal data processing in comparison to the previous ones and its extraterritorial application for non-EU data controllers in cases which we previously wrote about. The strictest data processing rules relate to personal data concerning health, i.e. related to physical or mental health of a natural person, including the provision of health services, which reveal information about one’s health status.