澳大利亚电子健康档案全生命周期隐私保护体系及借鉴

加强电子健康档案隐私保护,是保障电子健康档案有效利用的重要前提,也是当前世界各国面临的共同挑战。本文通过调研澳大利亚电子健康档案隐私保护的法律政策、标准指南和实践做法,介绍了澳大利亚电子健康档案的发展历程,并从规划阶段、收集阶段、存储阶段、利用阶段、销毁阶段介绍了澳大利亚电子健康档案全生命周期的隐私保护体系。我们可以借鉴学习澳大利亚的经验做法,从完善电子健康档案隐私保护的法律法规、强化电子健康档案隐私保护的监管体制、充分调动电子健康档案隐私保护的个人积极性、重视电子健康档案规划阶段的隐私影响评估等方面,进一步完善我国电子健康档案隐私保护体系。

Privacy protection for electronic health record(EHR) is an important prerequisite to realize the benefits of electronic health records and a pressing challenge faced by all countries in the world. This Paper attempts to investigate the privacy protection laws and regulations, provisions and guidelines as well as the practice for the EHR system-My Health Record in Australia. This paper will not only introduce the development of EHR in Australia but also its privacy protection framework covering the whole life cycle during stages of planning, collection, retention, use and disposal for EHR. We could learn from the experience and practice of Australia to further improve the EHR privacy protection in China. It suggests that we should further formulate laws and regulations to protect the privacy for EHR . We should strengthen the regulation and supervision for EHR . We should promote the individual awareness of privacy protection for EHR. We should attach great importance to privacy impact assessment during the planning stage for EHR.