Change search
Link to record
Permanent link

Direct link
Publications (3 of 3) Show all publications
He, Z. (2022). Privacy-enhancing Technologies for Active and Assisted Living: What Does the GDPR Say?. In: PETRA '22: Proceedings of the 15th International Conference on PErvasive Technologies Related to Assistive Environments. Paper presented at PETRA '22: The15th International Conference on PErvasive Technologies Related to Assistive Environments, Corfu, Greece, June 29 - July 1, 2022 (pp. 430-433). New York: Association for Computing Machinery
Open this publication in new window or tab >>Privacy-enhancing Technologies for Active and Assisted Living: What Does the GDPR Say?
2022 (English)In: PETRA '22: Proceedings of the 15th International Conference on PErvasive Technologies Related to Assistive Environments, New York: Association for Computing Machinery , 2022, p. 430-433Conference paper, Published paper (Refereed)
Abstract [en]

Privacy-enhancing technologies (PETs) promise to safeguard privacy and security alongside the use of active and assisted living (AAL) tools. To what extent PETs meet the expectations of EU data protection norms however needs to be better understood. This paper aims to determine whether PETs used for AAL purposes are anonymisation or pseudonymisation methods under the General Data Protection Regulation (GDPR). In this paper, doctrinal legal research is used as the main research method. This means that primary legal sources such as EU laws will be relied upon and analysed in the context of PETs for AAL purposes. Specifically, this paper first conducted an inquiry into several important EU data protection concepts, namely anonymisation, pseudonymisation and data protection by design. On this basis, focus was shifted to state-of-the-art PETs for AAL, which are then used as examples to measure against these data protection concepts. A closer look at PETs in the AAL context finds that most groups of PETs for AAL are more likely to be considered as pseudonymisation methods rather than anonymisation methods because of their technical reversibility. This general assessment is however subject to change in each specific case since the notion of anonymisation under the GDPR is not absolute, but contextual specific and sensitive to factors such as costs, time, and available technologies for re-identification. Based on the findings, clearer guidance seems necessary in order to determine what constitutes anonymisation under the EU data protection regime such that legal certainty could be increased. 

Place, publisher, year, edition, pages
New York: Association for Computing Machinery, 2022
Keywords
Active and assisted living, Anonymisation, Data protection by design, GDPR, Privacy-enhancing technologies, Pseudonymisation, Sensitive data, Anonymization, Data protection by designs, General data protection regulations, Legal research, Privacy and security, Privacy enhancing technologies, Protection concepts, Research method, Assisted living
National Category
Law and Society
Identifiers
urn:nbn:se:su:diva-212129 (URN)10.1145/3529190.3534719 (DOI)2-s2.0-85134433507 (Scopus ID)9781450396318 (ISBN)
Conference
PETRA '22: The15th International Conference on PErvasive Technologies Related to Assistive Environments, Corfu, Greece, June 29 - July 1, 2022
Available from: 2022-12-01 Created: 2022-12-01 Last updated: 2022-12-01Bibliographically approved
He, Z. (2022). When data protection norms meet digital health technology: China's regulatory approaches to health data protection. The Computer Law and Security Review, 47, Article ID 105758.
Open this publication in new window or tab >>When data protection norms meet digital health technology: China's regulatory approaches to health data protection
2022 (English)In: The Computer Law and Security Review, ISSN 0267-3649, Vol. 47, article id 105758Article in journal (Refereed) Published
Abstract [en]

While ageing remains a global concern, it is especially challenging for China, which has the world's largest ageing population. In response, the Chinese government has introduced digitalisation policies that clearly embrace the use of information and communication technologies in health. To enhance data protection in this tide of digital transformation, China adopted its first ever standalone data protection legislation in 2021, the Personal Information Protection Law, which is expected to have huge impacts on technology and data processing. This paper captures these significant changes related to technological advances and regulatory approaches. It aims to explore the interplay between China's new data protection legal regime and the digital health advances which were proposed to facilitate healthcare in an ageing society. To do so, the paper first reviews and categorises the use of digital tools for various health functions and argues that the use of digital health technologies creates significant data protection concerns. The paper then investigates to what extent China's data protection rules mitigate privacy risks created by digital health technologies. An evolutionary overview of China's data protection legal landscape is mapped out. On this basis, outstanding legal issues surrounding health data protection are explored, contributing to a nuanced analysis of health data processing under different scenarios including: (1) healthcare provision; (2) health research; (3) public health; (4) social care and health management in a non-medical context; and (5) real-world data for market approval. The paper shows that the Personal Information Protection Law renders China's data protection legal landscape less fragmented and offers important legal safeguards for health data. Despite legislative advances, a closer look at relevant provisions in the Personal Information Protection Law and their interplay with other regulations reveals areas where further clarification is needed, including the definition of health data, the meaning of ‘separate consent’, data minimisation requirements for health apps, and the operation of the enforcement mechanism. The paper ends with indicating potential steps forward, with a hope that the benefits of digital health can be realised in a manner that respects privacy and human dignity.

Keywords
China, Chinese law, Data protection, Digital health, Health data, Information technology, Digital devices, Health care, Health risks, Information use, Laws and legislation, Metadata, Public health, Aging population, Chinese Government, Digital transformation, Health technology, Information and Communication Technologies, Personal information protections, Data privacy
National Category
Law Media and Communications
Identifiers
urn:nbn:se:su:diva-211762 (URN)10.1016/j.clsr.2022.105758 (DOI)000888063900002 ()2-s2.0-85139839063 (Scopus ID)
Available from: 2022-11-25 Created: 2022-11-25 Last updated: 2022-12-20Bibliographically approved
Ake-Kob, A., Blazeviciene, A., Colonna, L., Čartolovni, A., Dantas, C., Fedosov, A., . . . Tamò-Larrieux, A. (2021). State of the Art on Ethical, Legal, and Social Issues Linked to Audio- and Video-Based AAL Solutions. COST (European Cooperation in Science and Technology)
Open this publication in new window or tab >>State of the Art on Ethical, Legal, and Social Issues Linked to Audio- and Video-Based AAL Solutions
Show others...
2021 (English)Report (Other academic)
Abstract [en]

Ambient assisted living (AAL) technologies are increasingly presented and sold as essential smart additions to daily life and home environments that will radically transform the healthcare and wellness markets of the future. An ethical approach and a thorough understanding of all ethics in surveillance/monitoring architectures are therefore pressing. AAL poses many ethical challenges raising questions that will affect immediate acceptance and long-term usage. Furthermore, ethical issues emerge from social inequalities and their potential exacerbation by AAL, accentuating the existing access gap between high-income countries (HIC) and low and middle-income countries (LMIC). Legal aspects mainly refer to the adherence to existing legal frameworks and cover issues related to product safety, data protection, cybersecurity, intellectual property, and access to data by public, private, and government bodies. Successful privacy-friendly AAL applications are needed, as the pressure to bring Internet of Things (IoT) devices and ones equipped with artificial intelligence (AI) quickly to market cannot overlook the fact that the environments in which AAL will operate are mostly private (e.g., the home). The social issues focus on the impact of AAL technologies before and after their adoption. Future AAL technologies need to consider all aspects of equality such as gender, race, age and social disadvantages and avoid increasing loneliness and isolation among, e.g. older and frail people. Finally, the current power asymmetries between the target and general populations should not be underestimated nor should the discrepant needs and motivations of the target group and those developing and deploying AAL systems. Whilst AAL technologies provide promising solutions for the health and social care challenges, they are not exempt from ethical, legal and social issues (ELSI). A set of ELSI guidelines is needed to integrate these factors at the research and development stage.

 

Place, publisher, year, edition, pages
COST (European Cooperation in Science and Technology), 2021. p. 56
Keywords
Ethical principles, Privacy, Assistive Living Technologies, Privacy by Design, General Data Protection Regulation
National Category
Law (excluding Law and Society)
Identifiers
urn:nbn:se:su:diva-215115 (URN)
Available from: 2023-02-28 Created: 2023-02-28 Last updated: 2023-03-08Bibliographically approved
Organisations
Identifiers
ORCID iD: ORCID iD iconorcid.org/0000-0001-9145-6959

Search in DiVA

Show all publications