Legal Challenges for IT Service Providers in Pharmacogenomics - PubMed

Legal Challenges for IT Service Providers in Pharmacogenomics - PubMed

Legal Challenges for IT Service Providers in Pharmacogenomics

Lea Meier 1, Kevin Tippenhauer 1, Murat Sariyar 1

Affiliations 

• PMID: 32604597
 
• DOI: 10.3233/SHTI200490

Abstract

IT providers offering services based on genetic data face serious challenges in managing health data in compliance with the General Data Protection Regulation (GDPR). Based on a literature research and our experiences, an overview of GDPR compliant processing of sensitive data is given. The GDPR requirements for processing sensitive data were specified for a use case concerning a service provider of a pharmacogenomic decision support system. Start-ups who want to enter into the health market also have to comply with the Medical Device Regulation (MDR). The associated efforts for legal compliance constitute an impediment for many start-ups. We created a comprehensive overview, which aligned the requirements of the GDPR with the life-cycle of a medical device. This overview shall help start-ups to grasp and overcome the regulatory hurdles faster.

Keywords: GDPR; data management; general data protection regulation; genetic data; sensitive data.

Similar articles

• OpenEHR and General Data Protection Regulation: Evaluation of Principles and Requirements.

  Gonçalves-Ferreira D, Sousa M, Bacelar-Silva GM, Frade S, Antunes LF, Beale T, Cruz-Correia R.JMIR Med Inform. 2019 Mar 25;7(1):e9845. doi: 10.2196/medinform.9845.PMID: 30907730 Free PMC article.
• Impact of the European General Data Protection Regulation (GDPR) on Health Data Management in a European Union Candidate Country: A Case Study of Serbia.

  Marovic B, Curcin V.JMIR Med Inform. 2020 Apr 17;8(4):e14604. doi: 10.2196/14604.PMID: 32301736 Free PMC article.
• "Just-in-time" generation of datasets by considering structured representations of given consent for GDPR compliance.

  Debruyne C, Pandit HJ, Lewis D, O'Sullivan D.Knowl Inf Syst. 2020;62(9):3615-3640. doi: 10.1007/s10115-020-01468-x. Epub 2020 Apr 15.PMID: 32647404 Free PMC article.
• Review of a medical illustration department's data processing system to confirm general data protection regulation (GDPR) compliance.

  Edwards S.J Vis Commun Med. 2019 Jul;42(3):140-143. doi: 10.1080/17453054.2019.1594724. Epub 2019 May 15.PMID: 31088229 Review.
• [Legally regulated teleradiology: implementation of data protection legal requirements].

  Schütze B, Kämmerer M.Radiologe. 2019 Jul;59(7):637-642. doi: 10.1007/s00117-019-0536-3.PMID: 31073630 Review. German.