Abstract
The healthcare sector is a massive producer and a dependent user of data, making the data gathering, its treatment and sharing of big importance. Advances in technology have enabled healthcare providers to store it in a digital form called electronic medical records (EMRs). These records are shared with various stakeholders such as patients, healthcare professionals, providers, insurance companies, pharmacies, etc. In a field as sensitive as healthcare, the integration of new technologies is crucial. Blockchain technology has emerged as an immutable technology ready to support changes in the healthcare system due to its transparency and decentralized features. As healthcare information are highly sensitive, it is also highly regulated to ensure patient privacy. Regulatory frameworks such as the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA) are designed to help reduce the risk of health data breaches. Blockchain characteristics can improve interoperability, anonymity, and control of access to health data; however, blockchain applications must comply with the current regulatory framework to increase their viability in the real world. This paper analyzes the compliance of blockchain-based EHR systems with HIPAA and GDPR, as well as other areas for improvement.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hasselgren, A., Wan, P.K., Horn, M., Kralevska, K., Gligoroski, D., Faxvaag, A.: GDPR compliance for blockchain applications in healthcare. arXiv, 27 Sept 2020. Consulté le: 28 avr 2023. [En ligne]. Disponible sur: http://arxiv.org/abs/2009.12913
Zhou, C., Barati, M., Shafiq, O.: A compliance-based architecture for supporting GDPR accountability in cloud computing. Future Gener. Comput. Syst. 145, 104–120 (2023). https://doi.org/10.1016/j.future.2023.03.021
Hussein, R., et al.: General data protection regulation (GDPR) toolkit for digital health. Stud. Health Technol. Inform. 290, 222–226 (2022). https://doi.org/10.3233/SHTI220066
Poelman, M., Iqbal, S.: Investigating the compliance of the GDPR: processing personal data on a blockchain. In: 2021 IEEE 5th International Conference on Cryptography, Security and Privacy (CSP), pp. 38–44 (2021). https://doi.org/10.1109/CSP51677.2021.9357590
Health Insurance Portability and Accountability Act of 1996 (HIPAA) | CDC 28 juin 2022. https://www.cdc.gov/phlp/publications/topic/hipaa.html. Consulté le 28 avr 2023
Moore, W., Frye, S.: Review of HIPAA, part 1: history, protected health information, and privacy and security rules. J. Nucl. Med. Technol. 47(4), 269–272 (2019). https://doi.org/10.2967/jnmt.119.227819
Hasselgren, A., Kralevska, K., Gligoroski, D., Faxvaag, A.: GDPR compliant blockchain and distributed ledger technologies in the health sector. Stud. Health Technol. Inform. 270, 1293–1294 (2020). https://doi.org/10.3233/SHTI200408
Lee, T.-F., Chang, I.-P., Kung, T.-S.: Blockchain-based healthcare information preservation using extended chaotic maps for HIPAA privacy/security regulations. Appl. Sci. 11(22) (2021). Art. no 22. https://doi.org/10.3390/app112210576
Campanile, L., Iacono, M., Marulli, F., Mastroianni, M.: Designing a GDPR compliant blockchain-based IoV distributed information tracking system. Inf. Process. Manag. 58(3), 102511 (2021). https://doi.org/10.1016/j.ipm.2021.102511
Lee, W.-S., John, A., Hsu, H.-C., Hsiung, P.-A.: SPChain: a smart and private blockchain-enabled framework for combining GDPR-compliant digital assets management with AI models. IEEE Access 10, 130424–130443 (2022). https://doi.org/10.1109/ACCESS.2022.3227969
Bhalerao, R., Gite, P., Patil, P., Gupta, R., Singh, S.: Decentralized E-health patient record management system using blockchain and IPFS. In: 2023 International Conference on Innovative Data Communication Technologies and Application (ICIDCA), pp. 781–785 (2023). https://doi.org/10.1109/ICIDCA56705.2023.10100060
Kuo, T.-T., Kim, J., Gabriel, R.A.: Privacy-preserving model learning on a blockchain network-of-networks. J. Am. Med. Inform. Assoc. 27(3), 343–354 (2020). https://doi.org/10.1093/jamia/ocz214
Gohar, A.N., Abdelmawgoud, S.A., Farhan, M.S.: A patient-centric healthcare framework reference architecture for better semantic interoperability based on blockchain, cloud, and IoT. IEEE Access 10, 92137–92157 (2022). https://doi.org/10.1109/ACCESS.2022.3202902
Zhan, W., Chen, C.-L., Weng, W., Tsaur, W.-J., Lim, Z.-Y., Deng, Y.-Y.: Incentive EMR sharing system based on consortium blockchain and IPFS. Healthcare (Basel) 10(10), 1840 (2022). https://doi.org/10.3390/healthcare10101840
Patel, V.: A framework for secure and decentralized sharing of medical imaging data via blockchain consensus. Health Inf. J. 25(4), 1398–1411 (2019). https://doi.org/10.1177/1460458218769699
Mani, V., Manickam, P., Alotaibi, Y., Alghamdi, S., Khalaf, O.I.: Hyperledger healthchain: patient-centric IPFS-based storage of health records. Electronics 10(23) (2021). Art. no 23. https://doi.org/10.3390/electronics10233003
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2024 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Ettaloui, N., Arezki, S., Gadi, T. (2024). An Overview of Blockchain-Based Electronic Health Record and Compliance with GDPR and HIPAA. In: Farhaoui, Y., Hussain, A., Saba, T., Taherdoost, H., Verma, A. (eds) Artificial Intelligence, Data Science and Applications. ICAISE 2023. Lecture Notes in Networks and Systems, vol 838. Springer, Cham. https://doi.org/10.1007/978-3-031-48573-2_58
Download citation
DOI: https://doi.org/10.1007/978-3-031-48573-2_58
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-48572-5
Online ISBN: 978-3-031-48573-2
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)