AHCI RESEARCH GROUP

Publications

Papers published in international journals,
proceedings of conferences, workshops and books.

OUR RESEARCH

Scientific Publications

How to

Here you can find the complete list of our publications.
You can use the tag cloud to select only the papers dealing with specific research topics.
You can expand the Abstract, Links and BibTex record for each paper.

Show all

2023

Basdekis, Ioannis; Kloukinas, Christos; Agostinho, Carlos; Vezakis, Ioannis; Pimenta, Andreia; Gallo, Luigi; Spanoudakis, Georgios

Pseudonymisation in the Context of GDPR-compliant Medical Research Proceedings Article

In: 2023 19th International Conference on the Design of Reliable Communication Networks (DRCN), pp. 1–6, IEEE, Vilanova i la Geltru, Spain, 2023, ISBN: 978-1-66547-598-3.

Abstract | Links | BibTeX | Tags: GDPR, Healthcare, Security

@inproceedings{basdekisPseudonymisationContextGDPRcompliant2023,

title = {Pseudonymisation in the Context of GDPR-compliant Medical Research},

author = { Ioannis Basdekis and Christos Kloukinas and Carlos Agostinho and Ioannis Vezakis and Andreia Pimenta and Luigi Gallo and Georgios Spanoudakis},

doi = {10.1109/DRCN57075.2023.10108370},

isbn = {978-1-66547-598-3},

year  = {2023},

date = {2023-04-01},

urldate = {2023-04-01},

booktitle = {2023 19th International Conference on the Design of Reliable Communication Networks (DRCN)},

pages = {1--6},

publisher = {IEEE},

address = {Vilanova i la Geltru, Spain},

abstract = {Pseudonymisation is a data protection technique often used to protect the privacy of individuals when their personal data are being used for research purposes. Not only is it a key ingredient of the General Data Protection Regulation (GDPR) that requires organisations to ensure that the personal data they process is handled in a secure manner, but it is particularly important in assisting medical research given that often relies on sensitive personal data, since it reduces the risk that medical data could be misused or mishandled. For managing their medical data, it is important to ensure that such data are protected against unauthorised access, and can be reutilised in an anonymous fashion, while still authorised personnel is able to identify the study participant that some data belong to (e.g., for personalised interventions, technical alerts, technical support). In addition, the re-identification of a study participant is a pre-requisite for exercising their rights under the GDPR, since it assists organisations in meeting GDPR requirements (such as the right to access, rectify and portability of data). We argue that the application of pseudonymisation is particularly effective when considered during the early stages (Privacy by Design) of digital services implementation, as well as when defining the complementary to these organizational procedures. Aim of this paper is to present the way in which the pseudonymisation mechanism of the SMART BEAR H2020 project supports the triptych of research activities conducted within the context of an observational medical study, legal obligations arising from the regulatory framework for the protection of personal data, and reutilisation of data for research purposes. Evidence-based security and privacy assessments will be conducted on two different H2020 projects to evaluate such privacy practice.},

keywords = {GDPR, Healthcare, Security},

pubstate = {published},

tppubtype = {inproceedings}

}