Privacy Protection Act in Hospitals and EHRs


The privacy discussion is quickly becoming pretty hot in South East Asia region with Malaysia coming up with the PDPA (Privacy Data Protection Act) with Singapore coming up with a similar Act next year (2012).

In recent “Beyond EHR” conference in Singapore several weeks ago, I was grateful to chair a panel discussion with leaders of some of the countries with national experiences from the UK, Taiwan, Singapore, Malaysia, etc and with leading experts in room from Australia, Malaysia, Philippines, Dubai, Canada, etc, my sense out of it was that a lot of the details of the PDPA sort of laws was perhaps not necessary a broad spectrum discussion  among a broader set of professionals than I would have initially guessed.

I also looked for some clues to see what ISO TC215 was doing in this area, but speaking today with one of the key member of ISO TC215 and founding member of work-group 4, the general discussion seems to imply that the emphasis is around security and not privacy.

While the two I see as being inter-related somewhat, with privacy acts becoming a law, I am yet to get a sense of urgency for this discussion.

I found some of my colleagues in Canada have written this interesting point of view.

A new era of transparency for hospitals

Changes to the Freedom of Information and Protection of Privacy Act

A new era of transparency for hospitals On December 8, 2010, the Ontario government passed legislation to broaden the scope of theFreedom of Information and Protection of Privacy Act (FIPPA) and designate hospitals as “institutions” under the Act. Ontario will usher in a new era of transparency and giving hospitals approximately one year to comply with FIPPA, the changes to which will be effective on January 1, 2012.Read More …