Emeka Ekweozor

DOI: https://doi.org/10.2139/ssrn.3639129

2020-01-01

SSRN Electronic Journal

Abstract:Data protection and reliability are top priority issues in this digital age. With the advent of new technologies, the need to protect one’s privacy is becoming of ever greater importance. The advent of information technology has created an environment where personal and organizational data can easily be assessed by anyone if they are not properly protected . Besides, the undeniable fact that people’s lives are now becoming woven around continuous exchange of information, and streams of data, means that data protection is gaining importance and moving to the center of the political and institutional system . Thus, most countries have taken a stance on data protection in order to enforce laws, prevent crime and adopt in diplomatic relationship . Moreover, the fundamental right to protection of personal data is recognized at the universal level in various human rights instruments adopted under the aegis of the UN , mostly as an extension of the right to privacy. It is an inalienable human right also guaranteed by the Nigerian. However, the growing subscription of customers to online services offered by the financial, trading and telecommunications companies in Nigeria, as well as the increasing rate of identity theft and other cyber misdemeanors have necessitated the need for data protection legislation that aligned to international standards.

Sambhabi Patnaik,Kyvalya Garikapati,Lipsa Dash,Ramyani Bhattacharya,Arpita Mohapatra

DOI: https://doi.org/10.4108/eetpht.10.5583

2024-03-29

EAI Endorsed Transactions on Pervasive Health and Technology

Abstract:INTRODUCTION: Health information amassed during the treatment of a medical condition is termed health data. This data encompasses information gathered about a patient and their family, forming a patient history. The internet has progressively transformed communication, commerce, and information acquisition. Among the diverse domains it has influenced, the healthcare sector stands out as one of the most intricate and unique realms of integration. Big data are the results of normal online transactions and interactions that take place online, the detectors that are implanted in devices and actual locations, as well as the generation of digital contents by individuals whenever they submit data over internet. OBJECTIVES: The need of protection of health data and methods of safeguarding patient privacy. The study also helps \understand and appreciate the best practices which will help India in implementing the law more effectively. METHODS: A doctrinal method of research was employed to analyse the laws and regulations. A comparative approach of different countries gives us the understanding of the gaps and issues. The efficacy of the laws was tested as the paper explores the laws of Canada & Indonesia regarding data protection. RESULTS: In this study, we understood the generation, processing, and interchange of these massive amounts of data can now be facilitated by cloud computing technology. As India, recently enacted 'The Digital Data Protection Act 2023' which might be a ray of hope for protection of sensitive health data of individuals from misuse. CONCLUSION: The journey towards optimal data protection is ongoing, requiring continuous adaptation to the dynamic nature of technology and the ever-changing healthcare environment.

Seun Solomon Bakare,Adekunle Oyeyemi Adeniyi,Chidiogo Uzoamaka Akpuokwe,Nkechi Emmanuella Eneh

DOI: https://doi.org/10.51594/csitrj.v5i3.859

2024-03-09

Computer Science & IT Research Journal

Abstract:This Review provides an overview of the comparative review of data privacy laws and compliance, focusing on the European Union's General Data Protection Regulation (EU GDPR) and data protection regulations in the United States. The analysis explores key similarities and differences, emphasizing their implications for businesses and individuals. The EU GDPR, implemented in 2018, stands as a landmark regulation governing data protection and privacy for individuals within the European Union and the European Economic Area. In contrast, the United States lacks a comprehensive federal data privacy law. Instead, it relies on a patchwork of sector-specific laws and state regulations, such as the California Consumer Privacy Act (CCPA) and the Health Insurance Portability and Accountability Act (HIPAA). One major distinction lies in the overarching principles of these regulations. The EU GDPR adopts a comprehensive and rights-based approach, emphasizing individual rights to privacy, data portability, and the "right to be forgotten." In contrast, the U.S. system often focuses on specific industries or types of data, leading to a more fragmented regulatory landscape. Both regulatory frameworks incorporate principles of transparency, consent, and data breach notification. However, differences in enforcement mechanisms and penalties exist. The EU GDPR imposes significant fines for non-compliance, reaching up to 4% of a company's global annual revenue. In the U.S., penalties vary by state, and enforcement is often reactive, triggered by data breaches. Businesses operating globally must navigate these distinct regulatory landscapes, necessitating a nuanced approach to data privacy compliance. Multinational corporations must adhere to the more stringent requirements when handling EU citizens' data while also considering the diverse regulations within the U.S. This review underscores the ongoing evolution of data privacy laws worldwide and the critical importance for organizations to stay abreast of these developments. It emphasizes the need for a proactive and adaptive approach to data privacy compliance, taking into account the unique requirements and expectations of both the EU GDPR and U.S. regulations. Keywords: Data Privacy, Laws, Compliance, EU GDPR, Regulations.

Ejiofor Oluomachi,Akinsola Ahmed,Wahab Ahmed,Edozie Samson

DOI: https://doi.org/10.29322/IJSRP.14.02.2023.p14610

2024-04-17

Abstract:This article assesses the effectiveness of current cybersecurity regulations and policies in the United States amidst the escalating frequency and sophistication of cyber threats. The focus is on the comprehensive framework established by the U.S. government, with a spotlight on the National Institute of Standards and Technology (NIST) Cybersecurity Framework and key regulations such as HIPAA, GLBA, FISMA, CISA, CCPA, and the DOD Cybersecurity Maturity Model Certification. The study evaluates the impact of these regulations on different sectors and analyzes trends in cybercrime data from 2000 to 2022. The findings highlight the challenges, successes, and the need for continuous adaptation in the face of evolving cyber threats

Cryptography and Security,Computers and Society

Prathamesh Churi,Ambika Pawar,Antonio-José Moreno-Guerrero

DOI: https://doi.org/10.3390/inventions6030045

IF: 3.4

2021-06-23

Inventions

Abstract:Background: According to the renowned and Oscar award-winning American actor and film director Marlon Brando, “privacy is not something that I am merely entitled to, it is an absolute prerequisite.” Privacy threats and data breaches occur daily, and countries are mitigating the consequences caused by privacy and data breaches. The Indian healthcare industry is one of the largest and rapidly developing industry. Overall, healthcare management is changing from disease-centric into patient-centric systems. Healthcare data analysis also plays a crucial role in healthcare management, and the privacy of patient records must receive equal attention. Purpose: This paper mainly presents the utility and privacy factors of the Indian healthcare data and discusses the utility aspect and privacy problems concerning Indian healthcare systems. It defines policies that reform Indian healthcare systems. The case study of the NITI Aayog report is presented to explain how reformation occurs in Indian healthcare systems. Findings: It is found that there have been numerous research studies conducted on Indian healthcare data across all dimensions; however, privacy problems in healthcare, specifically in India, are caused by prevalent complacency, culture, politics, budget limitations, large population, and existing infrastructures. This paper reviews the Indian healthcare system and the applications that drive it. Additionally, the paper also maps that how privacy issues are happening in every healthcare sector in India. Originality/Value: To understand these factors and gain insights, understanding Indian healthcare systems first is crucial. To the best of our knowledge, we found no recent papers that thoroughly reviewed the Indian healthcare system and its privacy issues. The paper is original in terms of its overview of the healthcare system and privacy issues. Social Implications: Privacy has been the most ignored part of the Indian healthcare system. With India being a country with a population of 130 billion, much healthcare data are generated every day. The chances of data breaches and other privacy violations on such sensitive data cannot be avoided as they cause severe concerns for individuals. This paper segregates the healthcare system’s advances and lists the privacy that needs to be addressed first.

Mariam Al Zaabi,Saadat M Alhashmi

DOI: https://doi.org/10.1177/02666669241247781

2024-04-25

Information Development

Abstract:Information Development, Ahead of Print. Big data security involves protecting healthcare data from unauthorised use and access and making any changes, while privacy entails ensuring the confidentiality of individual patient information within the datasets. The two are crucial in ensuring that big data is effectively applied for research and personalised care, compromising the sensitivity of healthcare data and medical information. Consequently, as the amount of data in the healthcare sector grows exponentially, securing sensitive data becomes increasingly crucial while effectively utilising big data analytics. The systematic review explores the issues and challenges associated with big data security and privacy in healthcare. Through reference to resource-based view theory, this paper seeks to examine the present state of research in this area, identify gaps in the existing literature, and propose strategies for future research. The search strategy looked at the data between 2013 and 2022 and yielded 93 studies from four databases: Scopus, PubMed, ScienceDirect and IEEE Xplore. From these studies, 18 papers are reviewed. The findings reveal that while significant progress has been made in securing healthcare data, numerous challenges still need to be considered.Overall, this review highlights the importance of continued research to ascertain that sensitive healthcare data is kept secure while allowing for the enhanced application of big data analytics. It contributes to the security and privacy problems associated with using big data in healthcare, measures for addressing these challenges, the healthcare value of big data, and foci for future research.

information science & library science

Sarah Oreoluwa Olukorode,Oluwakorede Joshua Adedeji,Adetayo Adetokun,Ajibola Ibraheem Abioye

DOI: https://doi.org/10.1371/journal.pdig.0000420

2024-09-13

Abstract:Electronic medical records (EMRs) have great potential to improve healthcare processes and outcomes. They are increasingly available in Nigeria, as in many developing countries. The impact of their introduction has not been well studied. We sought to synthesize the evidence from primary studies of the effect of EMRs on data quality, patient-relevant outcomes and patient satisfaction. We identified and examined five original research articles published up to May 2023 in the following medical literature databases: PUBMED/Medline, EMBASE, Web of Science, African Journals Online and Google Scholar. Four studies examined the influence of the introduction of or improvements in the EMR on data collection and documentation. The pooled percentage difference in data quality after introducing or improving the EMR was 142% (95% CI: 82% to 203%, p-value < 0.001). There was limited heterogeneity in the estimates (I2 = 0%, p-heterogeneity = 0.93) and no evidence suggestive of publication bias. The 5th study assessed patient satisfaction with pharmacy services following the introduction of the EMR but neither had a comparison group nor assessed patient satisfaction before EMR was introduced. We conclude that the introduction of EMR in Nigerian healthcare facilities meaningfully increased the quality of the data.

Akoh Atadoga,Oluwatoyin Ajoke Farayola,Benjamin Samson Ayinla,Olukunle Oladipupo Amoo,Temitayo Oluwaseun Abrahams,Femi Osasona

DOI: https://doi.org/10.51594/csitrj.v5i2.815

2024-02-18

Computer Science & IT Research Journal

Abstract:Data encryption is a critical aspect of modern information security, and understanding the approaches taken by different regions is vital for a comprehensive analysis. In the United States and Europe, data encryption methods vary in implementation, legal frameworks, and overall priorities. In the United States, encryption methods are primarily governed by a combination of federal laws and industry standards. The National Institute of Standards and Technology (NIST) plays a central role in recommending cryptographic standards, while the Department of Commerce oversees export controls on encryption technology. The focus in the U.S. is on balancing national security needs with individual privacy rights. The tension between law enforcement's desire for access to encrypted data for criminal investigations and the right to privacy has sparked debates and legal battles. On the other hand, Europe has taken a more privacy-centric approach to data protection. The General Data Protection Regulation (GDPR) is a cornerstone in the European Union's efforts to safeguard individual privacy rights. GDPR mandates the use of encryption to protect personal data, and failure to implement adequate measures can result in hefty fines. European countries also emphasize the importance of end-to-end encryption in communication services to ensure confidentiality. Both regions prioritize encryption, but their approaches reflect different values and legal philosophies. The U.S. tends to navigate a delicate balance between national security and individual rights, while Europe places a stronger emphasis on the protection of personal data as a fundamental right. In terms of technological implementation, the encryption algorithms adopted in both regions are often aligned with global standards. Advanced Encryption Standard (AES) is widely accepted and implemented in various sectors. However, the choice of key management and the level of regulatory oversight differ, contributing to the nuanced landscape of data protection. In conclusion, a comparative review of data encryption methods in the USA and Europe reveals the complex interplay between security, privacy, and legal frameworks. Understanding these differences is crucial for multinational organizations and individuals navigating the intricate landscape of global data protection. Keywords: Data, Encryption, USA, Europe, Review.

Muhammad Rizwan Asghar,TzeHowe Lee,Mirza Mansoor Baig,Ehsan Ullah,Giovanni Russello,Gillian Dobbie

DOI: https://doi.org/10.48550/arXiv.1711.00546

2017-11-02

Abstract:The emergence of New Data Sources (NDS) in healthcare is revolutionising traditional electronic health records in terms of data availability, storage, and access. Increasingly, clinicians are using NDS to build a virtual holistic image of a patient's health condition. This research is focused on a review and analysis of the current legislation and privacy rules available for healthcare professionals. NDS in this project refers to and includes patient-generated health data, consumer device data, wearable health and fitness data, and data from social media. This project reviewed legal and regulatory requirements for New Zealand, Australia, the European Union, and the United States to establish the ground reality of existing mechanisms in place concerning the use of NDS. The outcome of our research is to recommend changes and enhancements required to better prepare for the 'tsunami' of NDS and applications in the currently evolving data-driven healthcare area and precision or personalised health initiatives such as Precision Driven Health (PDH) in New Zealand.

Computers and Society

Nchangwi Syntia Munung,Ciara Staunton,Otshepeng Mazibuko,P. J. Wall,Ambroise Wonkam

DOI: https://doi.org/10.1186/s12961-024-01230-7

2024-10-17

Health Research Policy and Systems

Abstract:The increasing availability of large volumes of personal data from diverse sources such as electronic health records, research programmes, commercial genetic testing, national health surveys and wearable devices presents significant opportunities for advancing public health, disease surveillance, personalized medicine and scientific research and innovation. However, this potential is hampered by a lack of clarity related to the processing and sharing of personal health data, particularly across varying national regulatory frameworks. This often leaves researcher stakeholders uncertain about how to navigate issues around secondary data use, repurposing data for different research objectives and cross-border data sharing.

health policy & services

David Odera

DOI: https://doi.org/10.30574/gjeta.2023.14.2.0035

2023-02-28

Global Journal of Engineering and Technology Advances

Abstract:A huge percentage of people especially in developed countries spend a good chunk of their wealth in managing their health conditions. In order to adequately administer healthcare, governments and various organizations have embraced advanced technology for automating the health industry. In recent past, electronic health records have largely been managed by Enterprise Resource Planning and legacy systems. Big data framework steadily emerge as the underlying technology in healthcare, which offers solutions that limits capacity of others systems in terms of storage and reporting. Automation through cloud services supported by storage of structured and unstructured health data in heterogeneous environment has improved service delivery, efficiency, medication, diagnosis, reporting and storage in healthcare. The argument support the idea that big data healthcare still face information security concern, for instance patient image sharing, authentication of patient, botnet, correlation attacks, man-in-the-middle, Distributed Denial of Service (DDoS), blockchain payment gateway, time complexities of algorithms, despite numerous studies conducted by scholars in security management for big data in smart healthcare. Some security technique include digital image encryption, steganography, biometrics, rule-based policy, prescriptive analysis, blockchain contact tracing, cloud security, MapReduce, machine-learning algorithms, anonymizations among others. However, most of these security solutions and analysis performed on structured and semi-structured data as opposed to unstructured data. This may affect the output of medical reporting of patients’ condition particularly on wearable devices and other examinations such as computerized tomography (CT) Scans among others. A major concern is how to identify inherent security vulnerabilities in big healthcare, which generate images for transmission and storage. Therefore, this paper conducted a comparative survey of solutions that specifically safeguards structured and unstructured data using systems that run on big data frameworks. The literature highlights several security advancements in cryptography, machine learning, anonymization and protocols. Most of these security frameworks lacks implementation evidence. A number of studies did not provide comprehensive performance metrics (accuracy, error, recall, precision) of the models besides using a single algorithm without validated justification. Therefore, a critique on the contribution, performance and areas of improvements discussed and summarized in the paper.

Oluwatosin Reis,Nkechi Emmanuella Eneh,Benedicta Ehimuan,Anthony Anyanwu,Temidayo Olorunsogo,Temitayo Oluwaseun Abrahams

DOI: https://doi.org/10.51594/ijarss.v6i1.733

2024-01-25

International Journal of Applied Research in Social Sciences

Abstract:As the world becomes increasingly interconnected through digital technologies, the protection of individuals' privacy has emerged as a critical concern. This paper conducts a comprehensive global review of privacy legislation and enforcement mechanisms, shedding light on the challenges posed by the digital age. With a focus on the intricate balance between technological advancements and the fundamental right to privacy, the study explores the evolving legal landscape and its implications for individuals, businesses, and governments. The analysis encompasses diverse jurisdictions, highlighting the variations in privacy laws and enforcement approaches across regions. From the European Union's robust General Data Protection Regulation (GDPR) to the nuanced approaches in Asia and the Americas, this review synthesizes the evolving regulatory frameworks. Special attention is given to emerging issues such as the use of artificial intelligence, biometrics, and surveillance technologies, which pose unique challenges to existing privacy paradigms. Moreover, the paper investigates the effectiveness of enforcement mechanisms in ensuring compliance with privacy laws. It examines the role of governmental agencies, regulatory bodies, and international collaborations in addressing cross-border data flows and global privacy challenges. The study also evaluates the impact of recent high-profile privacy incidents on shaping legislative responses and enforcement strategies. By presenting a holistic view of privacy law challenges in the digital age, this research contributes to the ongoing discourse on safeguarding individuals' privacy rights in an era of rapid technological innovation. The findings provide valuable insights for policymakers, legal practitioners, businesses, and individuals seeking a deeper understanding of the evolving dynamics surrounding privacy legislation and enforcement on a global scale. Keywords: Law, Privacy Law, Digital Age, Review, Data Protection.

Bisola Beatrice Oguejiofor,Adedolapo Omotosho,Kehinde Mobolaji Abioye,Ayoola Maxwell Alabi,Fuzzy Naomi Oguntoyinbo,Andrew Ifesinachi Daraojimba,Chibuike Daraojimba

DOI: https://doi.org/10.51594/ijarss.v5i8.571

2023-10-03

International Journal of Applied Research in Social Sciences

Abstract:In Nigeria's dynamic regulatory landscape, compliance challenges pose formidable obstacles to businesses and organizations across various sectors. This research explores Nigeria's multifaceted world of compliance, highlighting the intricacies of regulatory requirements, bureaucratic complexities, and resource constraints that organizations face. Amid these challenges, the pivotal role of data-driven approaches and technology in enhancing compliance efforts emerges as a central theme. The study's key findings reveal the complexity of Nigeria's regulatory environment, characterized by multiple authorities, inconsistencies, and persistent challenges like corruption and bureaucracy. Smaller organizations often grapple with resource limitations, hindering their ability to implement comprehensive compliance strategies. However, the research unveils the transformative power of data-driven solutions in addressing these compliance hurdles. Through real-world case studies spanning diverse sectors, it becomes evident that organizations can leverage data and technology to automate compliance processes, make informed decisions, and achieve real-time monitoring. These advancements lead to enhanced compliance, cost savings, improved reputations, and greater efficiency. The study provides a roadmap for organizations, emphasizing the importance of investing in data infrastructure, automation, and ethical data usage. Additionally, it underscores the need for collaboration with regulators, data privacy compliance, and a commitment to transparency. For regulators, the research recommends embracing regulatory technology (RegTech) solutions, fostering data-sharing platforms, ensuring transparency, and maintaining consistency in enforcement. Furthermore, it highlights the significance of educational initiatives and adaptive regulations to keep pace with technological advancements. Ultimately, the research illuminates the way forward in Nigeria's compliance landscape. Organizations that adopt data-driven approaches stand to navigate complex regulations more efficiently and proactively manage risks, contributing to business growth and sustainability in an ever-evolving environment. Meanwhile, regulators with data-driven tools can enhance oversight and enforcement, creating a more transparent and compliant business environment. Together, these efforts pave the path toward a future where compliance is not just a requirement but a strategic advantage in Nigeria's vibrant economy. Keywords: Compliance, Regulatory Landscape, Data-Driven Solutions, Nigeria, Regulatory Challenges, Technology, Data Analytics, Regulatory Bodies, Corruption, Data Privacy.

Oluwafemi Olukoya

DOI: https://doi.org/10.1016/j.cose.2022.102697

2022-06-01

Abstract:The processing of personal data has become a prominent concern for stakeholders when selecting software or service providers to serve their needs. Different laws and legislation have been introduced to standardize and strengthen data protection policies across different countries to protect such data. Therefore, businesses and organizations responsible for managing personal data are obligated to implement the privacy and security requirements established by these laws and legislation. Different methods and tools have been provided for eliciting requirements for legally compliant software based on the relevant data protection laws and legislation. However, little has been done in assessing these methodologies on regulations outside the EU and the US. This paper aims to assess these methodologies on other information security laws and regulations beyond the General Data Protection Regulation (GDPR) and Health Insurance Portability and Accountability Act (HIPAA) by eliciting security requirements explicitly focusing on the Nigerian data protection regulation. To investigate the applicability of these methodologies, we use the extracted privacy and security requirements with information communication protocols in verifying compliance in procedural practices of products and services in the financial technology sector. The analysis reports on the completeness, consistency, and utility of the frameworks. Finally, foundational research directions for interoperable standards for eliciting software requirements from legal texts are proposed.

computer science, information systems

Chukwuka Elendu,Eunice K. Omeludike,Praise O. Oloyede,Babajide T. Obidigbo,Janet C. Omeludike

DOI: https://doi.org/10.1097/md.0000000000039887

IF: 1.6

2024-09-29

Medicine

Abstract:In recent years, integrating digital technologies in healthcare has revolutionized medical practice, enhancing patient care, data management, and operational efficiency. However, this digital transformation has also exposed healthcare systems to significant cybersecurity threats, leading to legal and ethical challenges for clinicians. [ 1–3 ] The increasing frequency and sophistication of cyber-attacks, such as ransomware, data breaches, and hacking incidents, pose substantial risks to patient privacy, data integrity, and overall healthcare delivery. [ 1–3 ] These incidents jeopardize patient safety and implicate healthcare professionals in potential legal liabilities. Emerging technologies, including artificial intelligence (AI) and quantum computing, are at the forefront of cybersecurity innovations and challenges. AI, for instance, offers promising applications in detecting and mitigating cyber threats through advanced algorithms and machine learning (ML) techniques. However, deploying AI systems in healthcare raises concerns regarding data security, privacy, and ethical implications. If not properly managed, AI systems can introduce biases that may result in discriminatory practices or inaccurate decision-making. [ 4 , 5 ] Moreover, quantum computing, potentially breaking traditional encryption methods, further complicates the cybersecurity landscape, necessitating new cryptographic approaches and legal frameworks to safeguard sensitive health information. [ 6 ] The global nature of cybersecurity threats underscores the importance of international cooperation and regulatory harmonization. Countries have adopted varying approaches to managing cybersecurity incidents in healthcare, influenced by their legal systems, cultural values, and technological infrastructures. For example, the European Union's General Data Protection Regulation (GDPR) imposes stringent data protection requirements, including reporting data breaches within 72 hours. [ 7 ] In contrast, the United States has a more fragmented regulatory landscape, with laws such as the Health Insurance Portability and Accountability Act (HIPAA) providing a framework for protecting patient information. Still, varying state laws complicate compliance. [ 8 ] A comparative analysis of these international regulations reveals best practices and highlights areas where further harmonization is needed to protect healthcare data globally. The legal implications of cybersecurity incidents extend beyond compliance with data protection regulations. As custodians of patient data, clinicians may face legal consequences in data breaches or unauthorized access to sensitive information. These legal responsibilities necessitate a thorough understanding of cybersecurity best practices and implementing robust security measures. For instance, clinicians must ensure secure communication channels, regular updates to software systems, and adherence to data encryption standards. [ 9 ] Furthermore, clinicians should be aware of their obligations to report cybersecurity incidents and cooperate with investigations, as failure can result in legal penalties and damage to professional reputations. [ 10 ] Ethical considerations are also paramount in the context of cybersecurity in healthcare. The principle of patient autonomy, which underpins informed consent and confidentiality, is challenged when cybersecurity incidents compromise patient data. Healthcare professionals must navigate these ethical dilemmas, balancing the need to protect patient information with the necessity of using digital tools for medical care. [ 11 ] Moreover, deploying AI in healthcare introduces questions about the transparency and accountability of decision-making processes. Ensuring that AI systems are transparent, explainable, and free from biases is crucial to maintaining public trust and ensuring equitable healthcare outcomes. [ 12 ] Case studies of cybersecurity incidents in healthcare provide valuable insights into the practical challenges and consequences clinicians face. For example, the WannaCry ransomware attack in 2017 severely disrupted the UK's National Health Service (NHS), affecting numerous hospitals and clinics and leading to the cancelation of thousands of appointments. [ 13 ] This incident highlighted the vulnerability of healthcare systems to cyber threats and underscored the importance of proactive cybersecurity measures. Similarly, the breach of patient data at Ant -Abstract Truncated-

medicine, general & internal

Christie Divine Akwaowo,Humphrey Muki Sabi,Nnette Ekpenyong,Chimaobi M Isiguzo,Nene Francis Andem,Omosivie Maduka,Emem Dan,Edidiong Umoh,Victory Ekpin,Faith-Michael Uzoka

DOI: https://doi.org/10.3389/fdgth.2022.1017231

2022-11-21

Abstract:Electronic medical records (EMR) are extensively used in developed countries to manage patient records and facilitate consultations and follow-up of treatment. This has resulted in centralised databases where different services and clinicians can quickly access patient data to support healthcare delivery. However, adoption and usage of EMR in developing countries is not common and, in most cases, non-existent. Clinicians are dependent on patients keeping their own records manually with no centralised database to manage and control the patient medical history. The key objective of this study was to investigate the propensity of clinicians and senior management personnel in healthcare facilities to adopt EMR and evaluate the contextual factors that impact or impede adoption. Using Davis's technology adoption model extended with other factors, this study determined if contextual or situational factors are associated with barriers that impede adoption of EMRs in developing countries. Using a cross-sectional quantitative research approach, a questionnaire was designed to collect data across four states in the Niger Delta region of Nigeria. Stratified random sampling was used to select healthcare facilities that participated in the survey and selection of respondents from each healthcare facility. Data was collected by trained research assistants and a total of 1,177 valid responses were received and analysed using factor analysis and multiple regression analysis. The results from the analysis show that usefulness, critical success factors, awareness and relative advantage significantly influence clinicians' intention to adopt EMRs. Surprisingly, infrastructure availability was not statistically significant. Meanwhile, risk and data security both negatively influence adoption, indicating that user perception of risk and safety of their data decreases their propensity to adopt EMRs. The results from this study suggests that usefulness and anticipated success factors in facilitating operations within healthcare facilities have a great influence on user adoption of EMRs. Awareness, training and education of users on the effectiveness of EMRs and their usefulness will increase adoption. The results will be beneficial in helping government and healthcare leaders formulate policies that will guide and support adoption of EMR. Other policy recommendations and suggestions for future research were also proffered.

Abdulkadir Bolaji Abdulkadir,Abdulfatai Oladapo Sambo

DOI: https://doi.org/10.17576/juum-2022-30-01

2022-05-01

Jurnal Undang-Undang dan Masyarakat

Abstract:Data (Personal Information), the oil of the digital age, has taken the centre stage due to increasing use of technology in almost all human endeavours. This is not unconnected to the large scale unlawful usage of people’s data by cyber criminals. This is particularly the situation in banking sector. Yet, Nigeria seems to be lagging behind in its efforts to protect this right through effective legislative framework to protect individual information from unlawful and unauthorised possession or use. Nonetheless, efforts are on top gear at the global level to stem this ugly tide. Therefore, this paper seeks to investigate the Data Protection challenges in the Nigerian banking sector with critical analysis of the current legal framework for the protection of personal information in the Nigerian banking sector. Using doctrinal methods where primary and secondary sources of legal materials were subjected to content analysis, the study found that legal architecture on data protection in Nigeria is weak and ineffective in stemming the tide of the challenges posed by data challenges. It was also concluded that effective legal framework on data protection is necessary for the enjoyment of the opportunities of this digital age. The study thus recommended that there should be effective data protection legislation in Nigeria particularly in the banking sector that would protect data privacy as well as the legitimate business interests of bankers.

Annelize G Nienaber McKay,Dirk Brand,Marietjie Botes,Nezerith Cengiz,Marno Swart

DOI: https://doi.org/10.1093/jlb/lsad035

IF: 3.4

2024-01-01

Journal of Law and the Biosciences

Abstract:Abstract The sharing of health data is an essential component in the provision of healthcare, in medical research, and disease surveillance. Health data sharing is subject to regulatory frameworks that vary across jurisdictions. In Africa, numerous factors complicate the regulation of health data sharing, including technological, motivational, economic, and political barriers, as well as ethical and legal challenges. This comparative study examines the regulation of health data sharing in Africa by comparing and contrasting the legal and policy frameworks of five African countries. The study identifies gaps and inconsistencies in the current regulatory regimes and provides recommendations for improving the regulation of health data sharing in Africa.

ethics,law,medicine, legal,medical ethics

Gunjan Balde,Aryendra Singh,Niloy Ganguly,Mainack Mondal

2023-06-20

Abstract:Data privacy in healthcare is of paramount importance (and thus regulated using laws like HIPAA) due to the highly sensitive nature of patient data. To that end, healthcare organizations mention how they collect/process/store/share this data (i.e., data practices) via their privacy policies. Thus there is a need to audit these policies and check compliance with respective laws. This paper addresses this need and presents a large-scale data-driven study to audit privacy policies from healthcare organizations in three countries -- USA, UK, and India. We developed a three-stage novel \textit{workflow} for our audit. First, we collected the privacy policies of thousands of healthcare organizations in these countries and cleaned this privacy policy data using a clustering-based mixed-method technique. We identified data practices regarding users' private medical data (medical history) and site privacy (cookie, logs) in these policies. Second, we adopted a summarization-based technique to uncover exact broad data practices across countries and notice important differences. Finally, we evaluated the cross-country data practices using the lens of legal compliance (with legal expert feedback) and grounded in the theory of Contextual Integrity (CI). Alarmingly, we identified six themes of non-alignment (observed in 21.8\% of data practices studied in India) pointed out by our legal experts. Furthermore, there are four \textit{potential violations} according to case verdicts from Indian Courts as pointed out by our legal experts. We conclude this paper by discussing the utility of our auditing workflow and the implication of our findings for different stakeholders.

Computers and Society,Cryptography and Security,Human-Computer Interaction

Vinaytosh Mishra,Kishu Gupta,Deepika Saxena,Ashutosh Kumar Singh

DOI: https://doi.org/10.1109/TCE.2024.3373912

2024-10-05

Abstract:Electronic Health Records (EHR) are crucial for the success of digital healthcare, with a focus on putting consumers at the center of this transformation. However, the digitalization of healthcare records brings along security and privacy risks for personal data. The major concern is that different countries have varying standards for the security and privacy of medical data. This paper proposed a novel and comprehensive framework to standardize these rules globally, bringing them together on a common platform. To support this proposal, the study reviews existing literature to understand the research interest in this issue. It also examines six key laws and standards related to security and privacy, identifying twenty concepts. The proposed framework utilized K-means clustering to categorize these concepts and identify five key factors. Finally, an Ordinal Priority Approach is applied to determine the preferred implementation of these factors in the context of EHRs. The proposed study provides a descriptive then prescriptive framework for the implementation of privacy and security in the context of electronic health records. Therefore, the findings of the proposed framework are useful for professionals and policymakers in improving the security and privacy associated with EHRs.

Machine Learning