&nbsp
International Customer Service
Phone +49 30 2601-2759
Fax +49 30 2601-1263

Technical rule [CURRENT]

DIN CEN ISO/TS 14265:2014-03

DIN SPEC 13265:2014-03

Health Informatics - Classification of purposes for processing personal health information (ISO/TS 14265:2011); German version CEN ISO/TS 14265:2013

German title
Medizinische Informatik - Klassifikation des Zwecks zur Verarbeitung von persönlichen Gesundheitsinformationen (ISO/TS 14265:2011); Deutsche Fassung CEN ISO/TS 14265:2013
Publication date
2014-03
Original language
German
Pages
24
Procedure
Pre-Standard

Please select

from 61.80 EUR VAT included

from 57.76 EUR VAT excluded

Purchasing options

PDF download
  • 61.80 EUR

Shipment (3-5 working days)
  • 74.70 EUR

Standards Ticker 1
1

Learn more about the standards ticker

Publication date
2014-03
Original language
German
Pages
24
Procedure
Pre-Standard
DOI
https://dx.doi.org/10.31030/1866550

Quick delivery via download or delivery service

Buy securely with a credit card or pay upon receipt of invoice 

All transactions are encrypted

Overview

This Technical Specification defines a set of high-level categories of purposes for which personal health information can be processed, that is collected, used, stored, accessed, analysed, created, linked, communicated, disclosed or retained. This is in order to provide a framework for classifying the various specific purposes that can be defined and used by individual policy domains (for example, healthcare organizations, regional health authorities, jurisdictions, countries) as an aid to the consistent management of information in the delivery of health care services and for the communication of electronic health records across organizational and jurisdictional boundaries. The scope of application of this Technical Specification is limited to Personal Health Information (PHI) as defined in ISO 27799, information about an identifiable person that relates to the physical or mental health of the individual, or to provision of health services to the individual. This information might include: - information about the registration of the individual for the provision of health services; - information about payments or eligibility for health care in respect to the individual; - a number, symbol or particular code assigned to an individual to uniquely identify the individual for health purposes; - any information about the individual that is collected in the course of the provision of health services to the individual; - information derived from the testing or examination of a body part or bodily substance; -identification of a person, for example, a health professional, as a provider of healthcare to the individual. This Technical Specification, while not defining an exhaustive set of such purposes, provides a common mapping target to bridge between differing national lists, thereby supporting authorized automated crossborder flows of EHR data. This Technical Specification is not intended to control the use of non-personal health information. However, because anonymization or de-identification of data might be a condition of further use or new uses, a defined data purpose might be a requirement for the use of even de-identified or anonymized data according to the policy or law of a given jurisdiction. Health data that have been irreversibly de-identified are not formally in the scope of this Technical Specification. Since de-identification processes often include some degree of reversibility, however, this Technical Specification can also be used for disclosures of de-identified health data whenever practicable. This Technical Specification defines a set of high-level categories of purposes for which personal health information can be processed, that is collected, used, stored, accessed, analysed, created, linked, communicated, disclosed or retained. This is in order to provide a framework for classifying the various specific purposes that can be defined and used by individual policy domains (for example, healthcare organizations, regional health authorities, jurisdictions, countries) as an aid to the consistent management of information in the delivery of health care services and for the communication of electronic health records across organizational and jurisdictional boundaries. The scope of application of this Technical Specification is limited to Personal Health Information (PHI) as defined in ISO 27799, information about an identifiable person that relates to the physical or mental health of the individual, or to provision of health services to the individual. This information might include: - information about the registration of the individual for the provision of health services; - information about payments or eligibility for health care in respect to the individual; - a number, symbol or particular code assigned to an individual to uniquely identify the individual for health purposes; - any information about the individual that is collected in the course of the provision of health services to the individual; - information derived from the testing or examination of a body part or bodily substance; - identification of a person, for example, a health professional, as a provider of healthcare to the individual. This Technical Specification, while not defining an exhaustive set of such purposes, provides a common mapping target to bridge between differing national lists, thereby supporting authorized automated crossborder flows of EHR data. This Technical Specification is not intended to control the use of non-personal health information. However, because anonymization or de-identification of data might be a condition of further use or new uses, a defined data purpose might be a requirement for the use of even de-identified or anonymized data according to the policy or law of a given jurisdiction. Health data that have been irreversibly de-identified are not formally in the scope of this Technical Specification. Since de-identification processes often include some degree of reversibility, however, this Technical Specification can also be used for disclosures of de-identified health data whenever practicable. The committee responsible for this standard is NA 063-07-04 AA "Sicherheit" ("Safety") at DIN.

Content
ICS
35.240.80
DOI
https://dx.doi.org/10.31030/1866550

Cooperation at DIN

Loading recommended items...
Loading recommended items...
Loading recommended items...
Loading recommended items...