|
KMID : 1142820200040010049
|
|
Bio, Ethics and Policy
2020 Volume.4 No. 1 p.49 ~ p.66
|
|
|
GDPR Applications to Medical Research and Implications for the Revised Personal Information Protection Act of South Korea
|
|
Choi Eun-Kyung
Kim Jeong-Hyun
Ham Eun-Hye
Seo Kyung-Jeong
Park Moon-Seok
Yang Eun-Joo
|
|
|
Abstract
|
|
|
|
Two examples of health information privacy legislation, the General Data Protection Regulation(GDPR) of the European Union and the U.S. Health Insurance Protection and Portability Act(HIPAA), were appraised as models for harmonizing the privacy rights of individuals with the development of information technology in countries with large-scale health-related industries. The GDPR had a significant influence on the latest revision of the Personal Information Protection Act(PIPA) of South Korea. Various definitions surrounding personal information, such as what constitutes personal information, pseudonymization, and anonymized data, were introduced through the GDPR and began to be widely used. Nevertheless, it is unclear to what extent the PIPA has adopted the core governance system of the GDPR. This paper summarizes the principles related to medical research regarding the use of information, consent, anonymity, and risk-based approaches found in the GDPR and discusses the implications of these through comparisons with the recently revised Personal Information Protection Act.
|
|
|
KEYWORD
|
|
|
GDPR, medical research, personal information, Personal Information Protection Act, privacy impact assessment
|
|
|
FullTexts / Linksout information
|
|
|
|
|
|
Listed journal information
|
|
|
|
|