Hospital Information Systems Replacement and Healthcare Quality

Chryssanthou, Anargyros; Varlamis, Iraklis; Sarivougioukas, John; Apostolakis, Ioannis

doi:10.4018/ijrqeh.2012070101

Cited by 3 publications

(2 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As in the Cloud healthcarere domain all patients' data are considered "sensitive", it involves a large-scale processing volume of personal data and individuals are vulnerable. These characteristics meet three of the criteria described in (Chryssanthou et all, 2012) and therefore in the healthcare domain, data processing must be considered as possibly high-risk by default, thus implying that DPIA cannot be avoided. DPIAs are important tools for negating risk, and for demonstrating compliance with the GDPR (David Wright, 2011) Despite the recent attempts to provide tools to assist institutions to comply with the GDPR and as Article 35 (European Union, 2016) does not provide an explicit description for the DPIA and specifically for cloud-based healthcare systems (Kush Wadhwa & Rowena Rodrigues, 2013) (Makri Eleni-Laskarina et al, 2019).…”

Section: Introductionmentioning

confidence: 99%

DPIA for Cloud-based Health Organizations in the context of GDPR

Georgiou

Lambrinoudakis

2023

eccws

View full text Add to dashboard Cite

The General Data Protection Regulation is the core instrument of the reformed legal framework for personal data protection in the European Union. The GDPR was put into effect on May 25, 2018, and requires assessing and conducting a Data Protection Impact Assessment for processing operations that are likely to result in a high risk to the rights and freedoms of natural persons, specifically using new technologies and considering the nature, scope, context, and purposes of the processing. Although GDPR does not precisely specify the types of processing activities for which a DPIA would be necessary, through the guidelines that it provides, the organization should conduct a DPIA, if there is large scale processing of health data. An example of this, is a Cloud-based Health Organization. Taking into account this parameter, that Cloud-based Health Organization processes personal data that could impact the freedoms and rights of a data subject under the GDPR and that the GDPR does not specify a DPIA process to follow, instead it allows organizations to use a framework that complements their existing processes, this paper presents the last two steps of a DPIA study for a Cloud-based Health Organization and provides guidelines on how to carry them out effectively. This study is part of a project for the compliance of Cloud-based Health Organizations with the General Data Protection Regulation 2016/679. For fulfilling the objectives of this study, the PIA-CNIL methodology is applied, which is in accordance with the data privacy impact assessment that has been described in ISO/IEC 29134. The main contribution of this work is the development of a guide that is designed to help Cloud-based Health organizations identify, analyze and reduce data protection risks in relation to their processing activities. More analytically, this research presents the risks that could be materialized by the data processing activities carried out by a Cloud-based Health Organization regarding its Processing Activities and could have an impact on the fundamental rights and freedoms of natural persons.

show abstract

Section: Introductionmentioning

confidence: 99%

DPIA for Cloud-based Health Organizations in the context of GDPR

Georgiou

Lambrinoudakis

2023

eccws

View full text Add to dashboard Cite

show abstract

“…In this respect, many healthcare strategies tried to strategically renew healthcare through large scale restructuring, yet there is uncertainty about whether there is the best way, or even a particular way, to structure a healthcare organization (Chryssanthou, Varlamis, Sarivougioukas, & Apostolakis, 2012;Duffield et al, 2007). This is evident as the constant restructuring of health services suggests that while it is fairly easy to determine a broad strategy, it is clearly more difficult to define the exact organisational structure necessary to support the overall strategy (Tjerbo, 2009).…”

Section: Introductionmentioning

confidence: 99%

Proposing and Testing SOA Organisational Structures

Koumaditis

Themistocleous

2014

International Journal of Reliable and Quality E-Healthcare

View full text Add to dashboard Cite

Longstanding Healthcare Information Systems (HIS) integration challenges drove healthcare organisations to invest in new paradigms like Service Oriented Architecture (SOA). Yet, SOA holds challenges of its own, with SOA Governance surfacing on the top. This research depicts the development of a conceptual SOA Governance Element entitled “Organisational Structures”. ?his element is part of a SOA Governance framework that includes nine distinctive elements with SOA Organisational Structures being one of the critical ones. The conceptualisation of the proposed element is based on the authors' previous research, grounded in the normative literature and further developed to include healthcare aspects. The proposal is tested in a large Greek hospital utilising qualitative methods and the findings presented herein. This proposal aims to pinpoint attributes and guidelines for SOA Organisational Structures, required to successfully govern SOA and tackle longstanding HIS challenges.

show abstract

Organizational structures during SOA implementation: the case of a Greek healthcare organization

Koumaditis

Themistocleous

2015

Transforming Government: People, Process and Policy

View full text Add to dashboard Cite

Purpose – The purpose of this paper is to investigate service-oriented architecture organizational studies (SOA OS) in healthcare through a rigorous literature review, development and testing in an eGovernment health-care setting. The application of SOA paradigm to integrate information systems has been pursued mainly by private organizations. However, SOA starts to appear in the public agenda and specifically in health-care reengineering, as well. Recently, government strategies for eHealth have been slowly incorporating the SOA paradigm to integrate isolated systems, provide cost-effective solutions and expand the capabilities of their health-care information system. Yet, literature indicates that eHealth government strategies, including SOA, require the support of SOA OS to be successfully implemented. Design/methodology/approach – To investigate the less acknowledged phenomena like SOA OS in healthcare, the authors incorporate an interpretive, qualitative case study approach to conduct this research. This method will assist in examining the phenomenon in its natural setting, examine the in-depth complexities and health-care processes and provide rich qualitative data during interviews and observations. Findings – The authors critically review the literature and synthesize a SOA OS with specific attributes, sub-elements, guidelines and healthcare-specific parameters. This conceptual structure was tested in the practical arena leading to an evaluated SOA OS blueprint. Research limitations/implications – As the outcome of the research was based on a single case, the paper concludes that the SOA OS in health-care research needs to broaden its perspective with more empirical data. Practical implications – This research revealed empirical insights that can help practitioners and researchers focus their attention to the significant role that the SOA OS plays during SOA implementations. Originality/value – This paper focuses on critical success factors related to SOA implementations in health-care organizations and can be considered as novel as it identifies and structures a SOA OS element that can be part of a SOA governance approach in the area of healthcare.

show abstract

Hospital Information Systems Replacement and Healthcare Quality

Cited by 3 publications

References 17 publications

DPIA for Cloud-based Health Organizations in the context of GDPR

DPIA for Cloud-based Health Organizations in the context of GDPR

Proposing and Testing SOA Organisational Structures

Organizational structures during SOA implementation: the case of a Greek healthcare organization

Contact Info

Product

Resources

About