Objective
SHiELD will unlock the value of health data to European citizens and businesses by overcoming security and regulatory challenges that today prevent this data being exchanged with those who need it. This will make it possible to provide better health care to mobile citizens across European borders, and facilitate legitimate commercial uses of health data.
The exchange of health data is already possible, but rarely happens in practice because it is hard to ensure that the combined ‘end-to-end’ system will be secure and comply with data protection laws. SHiELD will address these security and compliance challenges:
• providing models and analysis tools for automated identification of end-to-end security risks and compliance issues and supporting privacy and ‘by design’;
• defining an open and extensible data exchange architecture based on epSOS, able to support security measures to address these risks;
• developing security mechanisms to deal with new and emerging risks, such as inference attacks on sensitive data, and risks from relatively unprotected mobile edge devices;
• providing faster and more cost effective methods to verify and monitor compliance with multiple sets of applicable regulations;
SHiELD case studies will address cross border scenarios in which a citizen needs health care while in one Member State, and care givers need access to their health data from different Member States. SHiELD will also consider how commercial providers of lifestyle services or wearable sensors may be involved in such data exchanges. SHiELD will thereby also create opportunities for using health data to create such products and services addressing the common European market.
SHiELD will provide guidance in best practice to achieve end-to-end security and data protection compliance in health and health related applications. SHiELD will also feed into CEN-Cenelec and ETSI efforts to create EU standards for data protection by design in eHealth.
Fields of science
- medical and health scienceshealth scienceshealth care serviceseHealth
- natural sciencescomputer and information sciencescomputer securitydata protection
- engineering and technologyelectrical engineering, electronic engineering, information engineeringelectronic engineeringsensors
- natural sciencescomputer and information sciencesdata sciencedata exchange
- social scienceslaw
Programme(s)
Funding Scheme
RIA - Research and Innovation actionCoordinator
48160 Derio (Bizkaia)
Spain
See on map
Participants (13)
Participation ended
L7 9NJ Liverpool
The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.
SO17 1BJ Southampton
See on map
01006 Vitoria-gasteiz
See on map
20132 Milano
See on map
Legal entity other than a subcontractor which is affiliated or legally linked to a participant. The entity carries out work under the conditions laid down in the Grant Agreement, supplies goods or provides services for the action, but did not sign the Grant Agreement. A third party abides by the rules applicable to its related participant under the Grant Agreement with regard to eligibility of costs and control of expenditure.
20132 Milano
See on map
PR5 6AW Preston
See on map
EH2 4AD Edinburgh
See on map
The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.
49527 Petach Tikva
See on map
20457 Hamburg
See on map
CT1 2TU Canterbury
See on map
The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.
20009 San Sebastian Guipuzcoa
See on map
Legal entity other than a subcontractor which is affiliated or legally linked to a participant. The entity carries out work under the conditions laid down in the Grant Agreement, supplies goods or provides services for the action, but did not sign the Grant Agreement. A third party abides by the rules applicable to its related participant under the Grant Agreement with regard to eligibility of costs and control of expenditure.
20009 San Sebastian
See on map
L7 9NJ Liverpool
See on map
The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.