Asmens duomenų tvarkymo ypatumai nuotoliniu būdu teikiant paslaugas sveikatos priežiūros srityje

LTPasaulyje išplitus COVID-19 virusui nuotolinis darbas ir paslaugų teikimas tapo įprastas daugelyje veiklos sričių, įskaitant ir sveikatos priežiūros sektorių. Lietuvos Respublikos Vyriausybei nuo 2020 m. kovo 16 d. paskelbus karantiną ir įvedus judėjimo bei veiklos apribojimus, buvo patvirtintos rekomendacijos tiek viešojo, tiek privataus sektoriaus subjektams organizuoti darbą ir aptarnauti klientus nuotoliniu būdu, išskyrus atvejus, kai būtina atitinkamas funkcijas atlikti darbo vietoje. Teikiant sveikatos priežiūros paslaugas nuotoliniu būdu pagrindiniu iššūkiu tampa tinkamas duomenų subjekto (paciento) identifikavimas. Sėkmingam Bendrojo duomenų apsaugos reglamento principų, o ypač duomenų kiekio mažinimo teisėkūros institucijų tendencija laikytis doktrininio požiūrio šių teisių modernizavimo srityje, stokoja prielaidų akomoduoti išimtinių autorių teisių reglamentavimą Europos Sąjungos skaitmeninei kūrybinei industrijai. Šias prielaidas pateikia dekonstrukcijos pacientui fiziškai atvykus į sveikatos priežiūros įstaigą) teikiamos sveikatos priežiūros paslaugos. [Iš leidinio]Reikšminiai žodžiai: Sveikatos priežiūros įstaiga; Asmens duomenų tvarkymo pagrindai; Asmens duomenų tvarkymo principai; Duomenų valdytojas; Duomenų apsaugos pareigūnas; Healthcare institution; Basis for data processing personal data; Principles of personal data processing; Data controller; Data protection officer.

ENWith the global spread of COVID-19, remote work and provision of services remotely have become the norm in many areas of activity, including the provision of healthcare services. Following the decision of the government of the Republic of Lithuania to declare quarantine and introduce restrictions to limit movement and activities, recommendations were adopted for public and private sector entities to organize work and provide remote services for customers. The only exception made was in the case of certain functions that could only be physically performed in the actual workplace. Priority for remote provision of services was established in the healthcare sector. Hence, the unprecedented situation presented by COVID-19 has obliged healthcare (and many other sectors) to adapt, and even switch, to remote work, despite doubts or a reluctance to adopt telemedicine. A key challenge in providing distance healthcare is the proper identification of a data subject (patient). Given that the provision of healthcare services is linked to the processing of sensitive personal data, the intended method of identification of a data subject must adhere to strict protocols. These are determined by the potential severity of the consequences that may arise for a patient (and also the healthcare provider) due to misidentification.Qualified data protection officers, supported by appropriate legislation, are essential for the successful implementation of the principles established in the General Data Protection Regulation, and in particular the principle of data minimisation and the principle of transparency, regardless of the way in which the healthcare services are provided (remotely or in person upon arrival to the healthcare institution). Ensuring the education and continuous training of the personnel can help to prevent healthcare institutions from violating the security of personal data, as well as ensure they maintain principles of integrity and confidentiality, especially when and where services are provided remotely. [From the publication]