Cumplimiento de la LOPD y los Requerimientos Legales de la ISO27001 en la Citación de Pacientes en Hospitales (LOPD Compliance and ISO 27001 legal requirements in the Health Sector)

Luis Enrique Sánchez (lesanchez@sicaman-nt.com)1, Antonio Santos-Olmo (asolmo@sicaman-nt.com)1, Esther Álvarez (ealvarez@in-nova.org)2, Eduardo Fernández-Medina (Eduardo.FdezMedina@uclm.es)1, Mario Piattini-Velthuis (Mario.Piattini@uclm.es)1


1Universidad Castilla-La Mancha
2Fundación In-Nova Castilla La Mancha

This paper appears in: Revista IEEE América Latina

Publication Date: April 2012
Volume: 10,   Issue: 3 
ISSN: 1548-0992


Abstract:
In a society based on information, the Safety Management Systems (ISMS) are increasingly critical for businesses. Within the Management of Information Security issues are very critical in certain sectors, such as the processing of personal data for the Health Sector, where a bad use of them can mean irreparable damage to their owners and organizations are obligation to protect them. This paper presents a real case of success that allowed to solve issues related to privacy of patient information at the time of making the quotation of these consultations, as well as compliance with the Organic Law for the protection of Personal Data (OLPD) in environments health and other benefits of the implemented solution.

Index Terms:
OLPD,ISO27001, ISMS, Health, Privacy, Personal Data   


Documents that cite this document
This function is not implemented yet.


[PDF Full-Text (860)]