Internet of Things and blockchain used in the Brazilian Unified Health System: how to protect sensitive data considering the imminence of the Data Protection Law

Objective: Brazilian Unified Health System (SUS, in Portuguese) has invested in Internet of Things (IoT) technologies to collect data from patients. This article aims to point out the weaknesses regarding the privacy of users of the SUS and to propose a theoretical solution, yet to be evaluated, and...

Descripción completa

Detalles Bibliográficos
Autores: Camara, Maria Amália Arruda, Lins, Gabriel Henrique Albuquerque, Oliveira, Fábio Henrique Cavalcanti de, Camelo, Evellyn Millene Alves, Medeiros, Nataly Regina Fonseca Carvalho de
Tipo de recurso: artículo
Estado:Versión publicada
Fecha de publicación:2021
País:Brasil
Institución:Fundação Oswaldo Cruz (FIOCRUZ)
Repositorio:Cadernos Ibero-Americanos de Direito Sanitário (Online)
Idioma:portugués
OAI Identifier:oai:ojs.cadernos.prodisa.fiocruz.br:article/657
Acceso en línea:https://www.cadernos.prodisa.fiocruz.br/index.php/cadernos/article/view/657
Access Level:acceso abierto
Palabra clave:Cadena de bloques
Privacidad
Macrodatos
Sistema Único de Salud
Confidencialidad
Blockchain
Privacy
Big data
Unified Health System
Confidentiality
Privacidade
Sistema Único de Saúde
Confidencialidade
Descripción
Sumario:Objective: Brazilian Unified Health System (SUS, in Portuguese) has invested in Internet of Things (IoT) technologies to collect data from patients. This article aims to point out the weaknesses regarding the privacy of users of the SUS and to propose a theoretical solution, yet to be evaluated, and based on a Personal Data Storages (PDS) infrastructure or on blockchain security. Methods: aA narrative review of national and international literature related to instruments, policies, and cases related to information and communication technologies in health was conducted to point out the weaknesses regarding the privacy of users of this system. Results: there is still a lack of transparency in the treatment of personal data and little accountability on the part of citizens, making it necessary to change the technological and governance strategy. Conclusion:  PDS empowers users as it gives greater control and transparency over the treatment of data. However, this solution, in a system like the one used by their Computer Department, can compromise the accuracy of the data used in public policies, while it can compromise some citizens' rights, as this data is saved in records and the metadata is publicly available. The implementation of a solution like this does not yet have the prospect of an optimal result, without any methodological restriction on citizens' rights or the efficiency of the State, but it is a step in civil empowerment and an improvement required by law concerning privacy and protection of personal data. The implementation of the PDS does not yet have the prospect of an optimal result. There are still methodological restrictions regarding the rights of citizens or the efficiency of the State. But it is a step in civil empowerment and an improvement required by law in terms of privacy and the protection of personal data.