Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2025 Oct 3:330:335-362.
doi: 10.3233/SHTI251440.

eHealth Data Security and Privacy

Snezana Savoska  1 Blagoj Ristevski  1 Anita Petreska  1 Vladimir Trajkovik  2
Affiliations

eHealth Data Security and Privacy

Snezana Savoska et al. Stud Health Technol Inform. .

Abstract

Contemporary healthcare utilizes data stored as e-health data, personal health records (PHR), electronic health records (EHR), as well as data from wearables and sensors. These personal health (PH) data must be secure, private, and usable for analysis to improve patient treatments and overall healthcare quality. For practitioners, these data are essential; for governments, they support decision-making; and for society, they enable new medical discoveries. Given the sensitivity of PH data, ensuring data confidentiality is crucial. Data must be standardized, accurate, and timely to be reliable for medical use. Key challenges include security, privacy, consent management, and legal compliance. Different legal and technical measures can be used to address these challenges. In this study, we consider data security and privacy from the whole aspect of the healthcare data life cycle, as well as the most important laws that regulate healthcare data security and privacy, starting from the treats to the solutions published in the literature. Privacy-preserving techniques are continually advancing, with significant developments in trusted execution environments and cryptographic methods. Current best practices involve strict adherence to consent and privacy policies, ensuring that individuals' data is handled with the utmost care. NoPeek learning techniques allow for data analysis without sharing the actual data, thereby enhancing privacy. This approach should be combined with differential privacy, a technique that adds statistical noise to data to prevent the identification of individual data points. Artificial Intelligence (AI) promises advancements in healthcare but requires adherence to regulations. Disease prediction models using AI analyze vast datasets to predict health-related threats but must balance benefits with data protection and regulatory compliance. Collaborative approaches can integrate predictive analytics into personalized healthcare while maintaining trust and ethical standards.

Keywords: GDPR; HIPAA; eHealth data privacy and security; healthcare standards.

PubMed Disclaimer

MeSH terms

LinkOut - more resources