EU draft mhealth app assessment guidelines: Open Stakeholder Meeting 9 th June. Andrew Ruck & Charles Lowe

Similar documents
Report of the Working Group on mhealth Assessment Guidelines February 2016 March 2017

Privacy Code of Conduct on mhealth apps the role of soft-law in enhancing trust ehealth Week 2016

Seminar om de nye regler for certificering

EU mhealth Working Group

How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015

INSPIRE status report

Regulating Cyber: the UK s plans for the NIS Directive

Cybersecurity Policy in the EU: Security Directive - Security for the data in the cloud

Physical Security Reliability Standard Implementation

GC0102 Mod Title: EU Connection Codes GB Implementation Mod 3

ENTSO-e Operational Security Network Code. OS Code Objectives. Update for JESG meeting 20 th Feb 2013

European Single Electronic Format (ESEF) Eurofiling workshop 8 June 2017

Welcome to Customs Declaration Services (CDS) Stakeholder Event

PROJECT BACKGROUND AND RATIONALE

Erasmus+ 2017/18 Timeline, Checklist & FAQs

Directive on security of network and information systems (NIS): State of Play

Pilot Study on Big Data: Philippines. World Telecommunications/ICT Indicators Symposium (WTIS) November 2017 Hammamet, Tunisia

ARTICLE 29 DATA PROTECTION WORKING PARTY

GUIDE 63. Guide to the development and inclusion of safety aspects in International Standards for medical devices

The MovingLife Project

Sundhedsappsfra innovation til kommercialisering

CSF to Support SOC 2 Repor(ng

European Transport Policy: ITS in action ITS Action Plan Directive 2010/40/EU

BDT Activities on Spectrum Management István Bozsóki Head of Division BDT/IEE/SBD

Stakeholder consultation process and online consultation platform

CEN and CENELEC Position Paper on the draft regulation ''Cybersecurity Act''

MedDRA Update. MedDRA Industry User Group Meeting. 28 September 2018

Infrastructures and Service Dimitra Liveri Network and Information Security Expert, ENISA

Kick-off Meeting DPIA Test phase

In Accountable IoT We Trust

Guidelines 4/2018 on the accreditation of certification bodies under Article 43 of the General Data Protection Regulation (2016/679)

Public Safety Canada. Audit of the Business Continuity Planning Program

Harmonisation of Digital Markets in the EaP. Vassilis Kopanas European Commission, DG CONNECT

GLOBAL INDICATORS OF REGULATORY GOVERNANCE. Scoring Methodology

United4Health session Regulatory Framework Trends & Updates. Nicole Denjoy COCIR Secretary General Wed. 7 May 2014, Berlin (Germany)

Call for Expressions of Interest

Globally Networked Customs Context, Concept, Rationale and Benefits - Indian Customs Perspective

BCI Principles & Criteria: Revision

NIST UPDATES TELECOM MRAS

Managing Privacy Risk & Compliance in Financial Services. Brett Hamilton Advisory Solutions Consultant ServiceNow

Client Services Procedure Manual

13543/17 PhL/at 1 DG G 3 B

European Union Agency for Network and Information Security

II) Overview of the draft VA on the basis of the criteria included in Annex VIII of Directive 2005/32/EC

Report from UN-GGIM: Europe A year in review

Data Protection Statement. Trinity Development & Alumni

Sendai Framework for Disaster Risk Reduction & 2030 Agenda for Sustainable Development

Capacity building in the IAEA Action Plan on Nuclear Safety

Emerging Challenges in mhealth: Keeping Information Safe & Secure HCCA CI Web Hull Privacy, Data Protection, & Compliance Advisor

Topics 4/11/2016. Emerging Challenges in mhealth: Keeping Information Safe & Secure. Here s the challenge It s just the beginning of mhealth

ehaction Joint Action to Support the ehealth Network

Unofficial Comment Form Project Modifications to CIP Standards Requirements for Transient Cyber Assets CIP-003-7(i)

WELCOME ISO/IEC 27001:2017 Information Briefing

Alberta Environment and Sustainable Resource Development. West Central Airshed Society/Palliser Airshed Society

Plan a Pragmatic Approach to the new EU Data Privacy Regulation

Incident Response and Investigations. Regulation and standards

The European Single Electronic Format (ESEF)

Google Cloud & the General Data Protection Regulation (GDPR)

Global Specification Protocol for Organisations Certifying to an ISO Standard related to Market, Opinion and Social Research.

ITU Kaleidoscope 2015 Trust in the Information Society

The European Policy on Critical Information Infrastructure Protection (CIIP) Andrea SERVIDA European Commission DG INFSO.A3

NERC-Led Technical Conferences

10007/16 MP/mj 1 DG D 2B

Audit Report. Association of Chartered Certified Accountants (ACCA)

Valérie Andrianavaly European Commission DG INFSO-A3

HEALTH INFORMATION INFRASTRUCTURE PROJECT: PROGRESS REPORT

Sustainable Forest Management Toolbox

20 December All TSOs of the Capacity Calculation Region Hansa, taking into account the following: Page 1 of 7

Analysis of part B GMO deliberate release field trials management in Member States and prevention of accidental entry into the marketplace

Lifeline Program Update. National Verifier Updates May 17, 2017

GDPR AMC SAAS AND HOSTED MODULES. UK version. AMC Consult A/S June 26, 2018 Version 1.10

Information Technology (CCHIT): Report on Activities and Progress

DATA PROTECTION POLICY THE HOLST GROUP

ENISA s Position on the NIS Directive

NZQA registered unit standard 8086 version 7 Page 1 of 5. Demonstrate knowledge required for quality auditing

Standard Setting and Revision Procedure

Conformity assessment Requirements for bodies providing audit and certification of management systems. Part 6:

Request for Expressions of Interest: The EU mhealth Hub

VISTRA NETHERLANDS PRIVACY NOTICE

COUNCIL OF THE EUROPEAN UNION. Brussels, 28 January 2003 (OR. en) 15723/02 TELECOM 78 JAI 307 PESC 593

Vistra International Expansion Limited PRIVACY NOTICE

Classification and regulation of software

EU GDPR & ISO Integrated Documentation Toolkit integrated-documentation-toolkit

New CEN-CENELEC Technical Committees for Infosec and Data Protection Standardization (TC8) Brussels - 19 September 2017 Alessandro GUARINO Chair,

NATIONAL INFRASTRUCTURE COMMISSION CORPORATE PLAN TO

STANDARDS TO HELP COMPLY WITH EU LEGISLATION. EUROPE HAS WHAT IT TAKES INCLUDING THE WILL?

Signed on December 22 nd, 2015 MINISTRY OF INDUSTRY MINISTRY OF ECONOMY, TRADE AND INDUSTRY

Freedom of Information Act 2000 (FOIA) Decision notice

The prospects of data breach laws in 18 European countries

UDI in Europe. Mr. Salvatore Scalzo, Policy and Legal Officer, Medical Devices, DG GROW, European Commission. 19 October 2017

INTERNAL AUDIT DIVISION REPORT 2017/138

DISCUSSION PAPER. Recommendations for a common UN System wide agenda on NCDs

EU Code of Conduct on Data Centre Energy Efficiency

Birgit Morlion. DG Communications Networks, Content and Technology (DG CONNECT)

GC0106: Mod Title: Data exchange requirements in accordance with Regulation (EU) 2017/1485 (SOGL)

HEALTH INFORMATION INFRASTRUCTURE PROJECT: PROGRESS REPORT

Discussion on MS contribution to the WP2018

Developing and Implementing Data Protection Law: Malaysia and Beyond

Specific topics covered in this brief include:

PART IV GLOSSARY OF TERMS

Transcription:

EU draft mhealth app assessment guidelines: Open Stakeholder Meeting 9 th June Andrew Ruck & Charles Lowe

Purpose of this presentation To update stakeholders on the development of the voluntary EU guidelines on mhealth app assessment & seek feedback This presentation will: 1. Describe the context of the guidelines 2. Review the contents of the second draft guidelines 3. Give a flavour of open issues 4. Invite your feedback, for inclusion in the next iteration NB the second draft of the guidelines can be seen on the Commission website at https://ec.europa.eu/digital-single-market/en/news/mhealth-ehealth-week-2016 Then download the guidelines at the bottom of the page

1. Rationale and Process

Development of the draft guidelines; Where are we? First Iteration in March, followed by stakeholder engagement and written feedback Second Iteration as presented today, then feedback Third Iteration targeted for mid October, then feedback Fourth (and Final) Iteration targeted for end December Final draft guidelines sent out for written comments to the extended stakeholder group. When feedback received, final draft guidelines produced and discussed with Commission. Included in final report (2017-01-25)

3. Review of contents of 2 nd draft Guidelines

The EU context - a possible future High medical risk 2016 2017 2018 2019 2020 Existing privacy GDPR legislation Low medical risk App Code of Conduct on privacy (voluntary) MDD/IVDD/IDDD MDR/IVDR/IDDR The grey Guidelines on app zone assessment (voluntary) Guidance for app developers Possible legislation/code of Conduct on safety following current consultation Possible legislation/code of Conduct on usability following consultation shortly

Constructing the first draft Original remit to cover reliability & validity All WG members invited to suggest assessment models; many provided Included those from Andalucia, Catalonia, DMD Santé, UK, plus academic papers from many other countries Combining all these produced nine criteria, plus risk assessment to ensure proportionality Graphically

The criteria Transparent Stable Credible Quality Safe Transparent Secure

Proportionality WG wants the Guidelines to cover everything from grey area apps down to simple apps with minimal medical content, eg doctors appointment apps Propose therefore to stratify to three risk levels that in turn will drive the importance of the questions under each criterion lowest risk would only engage a small subset of questions Welcome views on what risks to consider, remembering these are apps that are already comparatively low risk

The second draft Much changed from the earlier draft, and shorter - the rationale for the criteria is now in an annex, as is the original discussion on origins Now includes details of the existing/future regulatory environment, & relevant standards adds a stakeholder analysis & discussion on uses has a more detailed set of definitions Areas still requiring significant work include: Agreement on the handling/number of criteria The dimensions of risk to consider How best to make the scrutiny questions as objective as possible

2. Open Issues Scope Dovetailing User perspectives and needs Form Risk Assessment

4. Tell us what you think

Where are the guidelines? The latest draft of the guidelines are available to stakeholders for download from the Commission website. Go to: https://ec.europa.eu/digital-single-market/en/news/mhealth-ehealthweek-2016 Then download the guidelines at the bottom of the page.

Your feed back Stakeholder feed-back is captured via series of questionnaires (allows for accurate identification of draft and republication of all feed-back received in structured manner). Please go to https://www.surveymonkey.co.uk/r/tyrsx2k to provide your feed back before 31 st August A summary of feed back received on each iteration will be prepared, A summary of all feed-back received to be published by end January 2017.

Thank you

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback