eSAAM Best Paper Award

Information systems are increasingly utilizing data to provide various services. However, failure to properly protect data may affect data subjects negatively, and damage the reputation of service providers. This work aims to establish a privacy-friendly data space that enables safeguarded sharing of health data among various stakeholders in health domains. We propose a comprehensive reference architecture that integrates security/privacy mechanisms to uphold security and privacy requirements of health data and ensure strict adherence to demanding mandates. Furthermore, this article puts forth a blueprint for contracts when sharing data to cultivate transparency among various parties by harmonizing legal, technical and operational facets. This blueprint significantly reduces uncertainties and fosters an environment of trust. Our twofold methodology enables entities of a health data space to share health data, while upholding the security and privacy principles. The Eclipse Data Space Connector (EDC) is used as the basis to implement the proposed architecture.