Exportar Publicação

A publicação pode ser exportada nos seguintes formatos: referência da APA (American Psychological Association), referência do IEEE (Institute of Electrical and Electronics Engineers), BibTeX e RIS.

Exportar Referência (APA)
Phuyal, S., Bhandari, M., Bezerra, R. C., Bista, R. & Ferreira, J. C. (2026). Dynamic consent for secondary use of health data: Challenges and opportunities under European law. JMIR Medical Informatics. 14
Exportar Referência (IEEE)
S. Phuyal et al.,  "Dynamic consent for secondary use of health data: Challenges and opportunities under European law", in JMIR Medical Informatics, vol. 14, 2026
Exportar BibTeX
@article{phuyal2026_1784186093026,
	author = "Phuyal, S. and Bhandari, M. and Bezerra, R. C. and Bista, R. and Ferreira, J. C.",
	title = "Dynamic consent for secondary use of health data: Challenges and opportunities under European law",
	journal = "JMIR Medical Informatics",
	year = "2026",
	volume = "14",
	number = "",
	doi = "10.2196/93348",
	url = "https://medinform.jmir.org/"
}
Exportar RIS
TY  - JOUR
TI  - Dynamic consent for secondary use of health data: Challenges and opportunities under European law
T2  - JMIR Medical Informatics
VL  - 14
AU  - Phuyal, S.
AU  - Bhandari, M.
AU  - Bezerra, R. C.
AU  - Bista, R.
AU  - Ferreira, J. C.
PY  - 2026
SN  - 2291-9694
DO  - 10.2196/93348
UR  - https://medinform.jmir.org/
AB  - Secondary use of health data is essential for advancing medical research, innovation, and public health policy across Europe. Traditional static or broad consent models are increasingly inadequate in complex, multistakeholder digital ecosystems. Dynamic consent, which enables granular, interactive, and ongoing management of individual preferences, including revocation, has emerged as a patient-centered alternative. This integrative review examines the legal feasibility and practical challenges of implementing dynamic consent for secondary health data use under the General Data Protection Regulation (GDPR) and the European Health Data Space (EHDS) Regulation. Drawing on doctrinal legal analysis, European policy documents, national derogations, and technical standards including Health Level Seven Fast Healthcare Interoperability Resources, electronic Identification, Authentication and Trust Services 2.0, European Digital Identity Wallet, and distributed ledger approaches, the study synthesizes legal, governance, and informatics perspectives. Findings indicate that while the GDPR establishes parameters supportive of specific, informed, and revocable consent, significant barriers persist due to national fragmentation, divergent lawful bases for processing, and limited cross-border revocation mechanisms. The EHDS, with provisions phasing in from 2029, shifts governance toward institutional authorization via Health Data Access Bodies and secure processing environments, reducing reliance on individual consent for many large-scale uses. Technical prerequisites, machine-readable consent artifacts, high-assurance digital identity, and policy-based enforcement remain unevenly developed. Nevertheless, integration with data altruism mechanisms under the Data Governance Act and emerging interoperability tools offers promising pathways. A 3-stage operational architecture (consent administration, decision, and enforcement) is proposed to embed dynamic consent within the hybrid EHDS-GDPR framework. However, challenges including blockchain immutability conflicts with the right to erasure, revocation propagation across systems, implementation costs, consent fatigue, and digital divides must be addressed. Dynamic consent cannot serve as a universal solution but can meaningfully enhance transparency and trust when deployed contextually alongside institutional safeguards. Coordinated EU-level harmonization, standardization, and inclusive design will be essential for its successful operationalization.
ER  -