General Data Protection Regulation

European Union Member States are mandated to comply with the rules set down by the General Data Protection Regulation (GDPR). GDPR (EU Regulation 2016/679) relates also to health care providers by which the European Commission intends to strengthen and unify data protection for individuals within the European Union. It also addresses the export of personal data outside the EU.

University Medical Centre Ljubljana, as all other European health care providers, reviews the existing policies, procedures and practices to ensure compliance with the new regulation that aims to protect privacy rights. At the same time, providers have also to ensure a simple clinical workflow enabling fast and secure access to patient data.

Being GDPR-compliant is an extensive task for health care providers. Chief information officers and hospital management regard this task high on their strategic agendas in 2018-2019. At University Medical Centre Ljubljana we initiated a compliance project and we designated a data protection officer (DPO).

UMCL Data Protection Officer:
Marko Zebec Koren, PhD
E: gdpr@kclj.si