Ensuring General Data Protection Regulation Compliance and Security in a Clinical Data Warehouse From a University Hospital: Implementation Study

The European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data prote...

Full description

Saved in:

Bibliographic Details
Published in	JMIR medical informatics Vol. 13; p. e63754
Main Authors	Riou, Christine, El Azzouzi, Mohamed, Hespel, Anne, Guillou, Emeric, Coatrieux, Gouenou, Cuggia, Marc
Format	Journal Article
Language	English
Published	Canada JMIR Publications 17.04.2025
Subjects	Advanced Data Analytics in eHealth Big Data Computer Security - legislation & jurisprudence Computer Security - standards Confidentiality - legislation & jurisprudence Confidentiality - standards Data Warehousing - standards eHealth Infrastructures Electronic Health Records - standards France Guideline Adherence Hospitals, University Humans Ontologies, Classifications, and Coding Original Paper Policy Research Infrastructures and Registries Secondary Use of Clinical Data for Research and Surveillance Security in Digital Health France personal data protection privacy university hospitals personal data security French data hub clinical data warehouse compliance experiential analysis applicability operational challenge France legislation
Online Access	Get full text

Cover

Loading…

Abstract	The European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data protection authority (Commission Nationale de l'Informatique et des Libertés). This framework provides detailed guidelines for health care institutions, offering a unique opportunity to assess practical GDPR implementation in health data management. This study evaluates the real-world applicability of France's CDW framework through its implementation at a major university hospital. It identifies practical challenges for its implementation by health institutions and proposes adaptations relevant to regulatory authorities in order to facilitate research in secondary use data domains. A systematic assessment was conducted in May 2023 at the University Hospital of Rennes, which manages data for over 2 million patients through the eHOP CDW system. The evaluation examined 116 criteria across 13 categories using a dual-assessment approach validated by information security and data protection officers. Compliance was rated as met, unmet, or not applicable, with criteria classified as software-related (n=25) or institution-related (n=91). Software-related criteria showed 60% (n=15) compliance, with 28% (n=7) noncompliant or partially compliant and 12% (n=3) not applicable. Institution-related criteria achieved 72% (n=28) compliance for security requirements. Key challenges included managing genetic data, implementing automated archiving, and controlling data exports. The findings revealed effective privacy protection measures but also highlighted areas requiring regulatory adjustments to better support research. This first empirical assessment of a national CDW compliance framework offers valuable insights for health care institutions implementing GDPR requirements. While the framework establishes robust privacy protections, certain provisions may overly constrain research activities. The study identifies opportunities for framework evolution, balancing data protection with research imperatives.
AbstractList	Abstract BackgroundThe European Union’s General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data protection authority (Commission Nationale de l’Informatique et des Libertés). This framework provides detailed guidelines for health care institutions, offering a unique opportunity to assess practical GDPR implementation in health data management. ObjectiveThis study evaluates the real-world applicability of France’s CDW framework through its implementation at a major university hospital. It identifies practical challenges for its implementation by health institutions and proposes adaptations relevant to regulatory authorities in order to facilitate research in secondary use data domains. MethodsA systematic assessment was conducted in May 2023 at the University Hospital of Rennes, which manages data for over 2 million patients through the eHOP CDW system. The evaluation examined 116 criteria across 13 categories using a dual-assessment approach validated by information security and data protection officers. Compliance was rated as met, unmet, or not applicable, with criteria classified as software-related (n=25) or institution-related (n=91). ResultsSoftware-related criteria showed 60% (n=15) compliance, with 28% (n=7) noncompliant or partially compliant and 12% (n=3) not applicable. Institution-related criteria achieved 72% (n=28) compliance for security requirements. Key challenges included managing genetic data, implementing automated archiving, and controlling data exports. The findings revealed effective privacy protection measures but also highlighted areas requiring regulatory adjustments to better support research. ConclusionsThis first empirical assessment of a national CDW compliance framework offers valuable insights for health care institutions implementing GDPR requirements. While the framework establishes robust privacy protections, certain provisions may overly constrain research activities. The study identifies opportunities for framework evolution, balancing data protection with research imperatives. The European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data protection authority (Commission Nationale de l'Informatique et des Libertés). This framework provides detailed guidelines for health care institutions, offering a unique opportunity to assess practical GDPR implementation in health data management.BackgroundThe European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data protection authority (Commission Nationale de l'Informatique et des Libertés). This framework provides detailed guidelines for health care institutions, offering a unique opportunity to assess practical GDPR implementation in health data management.This study evaluates the real-world applicability of France's CDW framework through its implementation at a major university hospital. It identifies practical challenges for its implementation by health institutions and proposes adaptations relevant to regulatory authorities in order to facilitate research in secondary use data domains.ObjectiveThis study evaluates the real-world applicability of France's CDW framework through its implementation at a major university hospital. It identifies practical challenges for its implementation by health institutions and proposes adaptations relevant to regulatory authorities in order to facilitate research in secondary use data domains.A systematic assessment was conducted in May 2023 at the University Hospital of Rennes, which manages data for over 2 million patients through the eHOP CDW system. The evaluation examined 116 criteria across 13 categories using a dual-assessment approach validated by information security and data protection officers. Compliance was rated as met, unmet, or not applicable, with criteria classified as software-related (n=25) or institution-related (n=91).MethodsA systematic assessment was conducted in May 2023 at the University Hospital of Rennes, which manages data for over 2 million patients through the eHOP CDW system. The evaluation examined 116 criteria across 13 categories using a dual-assessment approach validated by information security and data protection officers. Compliance was rated as met, unmet, or not applicable, with criteria classified as software-related (n=25) or institution-related (n=91).Software-related criteria showed 60% (n=15) compliance, with 28% (n=7) noncompliant or partially compliant and 12% (n=3) not applicable. Institution-related criteria achieved 72% (n=28) compliance for security requirements. Key challenges included managing genetic data, implementing automated archiving, and controlling data exports. The findings revealed effective privacy protection measures but also highlighted areas requiring regulatory adjustments to better support research.ResultsSoftware-related criteria showed 60% (n=15) compliance, with 28% (n=7) noncompliant or partially compliant and 12% (n=3) not applicable. Institution-related criteria achieved 72% (n=28) compliance for security requirements. Key challenges included managing genetic data, implementing automated archiving, and controlling data exports. The findings revealed effective privacy protection measures but also highlighted areas requiring regulatory adjustments to better support research.This first empirical assessment of a national CDW compliance framework offers valuable insights for health care institutions implementing GDPR requirements. While the framework establishes robust privacy protections, certain provisions may overly constrain research activities. The study identifies opportunities for framework evolution, balancing data protection with research imperatives.ConclusionsThis first empirical assessment of a national CDW compliance framework offers valuable insights for health care institutions implementing GDPR requirements. While the framework establishes robust privacy protections, certain provisions may overly constrain research activities. The study identifies opportunities for framework evolution, balancing data protection with research imperatives. The European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical data warehouses (CDWs). In 2021, France pioneered a national framework for GDPR-compliant CDW implementation, established by its data protection authority (Commission Nationale de l'Informatique et des Libertés). This framework provides detailed guidelines for health care institutions, offering a unique opportunity to assess practical GDPR implementation in health data management. This study evaluates the real-world applicability of France's CDW framework through its implementation at a major university hospital. It identifies practical challenges for its implementation by health institutions and proposes adaptations relevant to regulatory authorities in order to facilitate research in secondary use data domains. A systematic assessment was conducted in May 2023 at the University Hospital of Rennes, which manages data for over 2 million patients through the eHOP CDW system. The evaluation examined 116 criteria across 13 categories using a dual-assessment approach validated by information security and data protection officers. Compliance was rated as met, unmet, or not applicable, with criteria classified as software-related (n=25) or institution-related (n=91). Software-related criteria showed 60% (n=15) compliance, with 28% (n=7) noncompliant or partially compliant and 12% (n=3) not applicable. Institution-related criteria achieved 72% (n=28) compliance for security requirements. Key challenges included managing genetic data, implementing automated archiving, and controlling data exports. The findings revealed effective privacy protection measures but also highlighted areas requiring regulatory adjustments to better support research. This first empirical assessment of a national CDW compliance framework offers valuable insights for health care institutions implementing GDPR requirements. While the framework establishes robust privacy protections, certain provisions may overly constrain research activities. The study identifies opportunities for framework evolution, balancing data protection with research imperatives.
Author	Coatrieux, Gouenou Riou, Christine El Azzouzi, Mohamed Guillou, Emeric Cuggia, Marc Hespel, Anne
Author_xml	– sequence: 1 givenname: Christine orcidid: 0000-0002-3046-9059 surname: Riou fullname: Riou, Christine – sequence: 2 givenname: Mohamed orcidid: 0000-0002-2473-6261 surname: El Azzouzi fullname: El Azzouzi, Mohamed – sequence: 3 givenname: Anne orcidid: 0000-0001-5361-1102 surname: Hespel fullname: Hespel, Anne – sequence: 4 givenname: Emeric orcidid: 0009-0006-3940-3714 surname: Guillou fullname: Guillou, Emeric – sequence: 5 givenname: Gouenou orcidid: 0000-0002-5643-0224 surname: Coatrieux fullname: Coatrieux, Gouenou – sequence: 6 givenname: Marc orcidid: 0000-0001-6943-3937 surname: Cuggia fullname: Cuggia, Marc
BackLink	https://www.ncbi.nlm.nih.gov/pubmed/40244890$$D View this record in MEDLINE/PubMed
BookMark	eNpVkstqWzEQhkVJaS71KxRtCt24kXR0JKubUtxcDIGWpqFLoaujcI7kSjoBP0bfuIqdhGSlQfPPN8w_cwwOYooOgBlGnwkW7JR1vKdvwBEhAs8FE_TgRXwIZqXcIYQwxYwx_g4cUkQoXQh0BP6dxTLlENfwwkWX1QC_q6rgz5yqMzWkCH-59TSoXbhM42YIKhoHVbTw2plWWrcwRKjgcggxmCfAH5XdbZqKg-c5jS19E8O9y-VBfpnKJlQ1fIGrxnOji3XPv66T3b4Hb70aips9vifg5vzs9_JyfvXjYrX8djU3nWB13gvBudAcEaEt5xQr0XlvncC6594zr03vjRZGCMxw8wdzTxe4WyjsNdGkOwGrPdcmdSc3OYwqb2VSQe4-Ul5LlWswg5OUdD1TjOneWioM0QuFLFowQ5nnVpvG-rpnbSY9OmvaRM3KV9DXmRhu5TrdS0wQQZz3jfDpkZDT38mVKsdQjBsGFV2zUXZY4E5QtpN-eNnsucvTUpvg415gciolO_8swUg-3Ivc3Uv3H595s0A
Cites_doi	10.1186/s12910-021-00647-x 10.2196/50194 10.2196/45002 10.3390/ijerph19127379 10.3390/ijerph19074272 10.3389/fphar.2023.1280173 10.1038/s41431-023-01403-y 10.1016/j.imu.2023.101270 10.2196/36711 10.1186/s13690-022-00866-7 10.5694/mja2.51555 10.1038/s41597-023-02361-2 10.1016/j.meddro.2018.10.001 10.1111/bioe.12286 10.1016/S2589-7500(21)00005-4 10.1055/s-0039-1677917 10.1089/big.2018.0176 10.3390/ijerph20021645 10.1007/s11019-022-10134-8 10.1093/jamiaopen/ooab005
ContentType	Journal Article
Copyright	Christine Riou, Mohamed El Azzouzi, Anne Hespel, Emeric Guillou, Gouenou Coatrieux, Marc Cuggia. Originally published in JMIR Medical Informatics (https://medinform.jmir.org). Copyright © Christine Riou, Mohamed El Azzouzi, Anne Hespel, Emeric Guillou, Gouenou Coatrieux, Marc Cuggia. Originally published in JMIR Medical Informatics (https://medinform.jmir.org) 2025
Copyright_xml	– notice: Christine Riou, Mohamed El Azzouzi, Anne Hespel, Emeric Guillou, Gouenou Coatrieux, Marc Cuggia. Originally published in JMIR Medical Informatics (https://medinform.jmir.org). – notice: Copyright © Christine Riou, Mohamed El Azzouzi, Anne Hespel, Emeric Guillou, Gouenou Coatrieux, Marc Cuggia. Originally published in JMIR Medical Informatics (https://medinform.jmir.org) 2025
DBID	AAYXX CITATION CGR CUY CVF ECM EIF NPM 7X8 5PM DOA
DOI	10.2196/63754
DatabaseName	CrossRef Medline MEDLINE MEDLINE (Ovid) MEDLINE MEDLINE PubMed MEDLINE - Academic PubMed Central (Full Participant titles) DOAJ Directory of Open Access Journals
DatabaseTitle	CrossRef MEDLINE Medline Complete MEDLINE with Full Text PubMed MEDLINE (Ovid) MEDLINE - Academic
DatabaseTitleList	MEDLINE - Academic MEDLINE
Database_xml	– sequence: 1 dbid: DOA name: DOAJ Directory of Open Access Journals url: https://www.doaj.org/ sourceTypes: Open Website – sequence: 2 dbid: NPM name: PubMed url: https://proxy.k.utb.cz/login?url=http://www.ncbi.nlm.nih.gov/entrez/query.fcgi?db=PubMed sourceTypes: Index Database – sequence: 3 dbid: EIF name: MEDLINE url: https://proxy.k.utb.cz/login?url=https://www.webofscience.com/wos/medline/basic-search sourceTypes: Index Database
DeliveryMethod	fulltext_linktorsrc
Discipline	Medicine
EISSN	2291-9694
EndPage	e63754
ExternalDocumentID	oai_doaj_org_article_42356a66b5dd49c2b8a0d086c46f7dbc PMC12020775 40244890 10_2196_63754
Genre	Journal Article
GeographicLocations	France
GeographicLocations_xml	– name: France
GroupedDBID	53G 5VS 7X7 8FI 8FJ AAFWJ AAYXX ABUWG ADBBV AFKRA AFPKN ALIPV ALMA_UNASSIGNED_HOLDINGS AOIJS BAWUL BCNDV BENPR CCPQU CITATION DIK EMOBN FYUFA GROUPED_DOAJ HMCUK HYE KQ8 M0T M~E OK1 PGMZT PHGZM PHGZT PIMPY RPM UKHRP CGR CUY CVF ECM EIF NPM PJZUB PPXIY 7X8 5PM PUEGO
ID	FETCH-LOGICAL-c396t-599779b7029bd7741a93ffde91b57ff6fbc5fcb9c9916137517f48138a1fb2b23
IEDL.DBID	DOA
ISSN	2291-9694
IngestDate	Wed Aug 27 01:16:02 EDT 2025 Thu Aug 21 18:26:49 EDT 2025 Fri Jul 11 18:35:28 EDT 2025 Mon Jul 21 05:51:36 EDT 2025 Sun Jul 06 05:02:52 EDT 2025
IsDoiOpenAccess	true
IsOpenAccess	true
IsPeerReviewed	true
IsScholarly	true
Keywords	personal data protection privacy university hospitals personal data security French data hub clinical data warehouse compliance experiential analysis applicability operational challenge France legislation
Language	English
License	Christine Riou, Mohamed El Azzouzi, Anne Hespel, Emeric Guillou, Gouenou Coatrieux, Marc Cuggia. Originally published in JMIR Medical Informatics (https://medinform.jmir.org). This is an open-access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided the original work, first published in JMIR Medical Informatics, is properly cited. The complete bibliographic information, a link to the original publication on https://medinform.jmir.org/, as well as this copyright and license information must be included.
LinkModel	DirectLink
MergedId	FETCHMERGED-LOGICAL-c396t-599779b7029bd7741a93ffde91b57ff6fbc5fcb9c9916137517f48138a1fb2b23
Notes	ObjectType-Article-1 SourceType-Scholarly Journals-1 ObjectType-Feature-2 content type line 23 None declared.
ORCID	0000-0001-6943-3937 0000-0002-3046-9059 0009-0006-3940-3714 0000-0002-2473-6261 0000-0002-5643-0224 0000-0001-5361-1102
OpenAccessLink	https://doaj.org/article/42356a66b5dd49c2b8a0d086c46f7dbc
PMID	40244890
PQID	3191394675
PQPubID	23479
ParticipantIDs	doaj_primary_oai_doaj_org_article_42356a66b5dd49c2b8a0d086c46f7dbc pubmedcentral_primary_oai_pubmedcentral_nih_gov_12020775 proquest_miscellaneous_3191394675 pubmed_primary_40244890 crossref_primary_10_2196_63754
PublicationCentury	2000
PublicationDate	20250417
PublicationDateYYYYMMDD	2025-04-17
PublicationDate_xml	– month: 4 year: 2025 text: 20250417 day: 17
PublicationDecade	2020
PublicationPlace	Canada
PublicationPlace_xml	– name: Canada – name: Toronto, Canada
PublicationTitle	JMIR medical informatics
PublicationTitleAlternate	JMIR Med Inform
PublicationYear	2025
Publisher	JMIR Publications
Publisher_xml	– name: JMIR Publications
References	Sheikh (R2); 3 Greene (R34); 7 Bak (R14); 26 Vukovic (R15); 80 Cuggia (R9); 169 Goncharov (R40); 216 Bernier (R16); 32 Gehrmann (R17); 10 R20 R22 Cumyn (R42); 22 Bocquet (R23); 20 R24 Lalova-Spinks (R18); 14 R29 R28 Karakachoff (R10); 12 R3 Thantilage (R19); 39 Lauzanne (R26); 19 Cossin (R27); 4 R4 R5 R7 R8 Bocquet (R6); 19 Ploug (R41); 30 Lesaulnier (R21); 2019 R30 R32 Cuggia (R1); 28 R31 R12 Guardiolle (R25); 10 R11 R33 R36 R13 R35 R38 R37 Cumyn (R39); 25
References_xml	– volume: 22 issue: 1 ident: R42 article-title: Meta-consent for the secondary use of health data within a learning health system: a qualitative study of the public’s perspective publication-title: BMC Med Ethics doi: 10.1186/s12910-021-00647-x – ident: R13 – ident: R38 – volume: 12 ident: R10 article-title: Implementing a biomedical data warehouse from blueprint to bedside in a regional French university hospital setting: unveiling processes, overcoming challenges, and extracting clinical insight publication-title: JMIR Med Inform doi: 10.2196/50194 – ident: R28 – volume: 25 ident: R39 article-title: Patients’ and members of the public’s wishes regarding transparency in the context of secondary use of health data: scoping review publication-title: J Med Internet Res doi: 10.2196/45002 – volume: 19 issue: 12 ident: R6 article-title: The challenges of implementing comprehensive clinical data warehouses in hospitals publication-title: Int J Environ Res Public Health doi: 10.3390/ijerph19127379 – ident: R7 – volume: 19 issue: 7 ident: R26 article-title: Optimizing the retrieval of the vital status of cancer patients for health data warehouses by using open government data in France publication-title: Int J Environ Res Public Health doi: 10.3390/ijerph19074272 – volume: 14 ident: R18 article-title: Patients’ knowledge, preferences, and perspectives about data protection and data control: an exploratory survey publication-title: Front Pharmacol doi: 10.3389/fphar.2023.1280173 – ident: R3 – volume: 32 start-page: 69 issue: 1 ident: R16 article-title: Reconciling the biomedical data commons and the GDPR: three lessons from the EUCAN ELSI collaboratory publication-title: Eur J Hum Genet doi: 10.1038/s41431-023-01403-y – ident: R35 – ident: R5 – volume: 39 ident: R19 article-title: Healthcare data security and privacy in data warehouse architectures publication-title: Inform Med Unlocked doi: 10.1016/j.imu.2023.101270 – ident: R31 – ident: R33 – volume: 10 issue: 11 ident: R25 article-title: Linking biomedical data warehouse records with the national mortality database in France: large-scale matching algorithm publication-title: JMIR Med Inform doi: 10.2196/36711 – ident: R37 – ident: R12 – volume: 80 issue: 1 ident: R15 article-title: Enablers and barriers to the secondary use of health data in Europe: General Data Protection Regulation perspective publication-title: Arch Public Health doi: 10.1186/s13690-022-00866-7 – volume: 216 start-page: 547 issue: 11 ident: R40 article-title: Dynamic consent and personalised medicine publication-title: Med J Aust doi: 10.5694/mja2.51555 – volume: 10 issue: 1 ident: R17 article-title: What prevents us from reusing medical real-world data in research publication-title: Sci Data doi: 10.1038/s41597-023-02361-2 – ident: R20 – volume: 2019 start-page: 103 issue: 158 ident: R21 article-title: Recherche en santé et protection des données personnelles à l’heure du Règlement général relatif à la protection des données [Article in French] publication-title: Médecine Droit doi: 10.1016/j.meddro.2018.10.001 – volume: 169 ident: R9 publication-title: Stud Health Technol Inform – volume: 30 start-page: 721 issue: 9 ident: R41 article-title: Meta consent—a flexible solution to the problem of secondary use of health data publication-title: Bioethics doi: 10.1111/bioe.12286 – ident: R22 – ident: R29 – ident: R24 – volume: 3 start-page: e383 issue: 6 ident: R2 article-title: Health information technology and digital innovation for national learning health and care systems publication-title: Lancet Digit Health doi: 10.1016/S2589-7500(21)00005-4 – volume: 28 start-page: 195 issue: 1 ident: R1 article-title: The French Health Data Hub and the German Medical Informatics Initiatives: two national projects to promote data sharing in healthcare publication-title: Yearb Med Inform doi: 10.1055/s-0039-1677917 – volume: 7 start-page: 140 issue: 3 ident: R34 article-title: Adjusting to the GDPR: the impact on data scientists and behavioral researchers publication-title: Big Data doi: 10.1089/big.2018.0176 – volume: 20 issue: 2 ident: R23 article-title: Opportunities and obstacles to the development of health data warehouses in hospitals in France: the recent experience of comprehensive cancer centers publication-title: Int J Environ Res Public Health doi: 10.3390/ijerph20021645 – ident: R32 – volume: 26 start-page: 185 issue: 2 ident: R14 article-title: Towards trust-based governance of health data research publication-title: Med Health Care Philos doi: 10.1007/s11019-022-10134-8 – volume: 4 issue: 1 ident: R27 article-title: Linkage of hospital records and death certificates by a search engine and machine learning publication-title: JAMIA Open doi: 10.1093/jamiaopen/ooab005 – ident: R11 – ident: R4 – ident: R30 – ident: R36 – ident: R8
SSID	ssj0001416667
Score	2.2956343
Snippet	The European Union's General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant implications for clinical... Abstract BackgroundThe European Union’s General Data Protection Regulation (GDPR) has profoundly influenced health data management, with significant...
SourceID	doaj pubmedcentral proquest pubmed crossref
SourceType	Open Website Open Access Repository Aggregation Database Index Database
StartPage	e63754
SubjectTerms	Advanced Data Analytics in eHealth Big Data Computer Security - legislation & jurisprudence Computer Security - standards Confidentiality - legislation & jurisprudence Confidentiality - standards Data Warehousing - standards eHealth Infrastructures Electronic Health Records - standards France Guideline Adherence Hospitals, University Humans Ontologies, Classifications, and Coding Original Paper Policy Research Infrastructures and Registries Secondary Use of Clinical Data for Research and Surveillance Security in Digital Health
Title	Ensuring General Data Protection Regulation Compliance and Security in a Clinical Data Warehouse From a University Hospital: Implementation Study
URI	https://www.ncbi.nlm.nih.gov/pubmed/40244890 https://www.proquest.com/docview/3191394675 https://pubmed.ncbi.nlm.nih.gov/PMC12020775 https://doaj.org/article/42356a66b5dd49c2b8a0d086c46f7dbc
Volume	13
hasFullText	1
inHoldings	1
isFullTextHit
isPrint
link	http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwrV1La9wwEB7aFEKhlL7rPhYVejWx_JCs3pp0l1BICGlD92b0JDlEWzabQ35G_nFnZG26Wwq99GYssMV8Y8031ugbgI9ONd5qjczNh65sTSVL4wwvtcZY2Naee09nh4-OxeFZ-3XezTdafVFN2CgPPBpuD8N9J7QQpnOuVbY2va4c8nDbiiCdsbT6YszbSKbS35WWtsPkLjyiWmf0sj1BvV63gk_S6P8bsfyzPnIj4MyewOPMFNnncYZP4Z6Pz2D3KO-FP4fbabxKZwxZlo5mX_RKs5NReAHNzU7HPvN0eZAqxwlhpqNj33LXOnYRmWZZGzQ_4Ide-vPF9ZVns-XiEod_126wdZeRTyypCl_mg0uRUTnizQs4m02_HxyWucFCaRslVmWnkP0pI6taGYc8kCNAITivuOlkCCIY2wVrlCUSydGAXIa2502veTC1qZuXsBMX0b8G1ljnW2ulEBXCpJy2lM1ZUqvvm6B5AZO15Yefo47GgPkHQTMkaArYJzzuBkn2Ot1AZxiyMwz_coYCPqzRHPAzob0PHT2abMCVBrkuRoWugFcjunevwhQak1RVFdBv4b41l-2ReHGepLh5jXRbyu7N_5j9W3hYU3dhUpKU72Bntbz275HyrMwE7su5nMCD_enxyekk-foveVwG6w
linkProvider	Directory of Open Access Journals
openUrl	ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=Ensuring+General+Data+Protection+Regulation+Compliance+and+Security+in+a+Clinical+Data+Warehouse+From+a+University+Hospital%3A+Implementation+Study&rft.jtitle=JMIR+medical+informatics&rft.au=Riou%2C+Christine&rft.au=El+Azzouzi%2C+Mohamed&rft.au=Hespel%2C+Anne&rft.au=Guillou%2C+Emeric&rft.date=2025-04-17&rft.issn=2291-9694&rft.eissn=2291-9694&rft.volume=13&rft.spage=e63754&rft_id=info:doi/10.2196%2F63754&rft.externalDBID=NO_FULL_TEXT
thumbnail_l	http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/lc.gif&issn=2291-9694&client=summon
thumbnail_m	http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/mc.gif&issn=2291-9694&client=summon
thumbnail_s	http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/sc.gif&issn=2291-9694&client=summon