JD Health released a white paper on data security and joined hands with the industry to build a digital medical and health data security ecosystem

On December 29, the “2022 Jingqi Network Security Conference” co-hosted by JD Group and several ecological community partners was successfully held online. With the theme of “New Pattern, New Economy, New Security”, this conference discussed and shared new security scenarios and risks under the background of the new economic pattern, as well as coping strategies and technological innovations of companies in various industries. At the meeting, the “JD Health Data Security White Paper” was officially released. The white paper was jointly compiled by the JD Health Data Security Team and the expert team of the China Electronic Information Industry Development Research Institute (CCID Research Institute).

740 (Li Xin, Vice President of JD Group and General Manager of JD Health Technology Product Department)

Li Xin, vice president of JD.com and general manager of JD.com’s health technology product department, said that under the background of accelerating national health informatization, digital medical and health services are used by more and more users, and personal user privacy and data security issues are becoming public concerns. Focus. In this context, JD Health adheres to the security principle of “data security is the lifeline”, comprehensively builds and improves an independent and controllable big data full life cycle security system, and joins hands with industry partners to build a digital medical and health data security ecosystem to accelerate Realize full-cycle protection of user privacy and data security.

Create a reliable user experience and accelerate the construction of a big data full lifecycle security system

Under the new situation of epidemic prevention and control, Internet medical care is booming, related products and services are continuously optimized, medical service models are constantly innovating, and health and medical data are widely used. At the same time, health and medical data involves a large amount of personal privacy information. Once leaked or illegally used, it will inevitably pose a serious threat to individuals, enterprises, social public interests, and even national security.

As a representative enterprise in the field of new medical and health services, JD Health is accelerating the construction of a big data life cycle security system relying on its own perfect technical capabilities and years of industry experience in serving users. The overall idea is to take “data security” as the core. The four aspects of big data security technology system, security policy system, security organization system, and security operation system realize data lifecycle security covering data collection, transmission and storage, processing, interaction, and distribution.

“At present, JD Health has established a personal health information security management system with digital medical and health service characteristics, and has formed a complete life cycle security management standard process and system, which can fully protect the privacy information security of users.” Li Xin said, JD.com Health adheres to the three security principles of “data security is the lifeline, zero tolerance for security incidents, and sensitive data does not go out”, mainly focuses on business security, data security and basic security management in practice, and continuously builds and improves independent and controllable big data Full life cycle security system.

It is understood that in September 2022, JD Health successfully passed the final audit of the international certification body BSI (British Standards Institution), becoming the first company certified by BSI in the domestic Internet medical field to pass the ISO 27799 personal health information security management system of enterprises. This proves that JD’s health information security management system and privacy information management system have reached international standards.

Under the ISO 27799 standard, JD Health has established a personal health information security management system with health and medical characteristics to provide users with better digital medical and health services while ensuring the privacy information security of healthy users, and become a reliable partner for users .

Share data security governance practices and jointly build a digital medical and health data security ecosystem

With the rapid development of “Internet + medical health”, the application of medical and health data continues to deepen, which has brought a lot of influence to the existing medical and health service model. However, as the country’s basic strategic resources, the security risks and challenges faced by medical and health data have become increasingly prominent, and the country’s supervision of data security in the medical and health industry has become increasingly stringent.

This time, the data security white paper jointly compiled by JD Health and CCID expert team systematically summarizes the current status and trends of my country’s health and medical data applications, comprehensively analyzes the data security risks and challenges in the health and medical industry, and sorts out the “Network Security Law”. “Personal Information Protection Law”, “Data Security Law” and other laws and regulations and relevant regulations, policies, standards and specifications, and elaborate on the needs and key points of data security construction in the healthcare industry.

740

It is worth noting that the “White Paper” starts from “compliance management + risk prevention and control”, builds a data security system that integrates data security management, technology and operations, and provides practical reference for data security governance in the medical and health industry.

On this basis, the “White Paper” also introduces in detail the core concepts, system framework, and construction practices of JD.com’s health data security, and selects five typical scenarios such as security infrastructure, data classification and grading, personal information protection, and data rights management for detailed analysis. The introduction aims to provide practical reference and suggestions for data security construction in the healthcare industry.

“For a long time, JD Health has used technical means to integrate security concepts into the entire business process. We hope to share our experience in data security practices with the industry, and promote the industry to improve the data security system and data security capability evaluation mechanism Construction.” Li Xin said that in the future, JD Health will work with industry colleagues to promote data security governance, and work together to build a digital medical and health data security ecosystem to help accelerate the implementation of “Digital China” and “Healthy China 2030”.

“JD Health Data Security White Paper” download link address: https://3.cn/109kRGK-q

This article is transferred from: https://www.leiphone.com/category/industrynews/Jv7rgZOjvcm9MS5K.html
This site is only for collection, and the copyright belongs to the original author.