摘要个人医疗信息的保护、医疗大数据的确权等问题,是开展“互联网+医疗健康”亟待解决的问题.患者作为用户,在“互联网+医疗健康”中享有广泛的数据权利,包括信息使用的知情同意权、删除权、被遗忘权、免于自动化决策权等诸多权利.作者在分析我国较大的20个互联网医疗平台隐私权协议的基础上,发现其存在诸多乱象,如隐私权协议或隐私权条款缺失或不完善、隐私数据被强制使用及隐私数据的共享和转让缺少限制等,可见对于用户个人信息数据的保护十分薄弱.国家应当通过制定强制性的行业标准、建立统一的医疗信息数据平台、将信息安全管理能力作为市场准入的重要指标等方式,完善“互联网+医疗健康”中的个人信息保护制度.

abstractsThe protection of personal medical information and the rights confirmation of medical big data are issues pending solution in the era of" Internet + heahhcare".As customers,patients at large enjoy a wide variety of data rights in the era of "Internet + healthcare",including the right to informed consent,the right to delete,the right to be forgotten,and the right to automate decision-making.Based on the analysis of the privacy protocols of 20 Internet healthcare platforms in China,the authors found such loopholes as lack of privacy protocol or missing/poor privacy clauses,mandatory use of private data and the sharing of private data,as well as lack of restrictions on the transfer.It is evident that the protection of patients' personal data is poor.The state is recommended to improve the personal information protection system in " Internet + healthcare" era by formulating mandatory industry standards,establishing a unified healthcare information data platform,and using information security management capabilities as an important indicator of market access.