%0 Conference Proceedings
%T Usable Privacy and Security in Personal Health Records
%+ Universidad de Murcia
%A Carrión, Inma
%A Fernández-Alemán, Jose, L.
%A Toval, Ambrosio
%Z Part 1: Long and Short Papers
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 13th International Conference on Human-Computer Interaction (INTERACT)
%C Lisbon, Portugal
%Y Pedro Campos
%Y Nicholas Graham
%Y Joaquim Jorge
%Y Nuno Nunes
%Y Philippe Palanque
%Y Marco Winckler
%I Springer
%3 Human-Computer Interaction – INTERACT 2011
%V LNCS-6949
%N Part IV
%P 36-43
%8 2011-09-05
%D 2011
%R 10.1007/978-3-642-23768-3_3
%K Usable privacy
%K usable security
%K PHRs
%K healthcare
%Z Computer Science [cs]Conference papers
%X PHRs (Personal Health Records) store individuals’ personal health information. Access to this data is controlled by the patient, rather than by the health care provider. Companies such as Google and Microsoft are establishing a leadership position in this emerging market. In this context, the need for psychological acceptability in privacy and security protection mechanisms is essential. Any privacy and security mechanism must be acceptable from a usability perspective. This paper presents a study of the privacy policies of 22 free web-based PHRs. Security and privacy characteristics have been extracted according to the ISO/TS 13606-4 standard. In general, quite a good level was observed in the characteristics analyzed. Nevertheless, some improvements could be made to current PHR privacy policies to enhance the management of other users’ data, the notification of changes to the privacy policy to users and the audit of accesses to users’ PHRs.
%G English
%Z TC 13
%2 https://inria.hal.science/hal-01596945/document
%2 https://inria.hal.science/hal-01596945/file/978-3-642-23768-3_3_Chapter.pdf
%L hal-01596945
%U https://inria.hal.science/hal-01596945
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC13
%~ IFIP-INTERACT
%~ IFIP-LNCS-6949