在醫療資訊電子化後,對於資訊主體-病患來說,科技所帶來的便利與效用,亦即龐大資訊儲存以及更強的搜尋能力,將使個人的醫療資訊隱私面臨更大的威脅,個人醫療資訊將會在網路世界裡流通、交換與分享,資訊被非法揭露以及濫用的機會也大爲提昇;不過,從醫療產業的發展來看,醫療資訊電子化可以減少行政成本的浪費,同時增加醫療的品質與效率,也由於醫療資訊電子化所帶來的效益,讓各國政府都投注大量資源來建置相關系統。在醫療的領域,基於醫療服務提供的特性,資訊的主體在資訊收集、使用與電子化的同意行使,其實並沒有很大的選擇權,也因此病患對於其醫療資訊的控制權,並沒有一般資訊來得強大,所以相對來說就必須透過嚴謹的資訊同意與保密機制來維護主體的隱私權。鑒此,本研究將針對美、加兩國醫療資訊隱私之保護機制進行介紹,以做爲我國在進行相關立法時之重要參考。
As the benefits of electronic health information exchange may be found available in emergency procedure, disasters prevention, treatment improvement, medical errors and duplication abatement, tracking for protection, and safety enhancement, many countries make efforts in establishing and advancing national electronic health information exchange system. Like other electronic systems, it holds sensitive personal information which should be protected by rigorous electronic safeguards, and by detailed procedures as well as practices that employees and others with access are required to follow. However, even the most diligently protected electronic system is subject to the risk of a privacy breach. Legal protection and actions to the health information privacy consequently become more and more critical to a country developing the exchange system. In order to have a thorough scenario of the legal framework of the system, this article will introduce the health information privacy law in US and Canada, expecting to provide a reference for legislators in consideration of enacting the regulations in the near future.