Handling consent across different data channels in healthcare

Consent is now a fundamental part of data gathering and storage. Regulations such as GDPR, CCPA, POPI, and PIPEDA give people more control over what personal data they share, but can create restrictions for organisations obtaining and accessing this information.

Free Whitepaper

Prescribing Privacy: Patient perspectives on health data

In a new research report, Cassie spoke directly to US consumers in order to delve into the heart of consumer trust and confidence in the healthcare system’s ability to protect and uphold data, as well as attitudes toward their own understanding of healthcare data privacy. Download now to understand consumer perceptions of healthcare providers’ commitment to safeguarding data privacy, how data breaches in the news impact their feelings, how they evaluate a healthcare provider for data security, and actions healthcare organisations can take to fortify trust while navigating data privacy.

Submit

UK (+44) USA (+1) Algeria (+213) Andorra (+376) Angola (+244) Anguilla (+1264) Antigua & Barbuda (+1268) Argentina (+54) Armenia (+374) Aruba (+297) Australia (+61) Austria (+43) Azerbaijan (+994) Bahamas (+1242) Bahrain (+973) Bangladesh (+880) Barbados (+1246) Belarus (+375) Belgium (+32) Belize (+501) Benin (+229) Bermuda (+1441) Bhutan (+975) Bolivia (+591) Bosnia Herzegovina (+387) Botswana (+267) Brazil (+55) Brunei (+673) Bulgaria (+359) Burkina Faso (+226) Burundi (+257) Cambodia (+855) Cameroon (+237) Canada (+1) Cape Verde Islands (+238) Cayman Islands (+1345) Central African Republic (+236) Chile (+56) China (+86) Colombia (+57) Comoros (+269) Congo (+242) Cook Islands (+682) Costa Rica (+506) Croatia (+385) Cuba (+53) Cyprus North (+90392) Cyprus South (+357) Czech Republic (+42) Denmark (+45) Djibouti (+253) Dominica (+1809) Dominican Republic (+1809) Ecuador (+593) Egypt (+20) El Salvador (+503) Equatorial Guinea (+240) Eritrea (+291) Estonia (+372) Ethiopia (+251) Falkland Islands (+500) Faroe Islands (+298) Fiji (+679) Finland (+358) France (+33) French Guiana (+594) French Polynesia (+689) Gabon (+241) Gambia (+220) Georgia (+7880) Germany (+49) Ghana (+233) Gibraltar (+350) Greece (+30) Greenland (+299) Grenada (+1473) Guadeloupe (+590) Guam (+671) Guatemala (+502) Guinea (+224) Guinea - Bissau (+245) Guyana (+592) Haiti (+509) Honduras (+504) Hong Kong (+852) Hungary (+36) Iceland (+354) India (+91) Indonesia (+62) Iran (+98) Iraq (+964) Ireland (+353) Israel (+972) Italy (+39) Jamaica (+1876) Japan (+81) Jordan (+962) Kazakhstan (+7) Kenya (+254) Kiribati (+686) Korea North (+850) Korea South (+82) Kuwait (+965) Kyrgyzstan (+996) Laos (+856) Latvia (+371) Lebanon (+961) Lesotho (+266) Liberia (+231) Libya (+218) Liechtenstein (+417) Lithuania (+370) Luxembourg (+352) Macao (+853) Macedonia (+389) Madagascar (+261) Malawi (+265) Malaysia (+60) Maldives (+960) Mali (+223) Malta (+356) Marshall Islands (+692) Martinique (+596) Mauritania (+222) Mayotte (+269) Mexico (+52) Micronesia (+691) Moldova (+373) Monaco (+377) Mongolia (+976) Montserrat (+1664) Morocco (+212) Mozambique (+258) Myanmar (+95) Namibia (+264) Nauru (+674) Nepal (+977) Netherlands (+31) New Caledonia (+687) New Zealand (+64) Nicaragua (+505) Niger (+227) Nigeria (+234) Niue (+683) Norfolk Islands (+672) Northern Marianas (+670) Norway (+47) Oman (+968) Palau (+680) Panama (+507) Papua New Guinea (+675) Paraguay (+595) Peru (+51) Philippines (+63) Poland (+48) Portugal (+351) Puerto Rico (+1787) Qatar (+974) Reunion (+262) Romania (+40) Russia (+7) Rwanda (+250) San Marino (+378) Sao Tome & Principe (+239) Saudi Arabia (+966) Senegal (+221) Serbia (+381) Seychelles (+248) Sierra Leone (+232) Singapore (+65) Slovak Republic (+421) Slovenia (+386) Solomon Islands (+677) Somalia (+252) South Africa (+27) Spain (+34) Sri Lanka (+94) St. Helena (+290) St. Kitts (+1869) St. Lucia (+1758) Sudan (+249) Suriname (+597) Swaziland (+268) Sweden (+46) Switzerland (+41) Syria (+963) Taiwan (+886) Tajikstan (+7) Thailand (+66) Togo (+228) Tonga (+676) Trinidad & Tobago (+1868) Tunisia (+216) Turkey (+90) Turkmenistan (+7) Turkmenistan (+993) Turks & Caicos Islands (+1649) Tuvalu (+688) Uganda (+256) Ukraine (+380) United Arab Emirates (+971) Uruguay (+598) Uzbekistan (+7) Vanuatu (+678) Vatican City (+379) Venezuela (+58) Vietnam (+84) Virgin Islands - British (+1284) Virgin Islands - US (+1340) Wallis & Futuna (+681) Yemen (North)(+969) Yemen (South)(+967) Zambia (+260) Zimbabwe (+263)

UK USA Afghanistan Åland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bonaire, Sint Eustatius and Saba Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos Islands Colombia Comoros Congo Democratic Republic of the Congo Cook Islands Costa Rica Côte d"Ivoire Croatia Cuba Curaçao Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Isle of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati North Korea South Korea Kuwait Kyrgyzstan Lao Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia, The Former Yugoslav Republic of Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Réunion Romania Russian Federation Rwanda Saint Helena, Ascension and Tristan da Cunha Saint Kitts and Nevis Saint Lucia Saint Pierre and Miquelon Saint Vincent and The Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and The South Sandwich Islands Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania Thailand Timor-Leste Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates US Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Vietnam British Virgin Islands US Virgin Islands Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe Kosovo

By downloading this case study, you acknowledge that GlobalData may share your information with Cassie and that your personal data will be used as described in their Privacy Policy Submit Visit our Privacy Policy for more information about our services, how GlobalData may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Thank you.

You will receive an email shortly. Please check for download the Whitepaper.

Related Company Profiles

European Union

Syrenis Ltd

View all

Complications can arise in this process, especially in healthcare. Due to interactions across numerous touchpoints, the same individual can have different profiles across multiple systems. These different profiles may lead to difficulties in determining the identity of a patient and accessing their medical data. Further obstacles can occur when consent is delegated to a carer or guardian, and is not directly given by the patient.

Yet despite the challenges, it is still possible to build a unified data profile of an individual with their full permission.

Cassie is a consent and preference management platform that manages over 1.2 billion customer records for large organisations handling high-volume, complex data around the world. It allows businesses to manage consent centrally and comply with global data privacy regulations. We spoke to Cassie CEO Glenn Jackson to learn more.

How would you best explain the importance of consent for data?

Glenn Jackson: Data is the most important digital asset that’s out there at the moment. And because of global regulation, the consent to use personal information is critical in most of the developed world. That is because information about me is valuable. And therefore, it should be up to me whether I share that data with an organisation. It’s up to me, as an individual, to give consent to an organisation, which can then use it as I have chosen.

But that consent also builds trust with the brand as well. So, if I give an organisation consent to use my data, that’s fine. If I don’t, then they shouldn’t be using it. It’s vital that the trust in the use of my data is managed properly.

Why is consent particularly important in healthcare?

GJ: If you think about the importance of data, there are degrees of information that you share with people. One example might be, I’m going to track you on a website. Another thing is where I’m going to share my personal private health information with you. That is personal to me, and I do not want you to share that.

Healthcare has always been highly regulated. That is because of the type of data that healthcare organisations are storing, and therefore making sure that’s super secure and not shared without my consent is key.

We know that online scamming happens and has increased during the pandemic. That has scared people, because parties are suggesting that they know information about them.

In the healthcare context, it is really important that you know that your data is safe and is not being made available more broadly. So, it’s the importance of the data that healthcare organisations are holding and therefore the consent to use that data that needs to be rock solid.

And in healthcare, is consent only important in relation to medical treatment?

GJ: No. Consent is for every piece of data that will ever be collected and stored. Certain pieces of data are more important because it is about an individual’s health, compared with the ability to track people’s online activities. So, it’s all important, it’s all covered by regulations. But some things carry more weight than others.

What are some of the issues with hierarchies of consent?

GJ: As soon as you get into healthcare, you’ve got to look at the patients you’re dealing with. Plus, I could be dealing with a minor, my son or daughter might be young, they might need me to give their consent. It might be that you’re disabled, and you have a carer. There are lots of relationships between individuals where consent might need to be granted on behalf of another person.

It then becomes quite complicated about how consents can be identified. And then there may also be occasions when consent needs to be withdrawn or removed.

A carer might not be with their patient, or a dependent might live away from them. And therefore, we’ve got to find a way of being able to identify that delegated consent across a digital platform. So, it’s more complicated in healthcare than it would be maybe in retail or other organisations.

If I give consent for somebody to receive information about my treatments, they might draw conclusions from that. So, it’s really important that I can control that. And security is essential, particularly because there might be at least a three-way relationship now.

What are some of the challenges with regulations and their impact on the use of personal data?

GJ: If you think about all the touchpoints where we give up data. The Healthcare environment tends to consist of larger organisations. They may have interactions between a patient, a healthcare provider, a pharmaceutical company and a healthcare organisation. There are so many interactions there that are going on all over the place. It’s important to make sure that consent is shared across all of that data. And that these consents are easily identifiable and up to date so that they comply with all the necessary regulations.

So, consent to use that personal data is collected from all those different touchpoints. It’s stored, and all the organisations involved need to make sure that they understand the consent that the individual data subject has given.

Because to comply with regulations, it’s important to provide an audit trail to show that all the different departments within an organisation are complying with the requests of the data subject.

Regulation is not there to inhibit business, it’s there to essentially protect the data subject from misuse of their personal data. But the bigger the organisation, the harder it gets to do that. Because there are so many different touchpoints that you’ve got to interact with. That’s why it’s so essential to be able to see a single version of the truth in relation to a data subject’s consent.

How can Cassie help with all of this?

GJ: What Cassie actually does is in three main components. We allow data to be collected from all touchpoints. That might be a website, a mobile app, it might be within your existing applications where you’re collecting all this information. And all of that comes into one central auditable, single source of the truth.

And that’s really important. Because a big organisation might have four or five different systems, and the same individual might appear in any or all four or five different systems. We’re matching it so that we know that an individual that comes in via an app can be identified as the same individual that might login to a website, or fill a form out or whatever it might be. We’re matching that all together.

Secondly, I’ve got to be able to audit where all that data is coming from. Who’s changed it? Why have they changed it? Who, what, why, when and where, all of that information about the auditability of that data. And then the systems that need to use that data need to have access to it, so they can use it compliantly.

Then we push that data downstream to all of the other solutions that can use it, whether that’s the big CRM platforms like Veeva in healthcare, Salesforce, or Marketing Cloud, or all of those big platforms that are consuming that data. Cassie does that in near real-time.

How does Cassie ensure consent and compliance with data regulations?

GJ: Typically, Cassie tends to work with clients who’ve got large numbers of data subjects – that could be a customer, patient or employee, it can be anything that one can attach consent to.

Cassie sits in the cloud. The way I think of it is, it’s got several listeners – that’s API handlers that clients can communicate with or Cassie provides embedded code that clients can drop onto a website or digital form. These are all methods of collecting data from wherever our client wants. So, we can collect lots of compliant data once the data subject has given consent to that data we’re collecting. Then Cassie holds this in a centralised cloud database.

Remember, compliance is about where I reside. If I reside in the European Union, I’m covered by GDPR. If I reside in South Africa I’m covered by POPI. If I reside in California, I’m under CCPA. Collection and storage of data needs to be specific to the region I live in. And then the rules on how you use data needs to be specific to the region that I live in.

We give healthcare organisations the confidence that the data they’re using is compliant because Cassie is in the middle of their digital estate. Cassie enables our clients to say: ‘This data is compliant, we have consent for this.’ And that gives the client confidence to use it.

Free Whitepaper

Prescribing Privacy: Patient perspectives on health data

In a new research report, Cassie spoke directly to US consumers in order to delve into the heart of consumer trust and confidence in the healthcare system’s ability to protect and uphold data, as well as attitudes toward their own understanding of healthcare data privacy. Download now to understand consumer perceptions of healthcare providers’ commitment to safeguarding data privacy, how data breaches in the news impact their feelings, how they evaluate a healthcare provider for data security, and actions healthcare organisations can take to fortify trust while navigating data privacy.

By Cassie

Submit

UK (+44) USA (+1) Algeria (+213) Andorra (+376) Angola (+244) Anguilla (+1264) Antigua & Barbuda (+1268) Argentina (+54) Armenia (+374) Aruba (+297) Australia (+61) Austria (+43) Azerbaijan (+994) Bahamas (+1242) Bahrain (+973) Bangladesh (+880) Barbados (+1246) Belarus (+375) Belgium (+32) Belize (+501) Benin (+229) Bermuda (+1441) Bhutan (+975) Bolivia (+591) Bosnia Herzegovina (+387) Botswana (+267) Brazil (+55) Brunei (+673) Bulgaria (+359) Burkina Faso (+226) Burundi (+257) Cambodia (+855) Cameroon (+237) Canada (+1) Cape Verde Islands (+238) Cayman Islands (+1345) Central African Republic (+236) Chile (+56) China (+86) Colombia (+57) Comoros (+269) Congo (+242) Cook Islands (+682) Costa Rica (+506) Croatia (+385) Cuba (+53) Cyprus North (+90392) Cyprus South (+357) Czech Republic (+42) Denmark (+45) Djibouti (+253) Dominica (+1809) Dominican Republic (+1809) Ecuador (+593) Egypt (+20) El Salvador (+503) Equatorial Guinea (+240) Eritrea (+291) Estonia (+372) Ethiopia (+251) Falkland Islands (+500) Faroe Islands (+298) Fiji (+679) Finland (+358) France (+33) French Guiana (+594) French Polynesia (+689) Gabon (+241) Gambia (+220) Georgia (+7880) Germany (+49) Ghana (+233) Gibraltar (+350) Greece (+30) Greenland (+299) Grenada (+1473) Guadeloupe (+590) Guam (+671) Guatemala (+502) Guinea (+224) Guinea - Bissau (+245) Guyana (+592) Haiti (+509) Honduras (+504) Hong Kong (+852) Hungary (+36) Iceland (+354) India (+91) Indonesia (+62) Iran (+98) Iraq (+964) Ireland (+353) Israel (+972) Italy (+39) Jamaica (+1876) Japan (+81) Jordan (+962) Kazakhstan (+7) Kenya (+254) Kiribati (+686) Korea North (+850) Korea South (+82) Kuwait (+965) Kyrgyzstan (+996) Laos (+856) Latvia (+371) Lebanon (+961) Lesotho (+266) Liberia (+231) Libya (+218) Liechtenstein (+417) Lithuania (+370) Luxembourg (+352) Macao (+853) Macedonia (+389) Madagascar (+261) Malawi (+265) Malaysia (+60) Maldives (+960) Mali (+223) Malta (+356) Marshall Islands (+692) Martinique (+596) Mauritania (+222) Mayotte (+269) Mexico (+52) Micronesia (+691) Moldova (+373) Monaco (+377) Mongolia (+976) Montserrat (+1664) Morocco (+212) Mozambique (+258) Myanmar (+95) Namibia (+264) Nauru (+674) Nepal (+977) Netherlands (+31) New Caledonia (+687) New Zealand (+64) Nicaragua (+505) Niger (+227) Nigeria (+234) Niue (+683) Norfolk Islands (+672) Northern Marianas (+670) Norway (+47) Oman (+968) Palau (+680) Panama (+507) Papua New Guinea (+675) Paraguay (+595) Peru (+51) Philippines (+63) Poland (+48) Portugal (+351) Puerto Rico (+1787) Qatar (+974) Reunion (+262) Romania (+40) Russia (+7) Rwanda (+250) San Marino (+378) Sao Tome & Principe (+239) Saudi Arabia (+966) Senegal (+221) Serbia (+381) Seychelles (+248) Sierra Leone (+232) Singapore (+65) Slovak Republic (+421) Slovenia (+386) Solomon Islands (+677) Somalia (+252) South Africa (+27) Spain (+34) Sri Lanka (+94) St. Helena (+290) St. Kitts (+1869) St. Lucia (+1758) Sudan (+249) Suriname (+597) Swaziland (+268) Sweden (+46) Switzerland (+41) Syria (+963) Taiwan (+886) Tajikstan (+7) Thailand (+66) Togo (+228) Tonga (+676) Trinidad & Tobago (+1868) Tunisia (+216) Turkey (+90) Turkmenistan (+7) Turkmenistan (+993) Turks & Caicos Islands (+1649) Tuvalu (+688) Uganda (+256) Ukraine (+380) United Arab Emirates (+971) Uruguay (+598) Uzbekistan (+7) Vanuatu (+678) Vatican City (+379) Venezuela (+58) Vietnam (+84) Virgin Islands - British (+1284) Virgin Islands - US (+1340) Wallis & Futuna (+681) Yemen (North)(+969) Yemen (South)(+967) Zambia (+260) Zimbabwe (+263)

UK USA Afghanistan Åland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bonaire, Sint Eustatius and Saba Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos Islands Colombia Comoros Congo Democratic Republic of the Congo Cook Islands Costa Rica Côte d"Ivoire Croatia Cuba Curaçao Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Isle of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati North Korea South Korea Kuwait Kyrgyzstan Lao Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia, The Former Yugoslav Republic of Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Réunion Romania Russian Federation Rwanda Saint Helena, Ascension and Tristan da Cunha Saint Kitts and Nevis Saint Lucia Saint Pierre and Miquelon Saint Vincent and The Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and The South Sandwich Islands Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania Thailand Timor-Leste Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates US Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Vietnam British Virgin Islands US Virgin Islands Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe Kosovo

By downloading this case study, you acknowledge that GlobalData may share your information with Cassie and that your personal data will be used as described in their Privacy Policy Submit Visit our Privacy Policy for more information about our services, how GlobalData may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Thank you.

You will receive an email shortly. Please check for download the Whitepaper.

Sign up for our daily news round-up!

Give your business an edge with our leading industry insights.

Sign up