HomeAbout MediscanAbout Datasets

Collecting data

We have formal agreements and contracts with a variety of clinical institutions in Eastern Europe. Both municipal and private medical centers provide us with information including MRI, CT and X-ray patient data. We designate specific institutions for the task and coordinate this with the customer if necessary.

Data Preparation Overview

De-Identification according to HIPAA rules

Personal data about each patient is very sensitive information and we treat it with all respect, thus strictly following the rules of data anonymization.

Both U.S. Health Insurance Portability and Accountability Act, or HIPAA, and the European General Data Protection Regulation require that retrospectively and prospectively gathered data should be properly de-identified. Sensitive information includes name, medical record number, date of birth, and other personal data.

We make sure that this information is removed not only from the metadata but also from all images in case it is embedded.

Protected Health Information (PHI)
  • Medical images, records, health plan beneficiary, certificate, social security and account numbers
  • Past, present, or future health or condition of an individual
  • Past, present, or future payment for the provision of healthcare to an individual
  • Every date linked directly to a person, such as date of birth, discharge date, date of death, and administration
Personally Identifiable Information (PII)
  • Identifier
  • Name
  • Address
  • All elements (except years) of dates related to an individual
  • Telephone numbers
  • Fax number
  • E-mail address
  • Social Security number
  • Medical record number
  • Health plan beneficiary number
  • Account number
  • Certificate or license number
  • Any vehicle or other device serial number
  • Device identifiers and serial numbers
  • Web URL
  • Internet Protocol (IP) address
  • Finger or voice print
  • Photographic image
  • Any other characteristic that could uniquely identify the individua