NA 063

DIN Standards Committee Medicine

Technical Specification [CURRENT]

DIN CEN ISO/TS 14441 ; DIN SPEC 58996:2014-04
Health informatics - Security and privacy requirements of EHR systems for use in conformity assessment (ISO/TS 14441:2013); German version CEN ISO/TS 14441:2013

Title (German)

Medizinische Informatik - Sicherheits- und Datenschutzanforderungen für die Konformitätsprüfung von EGA-Systemen (ISO/TS 14441:2013); Deutsche Fassung CEN ISO/TS 14441:2013




As local, regional and national EHR infostructures develop, electronic health record (HER) systems are being implemented at the many points of care where patients are seen - so called point-of-service (POS) clinical systems. In addition to institutional settings like hospitals, where the systems in various departments are typically integrated into a single health record, smaller single purpose systems such as electronic medical records (EMRs) are also being implemented in physician offices and other non-institutional settings where the sophistication of the systems and the local IT support infrastructure is much less. As countries begin to connect these POS clinical systems to EHR infostructures (or directly exchange clinical information with other POS clinical systems through system-to-system communications), the security and privacy aspects of these systems become much more critical and complex than when the systems operated in a disconnected or 'stand-alone' state. To ensure the required standards are implemented correctly into these systems, so that they will securely interact with EHR infostructures and maintain the privacy of patient information, many countries are implementing certification and conformance testing programs to provide objective evidence of conformity with these requirements. This Technical Specification specifies the security and data protection requirements, harvested from the aforementioned standards and international experiences, which should be in place for conformance testing for interoperable POS clinical systems (for electronic patient data recording) interfacing with EHRs. The body responsible for this Technical Specification is NA 063-07-04 AA "Sicherheit" ("Security") at DIN.

Document: references other documents

Responsible national committee

NA 176-02-04 AA - Security  

Responsible european committee

CEN/TC 251/WG 1 - Enterprise and Information  

Responsible international committee

ISO/TC 215/WG 4 - Security, Safety and Privacy  

Edition 2014-04
Original language German
Price from 178.00 €
Table of contents



Bernd Bösler

Am DIN-Platz, Burggrafenstr. 6
10787 Berlin

Tel.: +49 30 2601-2488
Fax: +49 30 2601-42488

Send message to contact