Home Zhiyun Health Joins 'Self-discipline Covenant on Cyber Data Security in Healthcare' to Strengthen Data Protection as Core Business Priority

Zhiyun Health Joins 'Self-discipline Covenant on Cyber Data Security in Healthcare' to Strengthen Data Protection as Core Business Priority

Nov 20, 2021 13:02 CST Updated 13:02

To implement the spirit of President Xi Jinping’s congratulatory letter to the inaugural China 5G+ Industrial Internet Conference, seize new opportunities in the development of the digital economy, and further advance the integrated development of 5G and the industrial internet, the 2021 China 5G+ Industrial Internet Conference was held in Wuhan, Hubei Province, on November 19, 2021. The conference was hosted by the Ministry of Industry and Information Technology (MIIT) and the People’s Government of Hubei Province, and organized by entities including the News and Publicity Center of MIIT and the China Academy of Information and Communications Technology (CAICT). At the Forum on Digital Transformation and Data Security in Healthcare, Zhongnan Hospital of Wuhan University, Wuhan Central Hospital, Yunnan Baiyao Group,Eighty-five organizations and enterprises, including Zhiyun Health, jointly signed the "Self-Regulatory Convention on Network Data Security in Medical and Healthcare" (hereinafter referred to as the "Self-Regulatory Convention")., by fulfilling the requirements of the "Self-Discipline Convention," enhance data security assurance capabilities and foster a healthy, trustworthy, and secure cybersecurity ecosystem for the medical and healthcare sector.


图片1.png 

Representative of Zhiyun Health Technology Group (8th from the right) attends the signing ceremony


The importance of data security is becoming increasingly prominent in the internet era. Big data in health and healthcare, involving highly sensitive information such as personal details and health records, has become a crucial foundational strategic resource for the nation. In recent years, national regulatory authorities have successively introduced relevant policies to accelerate the legislative process, and China’s legal and regulatory framework for data security is gradually being improved. Data security protection has become a significant issue facing socio-economic development.

 

As the “Chinese model” for digital chronic disease management, Zhiyun Health has always treated data security as its corporate lifeline while building health services for patients with chronic conditions.In terms of security qualifications, Zhiyun Health has obtained the Level 3 Certification for Classified Protection of Cybersecurity. At the organizational level, Zhiyun Health proactively applied to join the “Zhuoxin Big Data Initiative,” led by the China Academy of Information and Communications Technology (CAICT), and became a member of its second cohort, contributing to the advancement of industry data security. Meanwhile, Zhiyun Health will also participate in the development of the CAICT’s Blue Book on Data Security Management System, actively sharing its accumulated expertise in data security with the industry.

 

In terms of daily data security governance,Zhiyun Health: “Making Data Usage Safer”At the corporate strategic level, a Data Security Committee has been established to formulate data security governance strategies and policies. The Security Department and the Big Data Department jointly drive the implementation of data security governance initiatives, such as classifying and grading data, customizing policies for different data levels, achieving industry-standard medical data de-identification, and ensuring the security of data flows throughout the entire lifecycle. During the continuous operation of user data, business data, and corporate data, we achieve efficient data utilization while maintaining robust control over data risks.This voluntary application to join the "Self-Discipline Convention" also demonstrates Zhiyun Health's high level of self-discipline in data security protection.

 

It is understood that entities joining the Self-Discipline Convention will strictly fulfill their responsibilities and obligations for healthcare network data security across five key areas: institutional management, data classification and grading, security compliance assessment, emergency response, and handling of reports. Zhiyun Health will continue to increase its innovative investments in data security governance, ensuring robust protection of both individual user data and platform data, while further promoting the refinement of data standards and the advancement of data security infrastructure within the internet-based chronic disease management industry.Ultimately delivering more reassuring, higher-quality health services to the vast population of chronic disease patients in China.

 

Introduction to the “Self-Discipline Convention”

In November 2020, under the guidance of the relevant industry regulatory authorities, the Internet Medical and Health Working Committee of the Internet Society of China released the Self-Regulatory Convention. This initiative aims to guide signatory entities in continuously enhancing their capabilities for securing medical and health network data, conducting inventory and classification grading of medical and health network data assets, promoting the deployment of differentiated security safeguards across all stages of the data lifecycle, and establishing internal institutional norms and workflows for compliance assessment of medical and health network data security.