# Other regulations and laws impacting use of health data In addition to general data legislation, there may be other laws, policies or regulations that impact governance of health data. For example: * National laws protecting sensitive data about patients such as the [United States' Health Insurance Portability and Accountability Act (HIPAA) regulations](https://www.hhs.gov/hipaa/index.html) or EU’s European Medicine Agency (EMA) [Clinical Trials Regulation](https://www.ema.europa.eu/en/human-regulatory/research-development/clinical-trials/clinical-trials-regulation). * In Europe, some countries are bolstering data protection requirements with a ‘secondary use of health data’ law that specifically governs the conditions for sharing of health data beyond their primary uses. The Towards a European Health Data Space body is also advocating that [health data is sufficiently unique that it requires its own governance legislation](https://tehdas.eu/news/tehdas-analysis-health-data-needs-dedicated-eu-regulation/). * Data strategies defining data governance principles at the national, regional and local levels, such as the [UK National Data Strategy](https://www.gov.uk/government/publications/uk-national-data-strategy/national-data-strategy). * Broader laws on how data should be collected, used and shared, such as digital economy, confidentiality and competition laws. **Key questions to ask:** * Are there any other applicable laws, policies or regulations that may impact the access, use or sharing of health data between third parties? * To what extent is there a data policy or strategy for your jurisdiction, including data access, use and sharing? * Is the country a member of any international organisation, policies or frameworks that promote a specific type of data collection, use and sharing? For example, [the Nagoya Protocol on Access and Benefit Sharing](https://www.gov.uk/guidance/abs). **Useful resources:** * The Canadian Institute for Health Information’s [Health data and information governance and capability framework](https://www.cihi.ca/sites/default/files/document/health-data-info-governance-capability-framework-toolkit-en.pdf). * The ODI’s Data landscape playbook has a play on [assessing the regulatory and ethical context of data access initiatives](https://open-data-institute.gitbook.io/data-landscape-playbook/play-three-assess-the-policy-regulatory-and-ethical-context/understand-the-regulatory-context-of-the-initiative). * The [WHO Health data governance summit report](https://cdn.who.int/media/docs/default-source/world-health-data-platform/events/health-data-governance-summit/preread-3-who-data-governance-summit_data-governance-of-health-data.pdf?sfvrsn=ffbd4a33_10) includes data governance best practices. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://open-data-institute.gitbook.io/data-governance-playbook/play-seven-assessing-the-legal-regulatory-and-policy-context-for-sharing-health-data/other-regulations-and-laws-impacting-use-of-health-data.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.