Book an appointment with us, or search the directory to find the right lawyer for you directly through the app.
Find out moreThis Edition of Law Update, From Africa to Asia: Legal Narratives of Change and Continuity, takes you on a journey through dynamic markets.
Africa is undergoing a tech-driven transformation, overcoming regulatory challenges while its startup ecosystem thrives. India’s legal framework is evolving rapidly, keeping pace with its expanding economy and diverse business environment.
We also dive into China’s regulatory shifts, particularly how they are shaping investments in the MENA region, and explore Korea’s innovative global partnerships, which are driving advancements in industries across the UAE and beyond.
Read NowThe United Arab Emirates has issued Federal Law No. 2 of 2019, Concerning the Use of the Information and Communication Technology in the Area of Health (“ICT Health Law”). The ICT Health Law applies to all methods and uses of information and communication technology (“ICT”) in the UAE healthcare sector, including in free zones, and comes into force in May 2019.
Under the law, the Ministry of Health & Prevention (“Ministry”) sets out to establish a central electronic health data and information exchange (“HIE”), to facilitate confidential access, collection and exchange of health data and information within the UAE. The local emirate health authorities are empowered to establish the rules, standards and controls for their own electronic data and health information systems, such as the methods of operation, exchange of data and information and their protection, as well as access to and copying of data and information. However, the health authorities in the UAE must join the central HIE, in accordance with the regulations and procedures that are to be specified in the subsequent executive regulations. The executive regulations are to be issued within six months of the publication of this law.
The Ministry, in coordination with the local emirate health authorities, is to develop and implement a national strategic plan concerning the use of ICT in healthcare, as well as setting mandatory procedures for using ICT. One of the goals is to ensure compatibility and interoperability between information systems to procure valid, credible, and accessible health data and information. The executive regulation will further set out the conditions and controls of storing health data and information within the UAE.
The ICT Health Law expressly prohibits handling, transferring or storing of medical records and health information outside the UAE, except where a resolution is passed by the relevant authorities. This may pose a problem for UAE healthcare facilities that have relationships with foreign vendors.
Further, health information and data must be maintained through ICT for a period of 25 years from the last healthcare interaction of the concerned patient; the executive regulations are set to elaborate upon this obligation.
Healthcare providers, health insurers and insurance related services, medical device and pharmaceutical companies, and healthcare technology companies, amongst others, should audit their current practice for compliance with the ICT Health Law.
Should you require any advice concerning the use of Information and Communication Technology in the healthcare sector, we would be happy to assist. In a forthcoming Law Update article, we will expand upon this development.
Key Contacts:
Andrea Tithecott
Partner, Head of Regulatory, Head of Healthcare
a.tithecott@tamimi.com
Martin Hayward
Head of Technology, Media & Telecommunications
m.hayward@tamimi.com
Christina Sochacki
Senior Associate, Healthcare
c.sochacki@tamimi.com
To learn more about our services and get the latest legal insights from across the Middle East and North Africa region, click on the link below.