The exponential growth in the digitisation of services implies the handling and storage of large volumes of data. Businesses and services see data sharing and crossing as an opportunity to improve and produce new business opportunities. The health sector is one area where this proves to be true, enabling better and more innovative treatments. Notwithstanding, this raises concerns regarding personal data being treated and processed. In this paper, we present a patient-centric platform for the secure sharing of health records by shifting the control over the data to the patient, therefore, providing a step further towards data sovereignty. Data sharing is performed only with the consent of the patient, allowing it to revoke access at any given time. Furthermore, we also provide a break-glass approach, resorting to Proxy Re-encryption (PRE) and the concept of a centralised trusted entity that possesses instant access to patients' medical records. Lastly, an analysis is made to assess the performance of the platform's key operations, and the impact that a PRE scheme has on those operations.

翻译：服务的数字化指数级增长意味着大量数据的处理与存储。企业和服务机构将数据共享与交叉视为改善业务并创造新商机的机遇。医疗健康领域正是这一趋势的典型例证，它推动了更优质、更具创新性的治疗方案。然而，这也引发了关于个人数据处理与加工的担忧。本文提出了一种以患者为中心的健康记录安全共享平台，通过将数据控制权交还给患者，进一步迈向数据主权。数据共享仅在患者同意的前提下进行，并允许其随时撤销访问权限。此外，我们还提供了一种紧急访问方案，借助代理重加密（PRE）技术和集中式可信实体概念，该实体可即时访问患者的医疗记录。最后，本文对平台关键操作的性能进行了分析，并评估了PRE方案对这些操作的影响。