TOPIC : Toolkit for assessing and reducing cyber risks in hospitals and care centres to protect privacy/data/infrastructures
|Publication date:||27 October 2017|
|Focus area:||Boosting the effectiveness of the Security Union (SU)|
|Types of action:||RIA Research and Innovation action|
|DeadlineModel: Opening date:||single-stage 07 November 2017||Deadline:||24 April 2018 17:00:00|
|Time Zone : (Brussels time)|
Topic DescriptionSpecific Challenge:
Digital technologies such as Big data, Internet of Things, Robotics, Artificial Intelligence, High Performance Computing, Cloud and Cybersecurity offer new opportunities to transform healthcare systems and delivery, Connected medical devices, in particular if linked to Clinical Information Systems, can bring increased patient safety and efficiency into healthcare system(s). However, ICT infrastructures and data have become critical for the functioning of the hospitals and care systems and due to increasing connectivity, the exposure to risks of cyber-crime is constantly increasing. Healthcare ICT infrastructures are now considered to be part of the Critical Information Infrastructure. Cyberattacks are a potential danger to the safety of patients and to the privacy of sensitive health data.Scope:
Development and implementation of innovative methods, tools, guidelines or best practices addressing the need for cybersecurity in hospitals including remote care and homecare settings e.g. for assessing risks and vulnerabilities of hospitals w.r.t cyberattacks; innovative cybersecurity measures; identification/authentication systems within hospitals taking into account cross-border requirements and usability; addressing cybersecurity in the whole lifecycle of a medical device including hardware with embedded software, such as e.g. pacemakers, …); solutions addressing the need for cybersecurity certification of products/devices and services in the health and care domain; standards for security-by-design covering the whole lifecycle of eHealth applications; cybersecurity in remote healthcare provisions including homecare settings and in IT infrastructures supporting integrated care; secure information sharing between healthcare organisations (including cross border); security for cloud solutions supporting healthcare services; cybersecurity for Internet of Things (IoT) components supporting healthcare organisations in Europe.
The Commission considers that proposals requesting a contribution from the EU of between EUR 3 and 5 million would allow this specific challenge to be addressed appropriately. Nonetheless, this does not preclude submission and selection of proposals requesting other amounts.
Proposals under this topic may be subject to security scrutiny if they could potentially lead to security-sensitive results that should be classified (see guide for classification).Expected Impact:
The proposal should provide appropriate indicators to measure its progress and specific impact in the following areas:
- Improved security of Health and Care services, data and infrastructures;
- Less risk of data privacy breaches caused by cyberattacks;
- Increased patient trust and safety.
Topic conditions and documents
1. Eligible countries: described in Annex A of the Work Programme.
A number of non-EU/non-Associated Countries that are not automatically eligible for funding have made specific provisions for making funding available for their participants in Horizon 2020 projects. See the information in the Online Manual.
Proposal page limits and layout: please refer to Part B of the proposal template in the submission system below.
- Evaluation criteria, scoring and thresholds are described in Annex H of the Work Programme.
- Submission and evaluation processes are described in the Online Manual.
4. Indicative time for evaluation and grant agreements:
Information on the outcome of evaluation (single-stage call): maximum 5 months from the deadline for submission.
Signature of grant agreements: maximum 8 months from the deadline for submission.
5. Proposal templates, evaluation forms and model grant agreements (MGA):
Research and Innovation Action:
6. Additional provisions:
Members of consortium are required to conclude a consortium agreement, in principle prior to the signature of the grant agreement.
7. Open access must be granted to all scientific publications resulting from Horizon 2020 actions.
Where relevant, proposals should also provide information on how the participants will manage the research data generated and/or collected during the project, such as details on what types of data the project will generate, whether and how this data will be exploited or made accessible for verification and re-use, and how it will be curated and preserved.
Open access to research data
The Open Research Data Pilot has been extended to cover all Horizon 2020 topics for which the submission is opened on 26 July 2016 or later. Projects funded under this topic will therefore by default provide open access to the research data they generate, except if they decide to opt-out under the conditions described in Annex L of the Work Programme. Projects can opt-out at any stage, that is both before and after the grant signature.
Note that the evaluation phase proposals will not be evaluated more favourably because they plan to open or share their data, and will not be penalised for opting out.
Open research data sharing applies to the data needed to validate the results presented in scientific publications. Additionally, projects can choose to make other data available open access and need to describe their approach in a Data Management Plan.
Projects need to create a Data Management Plan (DMP), except if they opt-out of making their research data open access. A first version of the DMP must be provided as an early deliverable within six months of the project and should be updated during the project as appropriate. The Commission already provides guidance documents, including a template for DMPs. See the Online Manual.
Eligibility of costs: costs related to data management and data sharing are eligible for reimbursement during the project duration.
The legal requirements for projects participating in this pilot are in the article 29.3 of the Model Grant Agreement.
8. Additional documents:
1. Introduction WP 2018-20
5. Introduction to Leadership in enabling and industrial technologies (LEITs) WP 2018-20
5i. Information and communication technologies (ICT) WP 2018-20
8. Health, demographic change and well-being WP 2018-20
14. Secure societies – protecting freedom and security of Europe and its citizens WP 2018-20
18. Dissemination, Exploitation and Evaluation WP 2018-20
LEARs, Account Administrators or self-registrants can publish partner requests for open and forthcoming topics after logging into the Participant Portal.
To access the Electronic Submission Service of the topic, please select the type of action that is most relevant to your proposal from the list below and click on the 'Start Submission' button. You will then be asked to confirm your choice of the type of action and topic, as these cannot be changed in the submission system. Upon confirmation you will be linked to the correct entry point.
To access existing draft proposals for this topic, please login to the Participant Portal and select the My Proposals page of the My Area section.
|Type of Action||Research and Innovation action [RIA]|
|Topic||Toolkit for assessing and reducing cyber risks in hospitals and care centres to protect privacy/data/infrastructures - SU-TDS-02-2018|
|Guidance on proposal submission:||H2020 online manual|
H2020 Online Manual is your guide on the procedures from proposal submission to managing your grant.
Participant Portal FAQ – Submission of proposals.
National Contact Points (NCP) - contact your NCP for further assistance in your national language(s).
Research Enquiry Service – ask questions about any aspect of European research in general and the EU Research Framework Programmes in particular.
Enterprise Europe Network – contact your EEN national contact for advice to businesses with special focus on SMEs. The support includes guidance on the EU research funding.
IT Helpdesk - contact the Participant Portal IT helpdesk for questions such as forgotten passwords, access rights and roles, technical aspects of submission of proposals, etc.
European IPR Helpdesk assists you on intellectual property issues
Ideal-IST partner search facility
CEN and CENELEC, the European Standards Organisations, advise you how to tackle standardisation in your project proposal. Contact CEN-CENELEC Research Helpdesk at firstname.lastname@example.org
Partner Search Services help you find a partner organisation for your proposal.