Secure storage and transmission of medical information

Therefore, the following is claimed: 1 . A system, comprising: at least one computing device; program code that, when executed by the at least one computing device, causes the at least one computing device to at least: receive a request from a requesting service for a transmission of health information generated by at least one of a client device or a peripheral device associated with the client device; determine whether at least one compliance rule is satisfied by at least one of the client device or the peripheral device associated with the client device; determine whether consent for the transmission of the health information generated by at least one of the client device or the peripheral device associated with the client device to the requesting service has been provided by a user of the client device, wherein the consent comprises a user input to the client device indicating that the user consents to the transmission of the health information generated by at least one of the client device or the peripheral device associated with the client device to the requesting service; and in response to a determination that the at least one compliance rule is satisfied and that consent has been provided by the user of the client device, causing the health information to be transmitted to the requesting service. 2 . The system of claim 1 , further comprising program code that causes the at least one computing device to at least receive a user password corresponding to the client device, wherein the user password is used to encrypt a cryptographic key prior to the transmission of the health information from the client device to the at least one computing device. 3 . The system of claim 2 , further comprising program code that causes the at least one computing device to at least: decrypt the cryptographic key using at least the user password corresponding to the client device; and encrypt the cryptographic key using a requesting service password corresponding to the requesting service, wherein the requesting service is capable of accessing the cryptographic key using at least the requesting service password. 4 . The system of claim 2 , further comprising program code that causes the at least one computing device to at least encrypt the cryptographic key, as encrypted with the user password, using a requesting service password corresponding to the requesting service, wherein the requesting service is capable of accessing the cryptographic key using at least the requesting service password and the user password. 5 . The system of claim 1 , further comprising program code that causes the at least one computing device to at least, in response to consent not being providing by the user of the client device, obtain consent from the user by causing a display of a user interface in a display of the client device that prompts the user of the client device to provide a password. 6 . The system of claim 1 , wherein the consent being providing by the user of the client device is obtained automatically based at least in part on a role associated with the requesting service and access predefined by the user in association with the role. 7 . The system of claim 1 , wherein the peripheral device comprises at least one biometric sensor. 8 . A non-transitory computer-readable medium embodying a program executable in at least one computing device, comprising code that: enrolls a client device or a peripheral device associated with the client device responsive to the client device or the peripheral device complying with at least one compliance rule; accesses health information received from the client device or the peripheral device as registered in response to a request received from a requesting service for the health information, wherein the health information as received is encrypted according to a cryptographic key; determines whether consent to send the health information to the requesting service has been provided by a user of the client device; and in response to the consent being providing by the user of the client device, cause a transmission of the health information as encrypted to the requesting service. 9 . The non-transitory computer-readable medium of claim 8 , wherein the program further comprises code that receives a user password corresponding to the client device, wherein the user password is used to encrypt the cryptographic key during transmission from the client device to the at least one computing device. 10 . The non-transitory computer-readable medium of claim 9 , wherein the program further comprises code that: decrypts the cryptographic key using at least the user password corresponding to the client device; and encrypts the cryptographic key using a requesting service password corresponding to the requesting service, wherein the requesting service is capable of accessing the cryptographic key using at least the requesting service password. 11 . The non-transitory computer-readable medium of claim 9 , wherein the program further comprises code that encrypts the cryptographic key, as encrypted with the user password, using a requesting service password corresponding to the requesting service, wherein the requesting service is capable of accessing the cryptographic key using at least the requesting service password and the user password. 12 . The non-transitory computer-readable medium of claim 8 , wherein the program further comprises code that, in response to consent not being providing by the user of the client device, obtains consent from the user by causing a display of a user interface in a display of the client device that prompts the user of the client device to provide a password. 13 . The non-transitory computer-readable medium of claim 8 , wherein the consent being providing by the user of the client device is obtained automatically based at least in part on a role associated with the requesting service and access predefined by the user in association with the role. 14 . The non-transitory computer-readable medium of claim 8 , wherein the peripheral device comprises at least one biometric sensor. 15 . A system, comprising: a computing device; program code that, when executed by the computing device, causes the computing device to at least: recognize, at the computing device, a state in which health information is conditionally transmitted to a requesting service, wherein the health information is specific to at least one person who is a user of a client device or a peripheral device from which the health information is acquired; verify, at the computing device, that at least one condition for a transmission of the health information is satisfied, including: determining that at least one compliance rule for transmitting the health information is satisfied; and determining whether consent for the particular transmitting of the health information to the requesting service has been provided, where determining that consent has been provided is based on a communication between the computing device and the client device or peripheral device; and in response to verifying that the at least one condition is satisfied, transmit, at the computing device, the health information to the requesting service. 16 . The system of claim 15 , further comprising program code that causes the at least one computing device to receive, at the computing device, a user password corresponding to the client device, wherein the user password is used to encrypt a cryptographic key used to encrypt the health information prior to the transmission. 17 .