Presentation is loading. Please wait.

Presentation is loading. Please wait.

Medical data: privacy, anonymity, and security What can we learn from the furore around the NHS data sharing plans (“care.data”)? Dr Eerke Boiten Director,

Published byJoleen Rice Modified over 8 years ago

Similar presentations

Presentation on theme: "Medical data: privacy, anonymity, and security What can we learn from the furore around the NHS data sharing plans (“care.data”)? Dr Eerke Boiten Director,"— Presentation transcript:

1 Medical data: privacy, anonymity, and security What can we learn from the furore around the NHS data sharing plans (“care.data”)? Dr Eerke Boiten Director, Interdisciplinary Centre for Cyber Security, University of Kent (ISC) 2 10 Dec 2014

2 This talk will consider whether such databases can be created in a way that gives high levels of security as well as respecting privacy of the sensitive medical information contained in them.

3 Integrated medical data process GP data, existing databases (e.g. HES) National medical database of everything Pseudonymised database of everything Shared extracts Section 251 shares Aggregated anonymous open data published

4 Integrated medical data process … with safeguards? GP data, existing databases (e.g. HES) National medical database of everything Pseudonymised database of everything Shared extracts Section 251 shares Aggregated anonymous open data published opt outs; sensitive excl AG HSCIC Audits Resharing None! Inquiries (Partridge) “health purposes” Health Data Guardian

5 Concerns Transparency Security: honeypot, severity: lasting effect Diligence: HSCIC sharing, procedures Pseudonymisation doesn’t work (next slide) Honesty: privacy, HSCIC record, sharing Mixing the uncontroversial and highly controversial purposes!

6 Anonymity, or not Read Codes rich info. David Davis MP: 5 broken noses. Governor Weld in Massachusetts. All those: low probability scenarios. Reversible pseudonym generation. (HES: table held safely by HSCIC.) Pseudo at source would be better? Gender: contraceptives, prostate, HPV vacc. Age: birth, vaccinations, “fall after 75”. Family members: sharing/changing GP. Mum: family member, birth matches pregnancy Conclusion: may need very little other info to re-identify even fully pseudonymised data. Mixed messages (and lobbying?) at European level.

7 Sharing does not work! Auditing now very slowly introduced Deletion: refused; certificates!? On-sharing: not regulated (anyone heard of software license? Transitivity of purpose?); within multiple-purpose organisations? Re-identification “illegal” but [big data profiling: no privacy, no traceability]; penalties?

8 On the horizon Fume cupboard (e.g. model used for census; also EasternARC Big Data) – Controlled access – Controlled output – Sanitised output “Accredited safe haven” – security?! More oversight, more consent, more transparency

9 More? Better? Software engineering, research ethics and data protection legislation provide narratives for regulation: “purpose” before “resource”. (Deliberate confusion with “open data” narrative.) Sampling techniques? How can strong big data fit in with this? More liberal form of fume cupboards possible if we can identify “attacks” better.

10 Thank you Feedback welcome. See https://blogs.kent.ac.uk/eerke/2014/05/29/notjustadatabase for “narrative” https://blogs.kent.ac.uk/eerke/2014/05/29/notjustadatabase

Download ppt "Medical data: privacy, anonymity, and security What can we learn from the furore around the NHS data sharing plans (“care.data”)? Dr Eerke Boiten Director,"

Similar presentations

NIGB Legal requirements for use of personal data in research OnCore UK / NRES Training workshop Ethical Principles relating to consent for use of samples.

NIGB Legal requirements for use of personal data in research OnCore UK / NRES Training workshop Ethical Principles relating to consent for use of samples.
MyGrid Security Issues Simon Miles University of Southampton.

MyGrid Security Issues Simon Miles University of Southampton.
To Halton Youth Service 

To Halton Youth Service 
The Data Linkage Service 1. New service launched in September 2012 Brought together two established data linkage services with over 50 years’ experience.

The Data Linkage Service 1. New service launched in September 2012 Brought together two established data linkage services with over 50 years’ experience.
Centre for Irish and European Security Societal Security R&D” Perspectives, Conclusions and Recommendations from Workshop of July 1st 2010 Purpose of.

Centre for Irish and European Security "Societal Security R&D” Perspectives, Conclusions and Recommendations from Workshop of July 1st 2010 Purpose of.
Informed Consent.

Informed Consent.
(Health) Big Data, privacy and security Eerke Boiten joint UoKent Big Data Event Sep 2014.

(Health) Big Data, privacy and security Eerke Boiten joint UoKent Big Data Event Sep 2014.
Protecting the Privacy of Family Members in Survey and Pedigree Research Jeffrey R. Botkin, MD, MPH University of Utah.

Protecting the Privacy of Family Members in Survey and Pedigree Research Jeffrey R. Botkin, MD, MPH University of Utah.
Ethical Principles and the Practice of Qualitative Research: Insights from a social science research project Professor Lindsay Prior School of Sociology,

Ethical Principles and the Practice of Qualitative Research: Insights from a social science research project Professor Lindsay Prior School of Sociology,
Capturing Sensitive Data & Data Linkage. Capturing Sensitive Data Data Protection Act 1998 (Section 33) – Allows data to be used for research purposes.

Capturing Sensitive Data & Data Linkage. Capturing Sensitive Data Data Protection Act 1998 (Section 33) – Allows data to be used for research purposes.
Information Sharing Options Phil Walker. Outline I have been asked to present a range of options for lawful data sharing. There is unlikely to be one.

Information Sharing Options Phil Walker. Outline I have been asked to present a range of options for lawful data sharing. There is unlikely to be one.
Statistical Disclosure Control Philip Johnston, Information Services Division, NHSNSS ScotPHO training course, 1 April 2011.

Statistical Disclosure Control Philip Johnston, Information Services Division, NHSNSS ScotPHO training course, 1 April 2011.
UTEPComputer Science Dept.1 University of Texas at El Paso Privacy in Statistical Databases Dr. Luc Longpré Computer Science Department Spring 2006.

UTEPComputer Science Dept.1 University of Texas at El Paso Privacy in Statistical Databases Dr. Luc Longpré Computer Science Department Spring 2006.
NHS Databases – The Big Opt Out Ross Anderson Cambridge University and Foundation for Information Policy Research.

NHS Databases – The Big Opt Out Ross Anderson Cambridge University and Foundation for Information Policy Research.
Introduction to the data warehouse labour market and social protection CBSS Frank Robben General Manager Crossroads Bank for Social Security

Introduction to the data warehouse labour market and social protection CBSS Frank Robben General Manager Crossroads Bank for Social Security
Developments on Information Sharing and the Pioneers Mark Golledge Programme Lead – Health and Care Informatics Local Government Association 25 th November.

Developments on Information Sharing and the Pioneers Mark Golledge Programme Lead – Health and Care Informatics Local Government Association 25 th November.
The Nuffield Council on Bioethics Report : The collection, linking and use of data in biomedical research and health care: ethical issues. Martin Richards.

The Nuffield Council on Bioethics Report : The collection, linking and use of data in biomedical research and health care: ethical issues. Martin Richards.
Www.england.nhs.uk Cleveland LMC care.data Hearing your views 15 July 2014.

Cleveland LMC care.data Hearing your views 15 July 2014.
Handling information 14 Standard.

Handling information 14 Standard.
ENABLING DATA LINKAGE TO MAXIMISE THE VALUE OF PUBLIC HEALTH RESEARCH DATA Presentation of findings to the Public Health Research Data Forum University.

ENABLING DATA LINKAGE TO MAXIMISE THE VALUE OF PUBLIC HEALTH RESEARCH DATA Presentation of findings to the Public Health Research Data Forum University.

Similar presentations

Ads by Google