Privacy and Health Research
From:
William W. Lowrance, Ph.D.
The following principles are recommended for organizations that conduct,
sponsor, or regulate health research involving personally identifiable data.
They can be transposed into professional guidelines, standard operating
principles, regulations, or laws. Detailed criteria and procedures should be
established that are specific to the context.
- Overall in health research, cultivate an atmosphere of respect for
the privacy of the people whose health experience is being studied.
- Collect or use personally identifiable data only if the research is
worthwhile and identifiability is required for scientific reasons.
- Urge Institutional Review Boards and other ethics review bodies to
become fully engaged with the privacy, confidentiality, and security aspects of
subject protection, in secondary research on data as well as in direct
experimentation.
- Respect such standard fair-use practices as announcing the existence
of data collections, allowing data-subjects to review data about themselves,
and the like. If for scientific reasons exceptions have to be made to normal
practice, this should be discussed as part of the informed consent process
before the study starts.
- Attend sensitively to informing data-subjects and gaining informed
consent.
- Safeguard personal identifiers as close to the point of original data
collection as possible.
- Enforce a policy of "No access to personally identifiable
information" as the default— then base exceptional access on
need-to-know.
- Generally limit the cordon-of-access to personally identifiable data.
Allow access for formally justified research uses and to appropriate
researchers. Maintain and monitor access "audit trails."
- Remove data-subjects' personal identifiability as thoroughly as is
compatible with research needs. If key-coding, aggregating, or otherwise
removing personally identifying information, do so with adequate rigor.
- Maintain proper physical safeguards and cybersecurity measures.
Periodically challenge them, to test their adequacy.
- Develop policies on seeking or allowing secondary use of personally
identifiable data, and on the associated conditions and safeguards.
- Before either (a) transferring data to other researchers or
organizations, or (b) using data for new purposes, make conscientious decisions
as to whether to proceed and what the privacy protections should be. Then if
proceeding, implement appropriate protections.
- Sensitize, train, and certify all personnel who handle personally
identifiable data or supervise those who do. Make data stewardship
responsibilities clear. Maintain internal and external accountability.
Comments/suggestions about the HHS Data Council web pages should
be directed to the Data Council Web
Master.
Return to the Data Council home page .
Last updated 5/27/97.