Encouraging access to confidential research data

Slides:



Advertisements
Similar presentations
Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
Advertisements

Eurostat T HE E UROPEAN PROCESS OF ENHANCING ACCESS TO E UROSTAT DATA A LEKSANDRA B UJNOWSKA E UROSTAT.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
Archives as a market regulator, or how can archives connect supply and demand? Laurence Horton, Alexia Katsanidou International Data Infrastructures GESIS.
THE WHITE PAPER ON SPORT THE EU AND SPORT: MATCHING EXPECTATIONS.
This time it’s personal: consumerising records management
Implementation of the CoP in SLOVENIA Cooperation with data users Genovefa RUŽIĆ Deputy Director-General.
Archiving for legal purposes How to implement the new Belgian legislation to destroy physical invoices and use an electronic archive.
The European Data Protection Regulation and research Graham Love Chief Executive Health Research Board 1.
Data-Sharing and Governance Consultation ANALYSIS OF RESPONSES.
The Special Licence model for access to more detailed micro data IASSIST 2006 Thursday 25 May Karen Dennison UK Data Archive.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
Eurostat M ODES OF ACCESS TO EU MICRODATA IN THE NEW LEGAL FRAMEWORK A LEKSANDRA BUJNOWSKA E UROSTAT S TATISTICAL OFFICE OF THE E UROPEAN U NION.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Vigdis Kvalheim Norwegian Social Science Data Services (NSD) New Legal Challenges - New EC Privacy Regulation Data Preservation and Data Sharing in danger?
Privacy Codes of Conduct as a self- regulatory approach to cope with restrictions on transborder data flow Dr. Anja Miedbrodt Exemplified with the help.
Unsolicited Commercial Meeting of Oftel Internet Forum 22 July 1999 EU Distance Selling Directive provisions on unsolicited .
Safe Centre Network Need for Safe Centre to enrich European Research Maurice Brandt (Destatis) and David Schiller (IAB) Work session on statistical data.
Europe's work in progress: quality of mHealth Pēteris Zilgalvis, J.D., Head of Unit, Health and Well-Being, DG CONNECT Voka Health Community 29 September.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
Research & Economic Development Office of Grants and Contracts Administration Data Security Presented by Debbie Bolick September 24, 2015.
Data Protection Principles as Basic Foundation for Data Protection in EU/EEA Introduction to Data Protection Theory Seminar - AFIN Stephen.
Privacy and Data Protection in e-Communications Sector Legislation, Codes of Practice and Standards Privacy and Data Protection in e-Communications Sector.
Joint UNECE/Eurostat work session on statistical data confidentiality October 2015 Helsinki, Finland Circle of trust Maurice Brandt DESTATIS.
A solid privacy and security approach Alf Moens, Corporate Security Officer SURF Evelijn Jeunink, Legal adviser, Corporate Privacy Officer SURF.
Data protection—training materials [Name and details of speaker]
Sharing Information Legally Lindsay Ould London Borough of Lewisham.
E-C OMMERCE : T HE E -C ONSUMER AND THE ATTACKS AGAINST THE PERSONAL DATA Nomikou Eirini Attorney at Law, Piraeus Bar Association Master Degree in Web.
© CENTER FOR INFORMATION TECHNOLOGY SERVICES UNIVERSITY OF OSLO USIT Page 1 Re: Study on the privacy issues arising with the public pan-European White.
New Data Access Arrangements – The Experiences in Germany Stefan Bender (Deutsche Bundesbank) Claudia Oellers (German Data Forum) Cross National.
Laurence Horton, Alexia Katsanidou International Data Infrastructures
Brussels Privacy Symposium on Identifiability
Access to European Statistical System microdata
Industry 4.0 – New ways of cooperative working – are we prepared?
The future of data protection: General Data Protection Regulation
Brussels Privacy Symposium on Identifiability
Development of UK Virtual Microdata Laboratory
Providing Access to Your Data: Handling sensitive data
GDPR – Legal Aspects Desislava Krusteva, Attorney-at-Law, CIPP/E
GDPR Awareness and Training Workshop
Mohamed Coulibaly, Francine Picard, Carin Smaller
General Data Protection Regulation
General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.
Threats and Challenges to Data Protection and Privacy :-
General Data Protection Regulation: Turning the black into white
Legal, political and methodological issues in confidentiality in the ESS Maria João Santos, Jean-Marc Museux Eurostat.
Bob Siegel President Privacy Ref, Inc.
GENERAL DATA PROTECTION REGULATION (GDPR)
General Data Protection Regulation
Privacy & Access to Information
Introduction to GDPR 09/11/2018.
GDPR and paper records Why it’s not all cyber and fines Gary Shipsey
G.D.P.R General Data Protection Regulations
The GDPR and research data
Tracking the effectiveness of RDM training
Public procurement oversight
Data Archives and the ethics of Research Data

General Data Protection Regulation
by Oliver Watteler (GESIS-ZA) CESSDA Expert Seminar, Athens (GR) 2006
What is the Data Protection Act (DPA)? 1998
Is Data Protection a Fundamental Right Protecting the Individual?
Marc Debusschere, Statistics Belgium
GDPR – General Data Protection Regulation
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Student Privacy in the age of big data
EU Data Protection Legislation
Access to European microdata for scientific purposes
OVERVIEW ON STATISTICAL DATA CONFIDENTIALITY AND ACCES TO MICRODATA
Presentation transcript:

Encouraging access to confidential research data Presentation at the 40th IASSIST Conference Toronto, June 3-6, 2014 Dr. Katharina Kinder-Kurlanda GESIS - Leibniz Institute for the Social Sciences katharina.kinder-kurlanda@gesis.org Laurence Horton The London School of Economics and Political Science @laurencedata, L.Horton@lse.ac.uk

Legal context in the UK Data Protection Act (DPA) (1998) Information Commissioner Office (ICO) guidance and commissioner precedents

Legal context in Germany Federal Data Protection Act = Bundesdatenschutzgesetz (BDSG) “The purpose of this Act is to protect individuals against infringement of their right to privacy as the result of the handling of their personal data.“ “Personal data” = any information concerning the personal or material circumstances of an identified or identifiable natural person

Anonymisation in the UK "Anonymisation is the process of turning data into a form which does not identify individuals and where identification is not likely to take place." See: http://www.ico.org.uk/for_organisations/data_protection/topic_guides/anonymisation

Anonymisation in Germany BDSG,§3,6 on ‚factual anonymisation‘: “Rendering anonymous’ shall mean the alteration of personal data so that information concerning personal or material circumstances cannot be attributed to an identified or identifiable natural person or that such attribution would require a disproportionate amount of time, expense and effort.”

Legal context of the EU 1995 Data Protection Directive personal data is any information relating to an individual apply when a person can be identified, directly or indirectly implemented (unevenly) through member states

Current issues for researchers Lack of harmonization in data access regimes due to legal uncertainty What's fine for a Belgian is not fine for the Dutch Gaps, inconsistencies and contradictions Under what circumstances are small cell values problematic...? What degree of security measures is 'enough'? Does the door of a safe room need to be closed...?

Current issues for researchers (2) Technological developments are ahead of legal ones Therefore 'best practice' has become very important as everybody is cautious (Avoiding unnecessarily conservative approaches) e.g.: the proposed EC current reforms

Current issues for researchers (3) Balancing researchers' needs against a public mood of (understandable) suspicion Example: high profile cases of personal data leakage (not research data, but still...) Example: Albrecht report: Legitimate concerns regarding marketing interests pushing for cutting down on privacy lead to researchers being 'punished' But: Data becomes more transparent through research!

Archives to the rescue? Data archives are expanding their role within data infrastructures. Not just end point data providers, but support services for those creating data Interest in ensuring good quality data is produced

Archives to the rescue? Archives build up a store of expertise through experience Encounter a lot more data and a diversity of projects that most researchers never encounter

Where archives help Combating ignorance in the research community about data protection laws, by... Active help with specific queries Proactive help: Creating training and support materials Providing the technological capacity to share data that could not ordinarily be shared Legally binding user licenses Secure data services for rich but sensitive data

Example: GESIS SDC - Secure Data Center Contractual safeguards Technical safeguards Organisational safeguards

Aims of the GESIS Secure Data Center To provide controlled and secure access to data deserving special protection

GESIS Secure Data Center off-site access Users sign a contract and agree …not to attempt identfication of individuals …not to share the data with anyone …to keep the data secure

GESIS Secure Data Center Safe Room Users sign a contract and access the data in a secure and controlled environment: Access control, no mobile phones, no laptops… Thin client with a virtual machine at GESIS

Controlled data access within institutions LSE Library Manage applications for and use of sensitive data Examples UK Data Service applications Eurostat EU-Statistics on Income and Living Conditions (EU-SILC) Household, Income and Labour Dynamics in Australia (HILDA)

Controlled data access within institutions Future developments Expectation to improve data security procedures and technology Possible establishing university safe data rooms Working closely with IT providers on data security and meeting data provider requirements

Thank you

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.