Presentation is loading. Please wait.

Presentation is loading. Please wait.

Personal data: electronic capture, storage and security

Published byColleen Webb Modified over 6 years ago

Similar presentations

Presentation on theme: "Personal data: electronic capture, storage and security"— Presentation transcript:

1 Personal data: electronic capture, storage and security
Dr David W. Evans Centre of Precision Rehabilitation for Spinal Pain School of Sport, Exercise and Rehabilitation Sciences

2 Researchers are professional data generators!
In the eyes of the ICO, we are also: Data controllers Data processors In the health, life and social sciences, most data is: From / about living people Potentially identifiable

3 Is the data ‘personal’? Question 1
Can a living individual be identified from the data, or, from the data and other information in your possession, or likely to come into your possession? No - The data is not ‘personal data’ for the purposes of the DPA  Yes - Go to question 2 Information Commissioner’s Office

4 Is the data ‘personal’? Question 2
Does the data ‘relate to’ the identifiable living individual, whether in personal or family life, business or profession?  No - The data is not ‘personal data’ for the purposes of the DPA Yes - The data is ‘personal data’ for the purposes of the DPA Information Commissioner’s Office

5 Personal data Most data in the health, life and social sciences is ‘personal’

6 Personal data Data Protection Act (1998) currently applies
From May 2018, the GDPR will add (amongst others): Bigger £££ fines for non-compliance The subject’s ‘right to be forgotten’ Legal obligation to maintain records of both personal data and processing activities Appropriate ‘safeguards’ must be in place

7 Appropriate safeguards
Only necessary personal data may be processed Principle of ‘data minimisation’ Data protection / privacy ‘by design and default’ Data Protection Impact Assessments (DPIAs) Data Management Plans (DMPs) ‘Pseudonymisation’ Data should not be attributable to a specific subject without the use of ‘additional information’ This additional information must be kept separately and subject to technical and organisational measures to ensure non-attribution to an individual

8 Electronic data storage
Electronic data storage is now commonplace Local or remote Can be very secure

9 Electronic data storage
Birmingham Environment for Academic Research (BEAR) Research Data Store (RDS) Research Data Archive (RDA)

10 Electronic data capture
Electronic data capture is becoming more attractive:

11 Electronic data capture
Electronic data capture is becoming more attractive: Saves trees More secure than paper? Data ultimately ends up in electronic format For analysis, reporting and archiving More time efficient 1-step vs 2-step process Can be ‘smarter’ than paper questionnaires Branching logic Can utilise sensors onboard / linked to the device ‘Active task’ data

12 Electronic data capture
REDCapTM data collection and storage software

13 REDCap Developed at Vanderbilt University, Tennessee Locally hosted
Server hosted Free license, not open-source Currently used at 2752 institutions in 119 countries Active user forum / community Locally hosted Requires local server installation and IT support Phil Dimmock, IT Services Fully compliant with DPA & GDPR User privileges and rights can be controlled Can keep identifiable data separate from research data Exports anonymised research data in analysable format All interactions are logged and auditable

14 REDCap Encrypted data transit Uploaded to local secure database
HTTPS transfer to server via ‘private’ browser ‘REDCap app’ transfers encrypted datafile to server Uploaded to local secure database Hosted on UoB servers Appropriate security measures Participant-hosted app under development MyCap Utilises ‘ResearchKit’ and ‘ResearchStack’ open-source frameworks

15 MyCap: participant-hosted app

16 MyCap: participant-hosted app

17 Thank you for listening!

Download ppt "Personal data: electronic capture, storage and security"

Similar presentations

HES Data Management Ari Haukijärvi. Planning of HES Data Management Purpose of the data management The data will be available for analysis The available.

HES Data Management Ari Haukijärvi. Planning of HES Data Management Purpose of the data management The data will be available for analysis The available.
National Update: The information revolution and the 2012 Caldicott Review Simon Richardson – Information Rights Manager.

National Update: The information revolution and the 2012 Caldicott Review Simon Richardson – Information Rights Manager.
Keeping on top of the Cloud - Compliance from a Regulator’s Perspective Henry Chang, IT Advisor Office of the Privacy Commissioner for Personal Data, Hong.

Keeping on top of the Cloud - Compliance from a Regulator’s Perspective Henry Chang, IT Advisor Office of the Privacy Commissioner for Personal Data, Hong.
Data management in the field Ari Haukijärvi 2nd EHES training seminar.

Data management in the field Ari Haukijärvi 2nd EHES training seminar.
Europe's work in progress: quality of mHealth Pēteris Zilgalvis, J.D., Head of Unit, Health and Well-Being, DG CONNECT Voka Health Community 29 September.

Europe's work in progress: quality of mHealth Pēteris Zilgalvis, J.D., Head of Unit, Health and Well-Being, DG CONNECT Voka Health Community 29 September.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.

Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
Collection and Analysis of Data CPH 608 Spring 2015.

Collection and Analysis of Data CPH 608 Spring 2015.
Using REDCap (Research Electronic Data Capture) as a tool to perform research studies Abstract ID no. IRIA-1076.

Using REDCap (Research Electronic Data Capture) as a tool to perform research studies Abstract ID no. IRIA-1076.
Data Protection and research Rachael Maguire Records Manager.

Data Protection and research Rachael Maguire Records Manager.
Privacy Audit and Privacy Seal Barbara Körffer & Dr. Thomas Probst Independent Centre for Privacy Protection Independent Centre for Privacy ProtectionSchleswig-Holstein.

Privacy Audit and Privacy Seal Barbara Körffer & Dr. Thomas Probst Independent Centre for Privacy Protection Independent Centre for Privacy ProtectionSchleswig-Holstein.
The EU General Data Protection Regulation Frank Rankin.

The EU General Data Protection Regulation Frank Rankin.
Business Challenges in the evolution of HOME AUTOMATION (IoT)

Business Challenges in the evolution of HOME AUTOMATION (IoT)
GDPR 12 POINTS 679/2016 DATA LEX 2016.

GDPR 12 POINTS 679/2016 DATA LEX 2016.
Maciej Pęciak Robert Dąbroś

Maciej Pęciak Robert Dąbroś
TRUSTED | PROTECTED | SECURED

TRUSTED | PROTECTED | SECURED
Issues of personal data protection in scientific research

Issues of personal data protection in scientific research
A secure communication platform

A secure communication platform
Viewing the GDPR Through a De-Identification Lens

Viewing the GDPR Through a De-Identification Lens
General Data Protection Regulation

General Data Protection Regulation
SIMS Reporting Enhancement supporting GDPR

SIMS Reporting Enhancement supporting GDPR

Similar presentations

Ads by Google