A proposed architecture and method of operation for improving the protection of privacy and confidentiality in disease registers

This article outlines a protocol for facilitating access to administrative data for the purpose of health services research, when these data are sourced from multiple organisations. This approach is designed to promote confidence in the community and among data custodians that there are benefits of linked health information being used and that individual privacy is being rigorously protected. Linked health administration data can provide an unparalleled resource for the monitoring and evaluation of health care services. However, for a number of reasons, these data have not been readily available to researchers. In Australia, an additional barrier to research is the result of health data sets being collected by different levels of government - thus all are not available to any one authority. To improve this situation, a practical blue-print for the conduct of data linkage is proposed. This should provide an approach suitable for most projects that draw large volumes of information from multiple sources, especially when this includes organisations in different jurisdictions. Health data, although widely and diligently collected, continue to be under-utilised for research and evaluation in most countries. This protocol aims to make these data more easily available to researchers by providing a controlled and secure mechanism that guarantees privacy protection.

Background Genetic databases are becoming increasingly common as a means of determining the relationship between lifestyle, environmental exposures and genetic diseases. These databases rely on large numbers of research subjects contributing their genetic material to successfully explore the genetic basis of disease. However, as all possible research questions that can be posed of the data are unknown, an unresolved ethical issue is the status of informed consent for future research uses of genetic material. Discussion In this paper, we discuss the difficulties of an informed consent model for future ineffable uses of genetic data. We argue that variations on consent, such as presumed consent, blanket consent or constructed consent fail to meet the standards required by current informed consent doctrine and are distortions of the original concept. In this paper, we propose the concept of an authorization model whereby participants in genetic data banks are able to exercise a certain amount of control over future uses of genetic data. We argue this preserves the autonomy of individuals at the same time as allowing them to give permission and discretion to researchers for certain types of research. Summary The authorization model represents a step forward in the debate about informed consent in genetic databases. The move towards an authorization model would require changes in the regulatory and legislative environments. Additionally, empirical support of the utility and acceptability of authorization is required.