This appeared last weekend:
MEDIA RELEASE: ‘Open Data’: Too much sharing, too little care? Who’s reading your health information now?
There can be benefits from the ‘sharing’ (distribution) of health and other personal information among health care professionals and researchers. Any such ‘sharing’ must, however, be based on an understanding of potential risks. It must only occur within an effective legal framework, and controls appropriate for those risks. A ‘Trust me, I’m from the government!’ approach is a recipe for pain. So is sharing such sensitive data with government without full openness, transparency and a legal framework that prevents them from misusing it out of the public eye.
The inadequacy of Australia’s current health data privacy framework – inadequate risk assessment, inadequate law, inadequate enforcement – was demonstrated recently by a major independent study from Chris Culnane, Benjamin Rubinstein and Vanessa Teague at Melbourne University, released in the last days of 2017. [1]
In 2016 the Australian government released a large-scale data set relating to the health of many Australians, under the fashionable rubric of ‘Open Data’. [2] This 10% sample included all publicly reimbursed medical and pharmaceutical bills for selected patients spanning the thirty years from 1984 to 2014. The data as released was meant to be ‘de-identified’, meaning that it supposedly could not be linked to a particular individual: and since it would thus raise no privacy issues, it could be released ‘into the wild’, without controls.
Unfortunately, the government got it wrong: this weak protection can be breached. The IT security researchers demonstrated that this sensitive health data can be reidentified: with minimal effort it may be possible to get a picture of the health of prominent Australians, or of you and your neighbours. The research follows similar studies in the United States and Europe demonstrating the unreliability of existing ‘de-identification’ techniques in the face of rapidly-evolving artificial intelligence ‘machine learning’, and Big Data tools. It must be taken seriously.
In response to that earlier study, the Office of the Australian Information Commissioner’s Office (OAIC), the national privacy watchdog formerly known as the Privacy Commissioner, announced that it is “investigating the publication of the Medicare Benefits Schedule (MBS) and Pharmaceutical Benefits Scheme (PBS) datasets”. OAIC has been investigating since September 2016, after the same researchers initially revealed problems with the data by demonstrating it was possible to re-identify practitioner records. [3]
More than a year later, in 2018 the OAIC is still investigating.
- There has been no public report, nor warning about the bug in ‘Open Data’.
- There is no indication of when the report will be released.
- There has been no indication of whether the report will be released in full rather than in the usual redacted version.
- There has been no requirement to reconsider the misplaced trust in ‘deidentification’ of ‘Open Data’ in the face of evidence of its unreliability.
You should be able to trust governments to care for sensitive personal data about yourself and your family. Clearly some of those who are handling this data either lack expertise, or are careless: it appears that ‘Open Data’ protections can be breached.
The Health Department and its Minister should be held to account. Overseas governments have responded effectively to similar problems: for example, the major Caldicott reports in the UK saw the end of the ‘Care.Data’ plan to sell the health records of most people in Britain. (The architect of that plan is now the CEO of the Australian Digital Health Agency.)
The OAIC should also be held to account. The delay of more than a year is unacceptable. So is the fact there is no end in sight, and the fundamental, controversial flaw in the rhetoric about the claimed safety of ‘Open Data’ remains unrecognised.
It may be that the OAIC lacks expertise and other resources. That is no excuse. (Extensive research work done by NICTA, and by independent university researchers like those at Melbourne and other institutions internationally, identifies the growing risks to ‘de-identification’ as a safe basis for the release of data derived from personal information into a hostile global environment. Efforts by proponents of ‘Open Data’ to promote the safety of de-identification must be met with a more sceptical view.)
It is time for the new Attorney General to provide adequate resources for the national privacy watchdog, so Australians can expect them to investigate the fundamental risks in ‘Open Data’ properly, independently, and promptly.
The OAIC should act like a watchdog, not like a rather timid snail.
The full release with references is here:
There is also coverage here:
Privacy Foundation: Trusting government with open data a 'recipe for pain'
The Australian Privacy Foundation wants the government to develop security controls around sharing open data and provide the agency charged with investigating data misuse with 'adequate' resources.
The Australian Privacy Foundation (APF) has called out the federal government and the Office of the Australian Information Commissioner (OAIC) after failing to publish a report on the September 2016 incident that revealed Medicare Benefits Schedule and Pharmaceutical Benefits Scheme data was not encrypted properly.
The dataset was found by a team of researchers from the University of Melbourne and was subsequently pulled down by the Department of Health.
At the time, the OAIC announced it was investigating the publication of the datasets, however more than 12 months later, it is still investigating.
Of concern to the APF is that there has been no public report, nor warning about the bug in open data; no indication of when the report will be released; and no requirement to reconsider the misplaced trust in the de-identification of open data.
"You should be able to trust governments to care for sensitive personal data about yourself and your family. Clearly some of those who are handling this data either lack expertise, or are careless: It appears that 'Open Data' protections can be breached," a statement from the APF reads.
While the APF agrees there can be benefits from the sharing of health and other personal information among health care professionals and researchers, it said the sharing must be based on an understanding of potential risks.
"It must only occur within an effective legal framework, and controls appropriate for those risks," the APF continued.
"A 'Trust me, I'm from the government!' approach is a recipe for pain. So is sharing such sensitive data with government without full openness, transparency, and a legal framework that prevents them from misusing it out of the public eye."
Lots more here:
I can add little but to remind people I am a member of the Privacy Foundation Health Sub-Committee.
David.
No comments:
Post a Comment