Protecting Patient Privacy in the Age of Big Data

dc.contributor.authorTerry, Nicolas P.
dc.date.accessioned2018-05-02T16:13:29Z
dc.date.available2018-05-02T16:13:29Z
dc.date.issued2012
dc.description.abstractThis essay discusses the threats to health privacy posed by “big data;” an ongoing revolution in data collection and processing. The essay takes the position that big data poses an exceptional group of problems for health care, its providers, researchers, and patients. Faced with increased privacy risks an exhaustive overhaul of HIPAA/HITECH is not proposed. Rather, this essay suggests an incremental approach, adopting aspects of the recent privacy proposals published by the White House and the Federal Trade Commission. The essay suggests that the battle to preserve health privacy needs to be fought on three fronts. First, while HIPAA/HITECH provides increasingly robust protections against unauthorized uses of health information by a relatively narrow set of traditional health care provider data stewards, it does almost nothing to regulate the collection of health data. It is time that the federal government put real limits on the collection and processing of personal information. Second, the U.S. has adopted a sector-based approach to data protection. HIPAA, as amended by HITECH, and the “privacy” and security regulations made thereunder apply only to a narrowly constructed version of the vertical health care market. Such sector-based approaches to regulation are frequently flawed because of poor calibration. Further, the very concept of health sector specific regulation is flawed because health related or medically inflected data frequently circulates outside of the traditionally recognized health care sector. Third, there is great value in patient information that could be extracted and used by responsible medical and public health researchers. Responsible public policy suggests that researchers should be able to request that information from patients. Many of the existing HIPAA and HITECH security and confidentiality protections apply here but are fundamentally flawed. Neither current policy nor regulations supply the key component: a coherent choice architecture for dealing with appropriate patient decision-making regarding research use of personal or familial health data.en_US
dc.identifier.citationNicolas P. Terry, Protecting Patient Privacy in the Age of Big Data, 81 UMKC Law Review 385 (2012).en_US
dc.identifier.urihttps://hdl.handle.net/1805/15976
dc.language.isoenen_US
dc.subjecthealthen_US
dc.subjectlawen_US
dc.subjecthealth privacyen_US
dc.titleProtecting Patient Privacy in the Age of Big Dataen_US
dc.typeArticleen_US
ul.alternative.fulltexthttps://ssrn.com/abstract=2153269en_US
Files
Original bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
Terry_2012_protecting.pdf
Size:
1.94 MB
Format:
Adobe Portable Document Format
Description:
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.99 KB
Format:
Item-specific license agreed upon to submission
Description: