de-identification – Privacy Design®

Paper: SAP HANA goes private – From Privacy Research to Privacy Aware Enterprise Analytics

stefan — Mon, 18 Nov 2019 22:13:10 +0000

http://www.vldb.org/pvldb/vol12/p1998-kessler.pdf

AEPD/EDPS: Introduction to the hash function as a personal data pseudonymisation technique

stefan — Mon, 18 Nov 2019 18:09:56 +0000

Joint paper on the use of hash techniques in data processing activities as a safeguard for personal data
https://edps.europa.eu/sites/edp/files/publication/19-10-30_aepd-edps_paper_hash_final_en.pdf

IAPP Guide on de-identification (fall 2019)

stefan — Mon, 18 Nov 2019 18:07:24 +0000

https://iapp.org/resources/topics/de-identification/

Spain DPA: AEPD paper on anonymisation (k-anonymity)

stefan — Thu, 11 Jul 2019 20:50:58 +0000

https://www.aepd.es/prensa/2019-06-14.html

https://www.aepd.es/media/notas-tecnicas/nota-tecnica-kanonimidad.pdf

Guidance Regarding Methods for De-identification of Protected Health Information in Accordance with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule

stefan — Thu, 30 May 2019 10:37:47 +0000

https://www.hhs.gov/hipaa/for-professionals/privacy/special-topics/de-identification/index.html

NIST – Privacy Engineering Collaboration Space

stefan — Sun, 26 May 2019 21:02:08 +0000

” To kick off, we are focusing on de-identification and privacy risk assessment, and welcome feedback on future topics of interest. “

https://www.nist.gov/itl/applied-cybersecurity/privacy-engineering/collaboration-space

Synthea – a Synthetic Patient Population Simulator.

stefan — Sun, 26 May 2019 19:40:21 +0000

Synthea is a Synthetic Patient Population Simulator. The goal is to output synthetic, realistic (but not real), patient data and associated health records in a variety of formats.

Nice offline tool to generate synthetic patient data..

https://github.com/synthetichealth/synthea

De-Identification, Reversible and Irreversible Pseudonymisation (NIST + IHE + ISO)

stefan — Mon, 30 Apr 2018 21:21:41 +0000

NISTIR 8053 De-Identification of Personal Information (Simson L. Garfinkel)
https://nvlpubs.nist.gov/nistpubs/ir/2015/NIST.IR.8053.pdf

IHE

Technical Frameworks:
http://www.ihe.net/Technical_Frameworks/#IT

Healthcare De-Identification Handbook:
https://wiki.ihe.net/index.php/Healthcare_De-Identification_Handbook

ISO 25237

ISO/TS 25237 describes the objectives of de-identification to include:

secondary use of clinical data (e.g., research);
clinical trials and post-marketing surveillance;
pseudonymous care;
patient identification systems;
public health monitoring and assessment;
confidential patient-safety reporting (e.g., adverse drug effects);
comparative quality indicator reporting;
peer review;
consumer groups;
medical device calibration or maintenance.

Anonymity, Unlinkability, Undetectability, Unobservability, Pseudonymity, and Identity Management – A Consolidated Proposal for Terminology (Pfitzmann/Hansen)

stefan — Mon, 30 Apr 2018 21:17:21 +0000

http://dud.inf.tu-dresden.de/literatur/Anon_Terminology_v0.31.pdf

[Paper] A Systematic Review of Re-Identification Attacks on Health Data

stefan — Sun, 25 Feb 2018 08:00:29 +0000

2011/2015

http://journals.plos.org/plosone/article?id=10.1371/journal.pone.0028071