Expert: Medical Data Not Adequately Protected in Draft Directive
PRIVACY LAW—EUOctober 9, 2012
University of Cambridge Prof. Ross Anderson spoke at a recent privacy conference about a loophole in draft EU data protection regulations that he believes puts medical data at risk, reports CIO. The loophole exists in provisions allowing for secondary uses of medical data for historical and research purposes, Anderson says. "The fundamental problem is that everyone from insurers to drug companies wants access to masses of personal data," he says, and while the regulations call for the anonymization of data shared with researchers, "You can always find a set of queries that reveals the target." Anderson says he’s bringing attention to the weakness now in hopes of getting the sections amended.