-
GDPR is about personal data, which pretty much means personally-identifiable data. And it's aimed at commercial organisations, and very general in most areas. Then anonymisation of bulk data is a complex subject in its own right...
chez_jay-
I’m not any kind of expert, but I would assume that advances in AI would mean that personal data held under a pseudonym would / could be easily identified in such a large data set if you really wanted to. For example, male, south London, partial postcode SW1 first GP record in x part of England in 1975, sickness history of x, y and z aged 37,42 and 47, obsessive cycling disorder diagnosed (ok I made the last one up) might get you close to me. (Although I can see why the data set would be really helpful to research and I would support that) I’m nervous over the third party (eg life insurance cover) use
-
Medical records are very personal and anonymisation is great in theory but how many long-distance cyclists in Ealing have presented multiple blood clots? I'm going to go with 'not very many' and all of a sudden anonymity is gone and that's assuming it was done correctly in the first place.
Silver-fox
hippy
Wasn't that one of the GDPR principles which spurred this whole thing?