|A ‘good’ idea may not be always be a ‘legal’ one|
The ICO has ruled the Royal Free NHS Foundation Trust failed to comply with the Data Protection Act when it provided patient details to Google DeepMind. The Trust provided personal data of around 1.6m patients as part of a trial to test an alert, diagnosis and detection system for acute kidney injury.
But an ICO investigation found several shortcomings in how the data was handled, including that patients were not adequately informed that their data would be used as part of the test.
In a second press release the ICO said; But what about the rest of the sector? As organisations increasingly look to unlock the huge potential that creative uses of data can have for patient care, what are the (4) lessons to be learned from this case?
*It’s not a choice between privacy or innovation
*Don’t dive in too quickly
*New cloud processing technologies mean you can, not that you always should
*Know the law, and follow it
ICO: Royal Free - Google DeepMind trial failed to comply with data protection law
ICO: Four lessons NHS Trusts can learn from the Royal Free case
National Data Guardian statement on ICO decision on Royal Free
Latest Research Paper: The Challenges of Public Sector Data Sharing