WGPlus (Archive)

A ‘good’ idea may not be always be a ‘legal’ one

The ICO has ruled the Royal Free NHS Foundation Trust failed to comply with the Data Protection Act when it provided patient details to Google DeepMind.  The Trust provided personal data of around 1.6m patients as part of a trial to test an alert, diagnosis and detection system for acute kidney injury.

But an ICO investigation found several shortcomings in how the data was handled, including that patients were not adequately informed that their data would be used as part of the test.

In a second press release the ICO said; But what about the rest of the sector?  As organisations increasingly look to unlock the huge potential that creative uses of data can have for patient care, what are the (4) lessons to be learned from this case?

*It’s not a choice between privacy or innovation

*Don’t dive in too quickly

*New cloud processing technologies mean you can, not that you always should

*Know the law, and follow it

Researched Links:

ICO:  Royal Free - Google DeepMind trial failed to comply with data protection law

ICO:  Four lessons NHS Trusts can learn from the Royal Free case

National Data Guardian statement on ICO decision on Royal Free

Latest Research Paper: The Challenges of Public Sector Data Sharing

On-Demand Webinar: Better Understand and Manage your Natural Capital