Criminal prohibition of wrongful re-identification: Legal solution or minefield for big data?

Mark Phillips, Edward S. Dove, Bartha M. Knoppers

Research output: Contribution to journalArticlepeer-review

Abstract / Description of output

The collapse of confidence in anonymization (sometimes also known as de-identification) as a robust approach for preserving privacy of personal data has incited an outpouring of new approaches that aim to fill the resulting trifecta of technical, organizational, and regulatory privacy gaps left in its wake. In the latter category, and in large part due to the growth of Big Data–driven biomedical research, falls a growing chorus of calls for criminal and penal offences to sanction wrongful re-identification of “anonymized” data. This chorus cuts across the fault lines of polarized privacy law scholarship that at times seems to advocate privacy protection at the expense of Big Data research or vice versa. Focusing on Big Data in the context of biomedicine, this article surveys the approaches that criminal or penal law might take toward wrongful re-identification of health data. It contextualizes the strategies within their respective legal regimes as well as in relation to emerging privacy debates focusing on personal data use and data linkage and assesses the relative merit of criminalization. We conclude that this approach suffers from several flaws and that alternative social and legal strategies to deter wrongful re-identification may be preferable.
Original languageEnglish
Pages (from-to)1-13
JournalJournal of Bioethical Inquiry
Early online date14 Sept 2017
DOIs
Publication statusE-pub ahead of print - 14 Sept 2017

Keywords / Materials (for Non-textual outputs)

  • anonymization
  • re-identification
  • data protection
  • criminal law
  • big data
  • medicine

Fingerprint

Dive into the research topics of 'Criminal prohibition of wrongful re-identification: Legal solution or minefield for big data?'. Together they form a unique fingerprint.

Cite this