. 2019 Mar 29;7(1):6.

doi: 10.5334/egems.270.

Assessing and Minimizing Re-identification Risk in Research Data Derived from Health Care Records

Gregory E Simon¹, Susan M Shortreed¹, R Yates Coley¹, Robert B Penfold¹, Rebecca C Rossom², Beth E Waitzfelder³, Katherine Sanchez⁴, Frances L Lynch⁵

Affiliations

¹ Kaiser Permanente Washington Health Research Institute, Seattle, WA, US.
² HealthPartners Institute, Minneapolis, MN, US.
³ Kaiser Permanente Hawaii Center for Health Research, Honolulu, HI, US.
⁴ Baylor Scott and White Research Institute, Dallas, TX, US.
⁵ Kaiser Permanente Northwest Center for Health Research, Portland, OR, US.

PMID: 30972355
PMCID: PMC6450246
DOI: 10.5334/egems.270

Assessing and Minimizing Re-identification Risk in Research Data Derived from Health Care Records

Gregory E Simon et al. EGEMS (Wash DC). 2019.

. 2019 Mar 29;7(1):6.

doi: 10.5334/egems.270.

Authors

Gregory E Simon¹, Susan M Shortreed¹, R Yates Coley¹, Robert B Penfold¹, Rebecca C Rossom², Beth E Waitzfelder³, Katherine Sanchez⁴, Frances L Lynch⁵

Affiliations

¹ Kaiser Permanente Washington Health Research Institute, Seattle, WA, US.
² HealthPartners Institute, Minneapolis, MN, US.
³ Kaiser Permanente Hawaii Center for Health Research, Honolulu, HI, US.
⁴ Baylor Scott and White Research Institute, Dallas, TX, US.
⁵ Kaiser Permanente Northwest Center for Health Research, Portland, OR, US.

PMID: 30972355
PMCID: PMC6450246
DOI: 10.5334/egems.270

Abstract

Background: Sharing of research data derived from health system records supports the rigor and reproducibility of primary research and can accelerate research progress through secondary use. But public sharing of such data can create risk of re-identifying individuals, exposing sensitive health information.

Method: We describe a framework for assessing re-identification risk that includes: identifying data elements in a research dataset that overlap with external data sources, identifying small classes of records defined by unique combinations of those data elements, and considering the pattern of population overlap between the research dataset and an external source. We also describe alternative strategies for mitigating risk when the external data source can or cannot be directly examined.

Results: We illustrate this framework using the example of a large database used to develop and validate models predicting suicidal behavior after an outpatient visit. We identify elements in the research dataset that might create risk and propose a specific risk mitigation strategy: deleting indicators for health system (a proxy for state of residence) and visit year.

Discussion: Researchers holding health system data must balance the public health value of data sharing against the duty to protect the privacy of health system members. Specific steps can provide a useful estimate of re-identification risk and point to effective risk mitigation strategies.

Keywords: HIPAA; confidentiality; data sharing; electronic health records; privacy.

PubMed Disclaimer

Conflict of interest statement

The authors have no competing interests to declare.

Figures

**Figure 1**
Possible relationships between populations covered by sensitive research dataset and identified external dataset. Stars represent a small cell or class of individuals defined by data elements common to two datasets.

**Figure 2**
Potential linkage of suicide risk prediction dataset to state mortality records using shared data elements.

**Figure 3**
Relationship of specific small cell in suicide risk prediction dataset to matching records in state mortality data.

**Figure 4**
Relationship of specific small cell in suicide risk prediction dataset to matching records in state mortality data after exclusion of health system (i.e., state) identifier.

**Figure 5**
Relationship of specific small cell in suicide risk prediction dataset to matching records in national mortality data after exclusion of health system (i.e., state) identifier.

See this image and copyright information in PMC

References

1. NIH Sharing Policies and Related Guidance on NIH-Funded Research Resources. Accessed May 31, 2018.
1. National Institute of Mental Health Data Archive. 2018. Accessed May 31, 2018.
1. El Emam, K, Jonker, E, Arbuckle, L and Malin, B. A systematic review of re-identification attacks on health data. PLoS One. 2011; 6(12): e28071 DOI: 10.1371/journal.pone.0028071 - DOI - PMC - PubMed
1. Staff HIN. The Biggest Healthcare Data Breaches of 2018 (So Far). Healthcare IT News; 2018.
1. Largest Healthcare Data Breaches of 2017. HIPAA Journal; 2018.

Grants and funding

U19 MH092201/MH/NIMH NIH HHS/United States

LinkOut - more resources

Full Text Sources
- Europe PubMed Central
- PubMed Central
Other Literature Sources
- The Lens - Patent Citations Database

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

Assessing and Minimizing Re-identification Risk in Research Data Derived from Health Care Records

Affiliations

Assessing and Minimizing Re-identification Risk in Research Data Derived from Health Care Records

Authors

Affiliations

Abstract

Conflict of interest statement

Figures

References

Grants and funding

LinkOut - more resources

Full Text Sources

Other Literature Sources