GMS | 65th Annual Meeting of the German Association for Medical Informatics, Biometry and Epidemiology (GMDS), Meeting of the Central European Network (CEN: German Region, Austro-Swiss Region and Polish Region) of the International Biometric Society (IBS) | Applied pseudonymization: Using the data management and biobanking software DIS as an example

65th Annual Meeting of the German Association for Medical Informatics, Biometry and Epidemiology (GMDS), Meeting of the Central European Network (CEN: German Region, Austro-Swiss Region and Polish Region) of the International Biometric Society (IBS)

06.09. - 09.09.2020, Berlin (online conference)

Artikel

XML Version

Artikel empfehlen

Applied pseudonymization: Using the data management and biobanking software DIS as an example

Meeting Abstract

Suche in Medline nach

Kohlmayer F

Florian Kohlmayer - Bitcare GmbH, Munich, Germany

Deutsche Gesellschaft für Medizinische Informatik, Biometrie und Epidemiologie. 65th Annual Meeting of the German Association for Medical Informatics, Biometry and Epidemiology (GMDS), Meeting of the Central European Network (CEN: German Region, Austro-Swiss Region and Polish Region) of the International Biometric Society (IBS). Berlin, 06.-09.09.2020. Düsseldorf: German Medical Science GMS Publishing House; 2021. DocAbstr. 33

doi: 10.3205/20gmds095, urn:nbn:de:0183-20gmds0955

Veröffentlicht:	26. Februar 2021

© 2021 Kohlmayer.
Dieser Artikel ist ein Open-Access-Artikel und steht unter den Lizenzbedingungen der Creative Commons Attribution 4.0 License (Namensnennung). Lizenz-Angaben siehe http://creativecommons.org/licenses/by/4.0/.

Gliederung

Top
Text

Text

The management of data and biospecimens which characterize patients and probands in-depth is a core element of modern biomedical research. Associated data is considered highly sensitive, so access to this data must be strictly regulated and it must be protected from unauthorized re-identification.

In this context, laws, regulations, guidelines and best-practices often call for pseudonymization. This means, that directly identifying data (e.g. names, addresses and contact information) is separated from data which is primarily needed for scientific research. As attackers cannot gain integrated access to both research data and associated directly identifying data, pseudonymization protects sensitive data against re-identification. The best-practice for biobanking in Germany even introduces a further pseudonymization step (i.e. mapping “first pseudonyms” to “second pseudonyms”) by introducing an additional service. Furthermore, it mandates the separation of different data categories and their hosting subsystems at technical, spatial and organizational level, resulting in at least three different databases.

This increases complexity in terms of the number of interfaces that need to be implemented for communicating between the various subsystems. In this talk different methods for pseudonymization will be presented and it will be discussed how these methods are implemented in an integrated manner in the data management and biobanking system of DIS. Challenges and lessons learned, as well as attack vectors and mitigation strategies will complete the presentation.

The authors declare that an ethics committee vote is not required.

gms | German Medical Science