Personal Data Protection in Research Involving Humans

GDPR and ethics perspective

Marc Vives - Silvia Losa 15th June 2018

Content

Data protection principles

Personal data section of ERC’s ethics self-assessment

Content

Cicero denounces Catiline. Cesare Maccari - 1889 https://commons.wikimedia.org/wiki/File:Maccari-Cicero.jpg

In ancient times citizenship was about being part of social events. The term ”privacy” didn’t exist.

Intimacy +

Personal Data Protection

Privacy =

http://getwallpapers.com/wallpaper/full/0/8/7/540775.jpg

Personal Data any information

relating to an identified or identifiable

natural person

Data ownership Personal Data

always belongs to the data

subject

Special categories of personal data • Racial or ethnic origin • Political opinions • Religious or philosophical beliefs • Trade-union membership • Health, sex life, sex orientation • Genetic, biometric data

Special consent and security measures apply

Minors • Consent must be provided by the

holder of parental responsibility • In Spain under 14 years old • In other EU countries may differ

Hannibal traverse le Rhône. Henri Motte. 1878 British Museum

'Data Controller’ the body which determines the

purposes and means of the processing of

personal data

Hannibal traverse le Rhône. Henri Motte. 1878 British Museum

'Data Processor’ a body which

processes personal data on behalf of the

data controller

Personal data shall be:

(a) processed lawfully, fairly and in a

transparent manner in relation to the data subject

(b) collected for specified, explicit and

legitimate purposes and not further processed in a manner that is incompatible with these purposes;

further processing for scientific

research purposes, subject to appropriate safeguards for the rights and freedoms of the data subject, shall not be considered to be incompatible with the initial purposes

Privacy by design Privacy by default

Accountability Record of processing activities Risk Assessment Data Protection Impact Assessment

Data minimization Dataset size Preservation period

Technical and organizational security measures

Anonimisation Pseudonimisation

Data protection awareness

Pseudonimisation

Identification data Research data

John John’s answers

Mary Mary’s Answers

Research dataset

Identification data Id.

John 001

Mary 002

Pseudonimisation file

Id. Research data

001 John’s answers

002 Mary’s Answers

Pseudonimized Dataset

Content

Does your research involve personal data collection and / or processing ?

YES NO

If your research involves personal data collection and / or processing, then you have to provide:

1. Data collection details

2. Procedures for data storage & processing

3. Data safety analysis

4. Preservation protocol

5. Dissemination of datasets expectations

6. Third party transfers projection

1. Data collection details (personal data source)

Data owner

Legitimation

Fairness

Informed

consent

Third party

Dataset details

Origin and lawfullness

Owner’s permission

Non-Disclosure Agreements

Data processing contracts

Risk analysis

Data Privacy Impact Assessment

a) Organisational measures

b) Technical measures

Data access control

(and sometimes access logging)

Encryption

Anonymisation

Pseudonimisation

Backup

5. Personal data dissemination

6. Third party transfers

Anonimisation

Consistency with Informed consent

Terms & conditions

Data transfer procedures

Special regulations in the case of transfers outside EEE

Thank you !!!

Images reproduced with permission for non-commercial use from: http://www.britishmuseum.org

http://www.navy.mil http://www.pixabay.com

http://commons.wikipedia.org

Personal Data Protection in Research Involving Humans

Documents

Storage Tank Protection With High Flow · PDF filefires involving large storage tanks, it would be ... Storage Tank Protection ... Double deck roof on exposed tank

Research Ethics and Research Involving Humans

Els Humans són Humans

Erratum - Clinical Cancer Research · Helsinki andexpect thatallinvestigations involving humans willhavebeen performed inaccordance withthese principles. Toobtain acopy ofthe Helsinki

Office of Sponsored Projects & Industry PartnershipsHuman and Animal Regulatory Committee Office Protocols vs. Proposals (research involving humans and/or

Ethical Conduct for Research Involving Humans B5007 · 04-11-2014 · Title: Ethical Conduct for Research Involving Humans Policy No.: B5007 Applicability: All Employees, Students

chemical agents and related occupationsrisk of chemicals to humans involving the production of critically evaluated monographs on individual chemicals. The programme was subsequently

HUMAN RESEARCH ETHICS. TRI-COUNCIL POLICY The University has adopted the Tri-Council Policy Statement on the Ethical Conduct for Research Involving Humans

Groundwater Protection Code: Petrol stations and …...Groundwater Protection Code: Petrol stations and other fuel dispensing facilities involving underground storage tanks 9 2.12

Glenn Rivard, Department of Justice 02/XI/22 Research Involving Humans Federal Governance

Planetary Protection Planetary Protection at NASA ......Planetary Protection for Humans on Mars Phased Approach: Be careful early; tailor later constraints using knowledge gained •Humans

Learning as a Machine: Crossovers between Humans and Machines · Learning as a machine: Crossovers between humans and machines. ... , data protection by design, privacy, machine learning

Medical Research Council of Canada - Glendon · TRI-COUNCIL POLICY STATEMENT Ethical Conduct for Research Involving Humans Medical Research Council of Canada Natural Sciences and

Research Ethics and Research Involving Humans Jean Ruiz, MAKirsten Bell, PhDResearch Ethics AnalystOffice of Research Ethics

PATENT PROTECTION FOR PERFORMANCE TECHNIQUES 2009 fall/karina... · involving a guitar but not related to strumming the strings). ... this paper concludes that patent protection for

Presidential Report on Radiation Protection Advice ...info.publicintelligence.net/NCRP_HumanScan_Report.pdf · Presidential Report on Radiation Protection Advice: Screening of Humans

Ethics around conducting studies involving humans

Involving Citizens in the Child Protection System

Ethics review and other approval review of research involving humans (Chapter 3) Group 2 Ethics of technology and science: Seminar I 2015-09-17

Data Protection, Humans and Common Sense