Towards Code of Conduct on Processing of Personal Data for Purposes of Scientific Research in the Area of Health

Similar documents
The EFPIA Perspective on the GDPR. Brendan Barnes, EFPIA 2 nd Nordic Real World Data Conference , Helsinki

Interaction btw. the GDPR and Clinical Trials Regulation

Ethical, Legal, and Societal Implications (ELSI) in the research infrastructure context

The General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation

clarification to bring legal certainty to these issues have been voiced in various position papers and statements.

Justice Select Committee: Inquiry on EU Data Protection Framework Proposals

IAB Europe Guidance THE DEFINITION OF PERSONAL DATA. IAB Europe GDPR Implementation Working Group WHITE PAPER

BBMRI-ERIC WEBINAR SERIES #2

Ethical Governance Framework

ARTICLE 29 Data Protection Working Party

International Seminar on Personal Data Protection and Privacy Câmara Dos Deputados-BRAZIL

Global Alliance for Genomics & Health Data Sharing Lexicon

Robert Bond Partner, Commercial/IP/IT

National and European-level strategies for implementing open access research infrastructures. Euro-BioImaging Stakeholder meeting Wien, Jan 21, 2013

Maasvlakte CCS Project - ROAD

Our position. ICDPPC declaration on ethics and data protection in artificial intelligence

The Information Commissioner s response to the Draft AI Ethics Guidelines of the High-Level Expert Group on Artificial Intelligence

Spurring Big Data-Driven Innovation and Promoting Responsible Data Governance in a Privacy-Centred Europe

WP6 Genomics Organizing the societal debate on the use of genomic information in healthcare

Ministry of Justice: Call for Evidence on EU Data Protection Proposals

Standards and privacy engineering ISO, OASIS, PRIPARE and Other Important Developments

Details of the Proposal

Lecture 7 Ethics, Privacy, and Politics in the Age of Data

EU Research Integrity Initiative

Pan-Canadian Trust Framework Overview

Realising the FNH-RI: Roadmap. Karin Zimmermann (Wageningen Economic Research [WUR], NL)

Should privacy impact assessments be mandatory? David Wright Trilateral Research & Consulting 17 Sept 2009

Towards a Magna Carta for Data

Privacy Management in Smart Cities

From registers to personal data

Big Data and Personal Data Protection Challenges and Opportunities

HBM4EU project. Information, Invitation and Informed Consent Lisbeth E. Knudsen, Berit A. Faber. Information and recruitment of participants

Ethics Review Data Sharing Bridging Legal Environments

EXIN Privacy and Data Protection Foundation. Preparation Guide. Edition

Human Biological Material Collection, Storage and Use

Lund Revisited. Next steps in tackling Societal Challenges

Legal Aspects of the Internet of Things. Richard Kemp June 2017

WIPO Development Agenda

The 45 Adopted Recommendations under the WIPO Development Agenda

General Questionnaire

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Privacy framework

Enpr EMA. Enpr-EMA. European Network of Paediatric Research at the European Medicines Agency

WEON 2018 COREON (1) Marjolein Timmers. What is COREON? CO = Commissie (Committee) RE = Regelgeving (Regulation) ON = Onderzoek (Research)

IMI2 Intellectual Property rules in light of Call 10 topics. Magali Poinot, IMI Legal Manager IMI Stakeholder Forum 28 September 2016

Public consultation on Europeana

TechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV

Social Innovation 2015: Pathways to Social Change Vienna, November 18 th, Maria Schwarz-Woelzl (ZSI) & Wolfgang Haider (ZSI)

DERIVATIVES UNDER THE EU ABS REGULATION: THE CONTINUITY CONCEPT

2

Convergence and Differentiation within the Framework of European Scientific and Technical Cooperation on HTA

Big Data & AI Governance: The Laws and Ethics

European Union General Data Protection Regulation Effects on Research

2. Evidence themes and their importance along the development path

Medical Technology Association of NZ. Proposed European Union/New Zealand Free Trade Agreement. Submission to Ministry of Foreign Affairs & Trade

Biometric Data, Deidentification. E. Kindt Cost1206 Training school 2017

Data Protection Regulation: Keeping Health Research Alive in the EU. A Roundtable Event Hosted by Nessa Childers MEP. European Parliament, Brussels

I hope you will find these comments constructive and helpful.

European Charter for Access to Research Infrastructures - DRAFT

Health Based Exposure Limits (HBEL) and Q&As

Andalusian Agency for Health Technology Assessment (AETSA)

European Network for Health Technology Assessment (EUnetHTA) Joint Action 3

What does the revision of the OECD Privacy Guidelines mean for businesses?

25 th Workshop of the EURORDIS Round Table of Companies (ERTC)

Public Consultation: Horizon 2020 "Science with and for Society" - Work Programme Questionnaire

EUROPEAN COMMISSION Directorate-General for Communications Networks, Content and Technology CONCEPT NOTE

HL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR)

Ethical issues raised by big data and real world evidence projects. Dr Andrew Turner

Report OIE Animal Welfare Global Forum Supporting implementation of OIE Standards Paris, France, March 2018

EP Interest Group Mental Health, Brussels 22/09/11 Tinne Vandensande King Baudouin Foundation

Cross-border Flow of Health Information: is Privacy by Design sufficient to obtain complete and accurate data for Public Health in Europe?

GDPR Implications for ediscovery from a legal and technical point of view

Ocean Energy Europe Privacy Policy

The GDPR and Upcoming mhealth Code of Conduct. Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD)

The EU's new data protection regime Key implications for marketers and adtech service providers Nick Johnson and Stephen Groom 11 February 2016

Royal Pavilion & Museums DRAFT Digital Preservation Policy 2018

Ethics Guideline for the Intelligent Information Society

Public Hearing on the use of security scanners at EU airports. European Economic and Social Committee. Brussels, 11 January 2011

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

Swedish Proposal for Research Data Act

COMMISSION OF THE EUROPEAN COMMUNITIES COMMISSION RECOMMENDATION

'INNOVATIVE SOLUTIONS FOR RESEARCH IN HEALTHCARE' Developing a novel approach to deliver better precision medicine in Europe The EMA standpoint

COMMISSION OF THE EUROPEAN COMMUNITIES

Polish Science Database (BWNP)

RECOMMENDATIONS. COMMISSION RECOMMENDATION (EU) 2018/790 of 25 April 2018 on access to and preservation of scientific information

EU-GDPR The General Data Protection Regulation

Finn Børlum Kristensen, MD, PhD Director, EUnetHTA Secretariat Danish Health and Medicines Authority (EUnetHTA Coordinator) Copenhagen, Denmark

EMBRC-ERIC: A platform for Innovation

European Circular Economy Stakeholder Conference Brussels, February 2018 Civil Society Perspectives

TRANSLATION OF GENOMICS FOR PATIENT CARE AND RESEARCH PATIENT S PERSPECTIVE

Outline. IPTS and the Information Society Unit IPTS Research Agenda on ICT for Governance

South-South Exchange Meeting on the Conservation and Sustainable Use of Forest Biodiversity, 8-10 July 2009

The Information Commissioner s role

At its meeting on 18 May 2016, the Permanent Representatives Committee noted the unanimous agreement on the above conclusions.

Representation of the Conference at a recent meeting of an International Organisation

Biomedical Innovation Has Science Overtaken the System?

Efese, ethics in research

Strategic Plan Public engagement with research

Personal Research Data. 25 Sept 2018 Solveig Fossum-Raunehaug (Research Support Office)

Exploring emerging ICT-enabled governance models in European cities

Data users and data producers interaction: the Web-COSI project experience

Transcription:

Towards Code of Conduct on Processing of Personal Data for Purposes of Scientific Research in the Area of Health 19/4/2017 BBMRI-ERIC

WHAT HAPPENED SO FAR? 2

2015-2016 Holding a Day of Action on the draft EU GDPR in Brussels Issuing a Position Paper on the draft EU GDPR Engaging with multiple stakeholders continuously (e.g., EU, patient advocacy) on GDPR and interest in Code of Conduct Publishing FAQs on the EU GDPR (V2.0) Collaborating with other BMS Research Infrastructures on Code of Conduct (CORBEL project) 3

2017 taking up speed 16/05/20174

24 January 2017 Nature article BBMRI-ERIC 16/05/20175

1 February 2017 First Working Meeting Brought together around 30 representatives from the European biological and medical science research infrastructures, policy makers, medical and health associations, industry representatives, patient advocacy groups, and other interested stakeholders. BBMRI-ERIC 16/05/20176

In the process to be consulted: experts learned societies (e.g., ESR) regulatory bodies (e.g., EMA) third countries& international organisations health sector citizens & publics global organisations (e.g., Global Alliance) research organisations funding bodies scientific journals big data & cloud providers registries (e.g., PARENT) 16/05/2017

CONTEXT 8

Legal texts are not easily accessible to nonlawyers. By developing codes of conduct that are as understandable as possible, we can help to guide researchers and administrative staff, reduce unnecessary fear about compliance and enhance data sharing for the sake of progress in research. 9

PURPOSE 10

To contribute to the proper application of the regulation, taking into account the specific features of processing personal data in the area of health; To clarify and specify certain rules of the GDPR for controllers who process personal data for purposes of scientific research in the area of health; To help demonstrate compliance by controllers and processors with the regulation; To help foster transparency and trust in the use of personal data in the area of health research. 11

SCOPE 12

This code of conduct aims to apply to data controllers who process personal data for purposes of scientific research in the area of health, e.g., researchers and research institutions, biobanks, health databases and registries. 13

BUILDING ON EXISTING CODES 14

Most recent draft under GDPR: GÉANT Data Protection Code of Conduct Relevant for our scope prior GDPR: IMI Code of Practice on Secondary Use of Medical Data in Scientific Research Projects Code of practice for integrated user access to RD-Connect platform for health-related information and human biological samples Seite 15

CONTENT AND TOPICS 16

Key Principles Art.5 GDPR Lawfulness, fairness and transparency Purpose limitation Data minimization Accuracy Storage limitation Integrity and confidentiality Accountability 17

Processing of Data: Collection of data; Storage/archiving; Purpose of use; Reuse/access rules for the use of data by others; Transfer of data; Conditions for continuation of processing (death, legal incapacity). 18

Conditions of Consent: Principles of consent (e.g., freely given, specific, informed, unambiguous); How specific must consent be; What are the appropriate safeguards when obtaining consent for e.g., for biobanking or big data use; Conditions for re-consent; Conditions for online consent; How to demonstrate proper use in accordance with consent limitations; Withdrawal of consent conditions and limits. 19

Appropriate Safeguards: Data mininimisation, e.g., pseudonymisation, anonymization o personal data; Governance, including ethical review; Special measures to treat sensitive data with special regard to biomaterial and genetic data; Conditions for transfer of data, including to third countries and international organizations. 20

Rights of Data Subjects: Right of access to data; Right to know where and how data are stored and shared; Right of data portability, e.g., conditions for feeding back genetic data; Right to be forgotten; Right to object to processing for scientific, historical or statistical purposes. 21

Protection of minors and vulnerable groups: Consent of minors; Consent and additional protection of other vulnerable groups; Profiling 22

Governance of the Code Code is a living document! Defining governing bodies Defining monitoring mechanisms 23

PREPARATORY PROCEDURE 24

1. Identify experts representing a certain range of organisations that can commit to the writing process: Represented organisations are expected to cover their experts travel & time in-kind 2. Determine sub-groups based on suggested topics and available experts For drafting sections of the code to be presented and discussed Keep log-book (explanatory memorandum) 25

3. Present and discuss results from sub-groups Suggested format: online and/or in person discussions with stakeholders Incorporate feedback 4. Prepare draft of the whole document and ensure public consultation 5. Code of Conduct proposal to be submitted to the EC (process yet to be defined) 26

NEXT STEPS 27

Minutes TC in May Define involvement of experts 7 June 2017 Agree on procedure and topics 28

THOUGHTS? 29

Contact Jan-Eric Litton jan-eric.litton@bbmri-eric.eu Michaela Th. Mayrhofer Michaela.th.mayrhofer@bbmri-eric.eu 30 16/05/2017

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback