Issue No.02 - March/April (2009 vol.7)
Khaled El Emam , Children's Hospital of Eastern Ontario Research Institute
Patricia Kosseim , Genome Canada
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2009.47
Prescription data disclosed by pharmacies without patient consent, could constitute a breach of privacy if individual patients can be re-identified by third parties. This article analyzes the concept of identifiability under Canadian and US privacy laws, including applicable thresholds of risk and the perspective from which the risk must be examined. The article goes on to examine concrete examples of how the risk of re-identifiability of prescription data can materialize in practice.
privacy law, healthcare, re-identifiability, privacy interests
Khaled El Emam, Patricia Kosseim, "Privacy Interests in Prescription Data, Part 2: Patient Privacy", IEEE Security & Privacy, vol.7, no. 2, pp. 75-78, March/April 2009, doi:10.1109/MSP.2009.47