England’s NHS plans to share patient records with third parties (opens in new tab)

People should note that this data cannot really be anonymised. This is because you only need a post code, date of birth and sex to determine who the majority of people are.

"A 2000 study found that 87 percent of the U.S. population can be identified using a combination of their gender, birthdate and zip code."

https://en.wikipedia.org/wiki/Data_re-identification

UK postcodes are more specific I believe.

In Europe Google is offering large sums for clinical data that is stored within the records of their Electronic Medical Records. If you start selling data, capital will lead to a consolidation of data. Creating Information asymmetries in healthcare might be the stupidest thing the NHS can do, our future generations will be fighting the monopolies that could have been voided if we treat data and its derivates as a common good.

A devil's advocate:

Giving access to nation's healthcare data for statistical and ML uses can speed up development for ML in diagnostics by a huge amount.

Once you scrub the source data to remove birth dates, report creation dates & zip codes, it should be sufficiently anonymized to be traceable back to the individual. We can enable some level of differential privacy on top as well.

ML's 2 big leaps of the last decade 2012 CNNs and 2017-18 pre-trained transformers both came off the back of a leap in data availability (Imagenet for CNNs and Scraping the entire internet for BERT).

Individual hospitals and the startups they bankroll have their inhouse ML teams, but closed data and unwillingness to disseminate has made the field move at a snail's pace. Additionally, Generalizability of any kind won't be achieved until the data gets scaled up past small geographic pockets and patient sets. This is especially true in medicine which has a long-tail problem. Lastly, aggregating data together lends a natural anonymity to each user who's data is shared within the dataset.

IMO, disease diagnostics is one the most ideal castings for a problem in ML. A purely technical trade where data and decisions have a degree of exactness and concepts like conditional probability are a natural fit. The only problem is that the pipeline is largely still analog. This means that the data collected about the doctor's diagnostic processes still comes out incomplete and privacy protections make sure it stays on a scale small enough to make ML difficult.

Although the FT is paywalled, from a web search the same topic is covered at https://digitpatrox.com/englands-nhs-plans-to-share-patient-... (I have no idea how reputable that site is though). Quoting the start of it: “”” England’s NHS is making ready to scrape the medical histories of 55m sufferers, together with delicate info relating to psychological and sexual well being, prison information and the abuse of adults and youngsters, right into a database it is going to share with third events. The info assortment venture, which is the primary of its form, has triggered an uproar amongst privateness campaigners, who say it’s “legally problematic”, particularly as sufferers solely have a couple of weeks to decide out of the plan. NHS Digital, which runs the well being service’s IT techniques, confirmed the plan to pool collectively medical information from each affected person in England who’s registered with a GP clinic right into a single lake that can be obtainable to educational and business third events for analysis and planning functions. “””

This link is also relevant for people registered with the NHS: https://www.nhs.uk/your-nhs-data-matters/manage-your-choice/

Under article 6 of the GDPR this is allowed since "processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;", thus informed consent isn't necessary and opt-out is legal.

Whilst legally permissible, being opt-out with highly sensitive information is detestable and shows the GDPR doesn't go far enough.

There is something very wrong with the attitude towards health-related personal data in the UK lately. If you talk to real clinical professionals like doctors and nurses, they tend to be very aware of privacy as a matter of professional ethics. But the people making a lot of the policies and setting up a lot of the services that handle this sensitive data aren't generally the clinical professionals, they're more likely administrative staff and managers, whose priorities are not necessarily so constrained and who may not have the technical knowledge to understand the implications of what they are doing.

A case in point: some dentists in our area are now asking for a comprehensive medical questionnaire (far more than just dental history or medical conditions that might affect appropriate dental treatment) to be completed for any new patient, and then emailed to them. There's not even a pretence of acceptable security and privacy protections. With some other dentists, they ask you to use an online system to send them similar information, and that system is run by a commercial entity not based in this country.

Given how badly the figures right at the top of the health service and the members of the Government who are responsible for it dropped the ball when it came to privacy and COVID apps, it's hard to have much faith in them to properly operate centralised systems that hold substantial information about everyone for very generic-sounding purposes like "planning" and "research".

The fact that this particular opt-out can be completed easily online by adults yet requires a parent or guardian to jump through hoops involving filling in PDF forms in order to opt out of sharing sensitive data about a child says a lot about the level of ethics involved here, and none of it is good.

As a final observation, nothing about opting out of this kind of generic, large-scale system precludes participating in legitimate research conducted with appropriate safeguards and ethical standards. Doctors in a certain field may be working with a research group to investigate a particular condition in their field and its treatment, and can forward an invitation to any of their patients who might have that condition explaining the research and asking if the patient would be willing to participate in the research. I've seen one of these, and the information provided was very clear about exactly what data would be shared, what it would be used for, who would have access to it and with what safeguards to prevent unauthorised access, arrangements for destroying it after the research had been completed -- basically everything you'd hope a responsible organisation doing legitimate medical research would be careful about. So the kind of useful research where someone privacy-conscious might still choose to participate for the greater good isn't necessarily undermined by opting out of generic data-sharing consents.

This already routinely done all over the world.