NHS email encryption

[Mary Hawking]

>On 30 Aug 2007 at 10:57, PeteM wrote:
>
>> Is the *full* postcode to be attached, in clear, to records used for
>> research?
>
>No doubt the medical research mob would claim that it is impossible for 
>them to do their work without it.
>
>The fools who run the census (at least in Scotland) are under a similar 
>delusion.
>--
>  David Hansen, Edinburgh

Quite a lot of work has been done on data matching and medical records, 
and the problem is that the less frequent the medical condition is, the 
easier it is to identify the individual from less complete data..

As far as medical research goes, surely the need for location data - 
such as complete or partial post code - depends on the research question 
being asked?

For instance, if the research concerned clusters (or lack of clusters) 
of particular diseases, then detailed location data would be important - 
whereas the study of the outcomes of particular interventions - e.g. 
statins in secondary prevention of CHD - would not.

My understanding is that the plan is to use annonymised data where 
possible - and only use identifiable data where needed.
Who decides what is needed and who would check this need is a different 
matter!

Mary Hawking
PS back to NHSMail - this was originally intended to allow sensitive 
information to be sent securely between secure addresses e.g. NHSMail or 
cgi.gov addresses. Being able to download email to a non secure address 
does seem to decrease the security, even if it might make the system 
more useful for all other purposes!
-- 
Mary Hawking