Skip to main navigation menu Skip to main content Skip to site footer

Review article: Biomedical intelligence

Vol. 150 No. 3536 (2020)

Data protection and biomedical research in Switzerland: setting the record straight

DOI
https://doi.org/10.4414/smw.2020.20332
Cite this as:
Swiss Med Wkly. 2020;150:w20332
Published
01.09.2020

Summary

Ensuring the protection of privacy and the compliance with data protection rules have become central issues for researchers active in the biomedical field. Data protection law is often perceived as very complex and difficult to interpret, which can hinder the efficacious planning and implementation of new research projects. Indeed, the sophisticated legal architecture that governs data processing activities in general and biomedical research in particular might feel overwhelming for both legal practitioners and researchers.

The objective of this article is to review the interaction of data protection law and biomedical research with a predominant focus on the Swiss context. In order to facilitate a better understanding of this issue, we discuss three crucial nodes that shape the interplay of law and data processing in research First, we explore the meaning of “personal” data, the requirements to classify data as “personal”, “non-personal”, “pseudonymised” or “anonymised” and the implications of such classifications from a legal perspective. We then consider the relationship between sector-specific data processing regulations for research and other laws on data protection. Finally, we examine the role of consent for data processing in the research field and its significance from a data protection perspective. In conclusion, this review underlines the importance of fostering reciprocal collaboration of data protection experts and biomedical researchers to facilitate the development of new projects in the future.

References

  1. Collins FS, Morgan M, Patrinos A. The Human Genome Project: lessons from large-scale biology. Science. 2003;300(5617):286–90. doi:.https://doi.org/10.1126/science.1084564
  2. Amunts K, Ebell C, Muller J, Telefont M, Knoll A, Lippert T. The Human Brain Project: Creating a European Research Infrastructure to Decode the Human Brain. Neuron. 2016;92(3):574–81. doi:.https://doi.org/10.1016/j.neuron.2016.10.046
  3. Meier-Abt P, Lawrence AK, Selter L, Vayena E, Schwede T. The Swiss approach to precision medicine. Swiss Medical Weekly [Internet]. 2018 Jan 2 [cited 2020 April 16]. Available from: https://smw.ch/en/op-eds/post/the-swiss-approach-to-precision-medicine/.
  4. Fecher B, Friesike S. (2014). Open science: one term, five schools of thought. In: Bartling S., Friesike S, editors. Opening science. Cham: Springer; 2014. p. 17–47. doi: https://doi.org/10.1007/978-3-319-00026-8_2.
  5. General Data Protection Regulation (GDPR) [internet]. The European Parliament and The Council of the European Union [cited 2020 March 30]. Available from: https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=celex%3A32016R0679.
  6. Staunton C, Slokenberga S, Mascalzoni D. The GDPR and the research exemption: considerations on the necessary safeguards for research biobanks. Eur J Hum Genet. 2019;27(8):1159–67. doi:.https://doi.org/10.1038/s41431-019-0386-5
  7. Swiss National Science Foundation (SNF) [internet]. Smarter Health Care National research program. Call for proposals. 2015. [cited 2020 March 30]. Available from: http://www.nfp74.ch/SiteCollectionDocuments/Call_SmarterHealthCare_en.pdf.
  8. Swiss Personalised health Network (SPHN) [internet]. Vision, Mission, and Mandate. available from: https://sphn.ch/organization/about-sphn/.
  9. Meier-Abt P, Egli F. Kräfte bündeln: «Swiss Personalized Health Network. Bulletin SAMW. 2016;1:1–5. Available at: https://www.samw.ch/dam/jcr:65a852a6-5c43-4186-8992-bc37595238fd/bulletin_samw_16_1.pdf.
  10. Swiss Biobanking Platform (SBP) [Internet]. Annual Report 2019. [cited 2020 March 30]. Available from https://swissbiobanking.ch/annualreport2019.
  11. Human Research Act (HRA) [Internet]. Federal Assembly of the Swiss Confederation. Status as of 1 January 2020 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/en/classified-compilation/20061313/index.html.
  12. Federal Act on Data Protection (FADP) [internet]. Federal Assembly of the Swiss Confederation. Status as of 1 March 2019 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/en/classified-compilation/19920153/index.html.
  13. Bundesamt für Justiz [Internet]. Stärkung des Datenschutzes. [cited 2020 March 30]. Available from: https://www.bj.admin.ch/bj/de/home/staat/gesetzgebung/datenschutzstaerkung.html. German.
  14. OECD. Strengthening Health Information Infrastructure for Health Care Quality Governance: Good Practices, New Opportunities and Data Privacy Protection Challenges, OECD Health Policy Studies. Paris: OECD Publishing;2013. doi: https://doi.org/10.1787/9789264193505-en.
  15. Elger B [Internet]. Promoting the merging of health data in Switzerland2016. [cited 2020 March 30]. Available from: http://www.nfp74.ch/en/projects/healthcare-across-sectors/project-elger.
  16. Convention intercantonale relative à la protection des données et à la transparence dans les cantons du Jura et de Neuchâtel (CPDT-JUNE) [Internet]. La République et Canton du Jura et la République et Canton de Neuchâtel [cited 2020 March 30]. Available from: http://rsn.ne.ch/DATA/program/books/rsne/htm/15030.htm. French.
  17. Thouvenin F. Datenschutz auf der Intensivstation. Digma. 2019;19(4):206–17. [German.].
  18. Grant MJ, Booth A. A typology of reviews: an analysis of 14 review types and associated methodologies. Health Info Libr J. 2009;26(2):91–108. doi:.https://doi.org/10.1111/j.1471-1842.2009.00848.x
  19. Rütsche B. Kommentar zum Humanforschungsgesetz. Bern: Stämpfli; 2015. German.
  20. Roland M. Was bedeutet Big Data für die Qualifikation als besonders schützenswerte Personendaten? Jusletter IT. 21 May 2015. German.
  21. Rosenthal D, Jöhri Y. Handkommentar zum Datenschutzgesetz. Zürich: Schulthess Juristische Medien AG; 2008. German.
  22. Baeriswyl B, Parli K. Kommentar zum Datenschutzgesetz. Bern: Stämpfli; 2015. German.
  23. Rosenthal D. Löschen und doch nicht löschen. Digma. 2019;19(4):190–8. [German.].
  24. Ruling of the Swiss Federal Court [Internet]. BGE 138 II 346 S. 348. Available from: https://www.bger.ch/ext/eurospider/live/de/php/clir/http/index.php?highlight_docid=atf%3A%2F%2F138-II-346%3Ait&lang=de&zoom=&type=show_document. German.
  25. Ruling of the Swiss Federal Court [Internet]. BGE 136 II 508 S. 509. Available from: https://www.bger.ch/ext/eurospider/live/de/php/clir/http/index.php?highlight_docid=atf%3A%2F%2F136-II-508%3Ait&lang=de&zoom=&type=show_document. German.
  26. Human Research Ordinance (HRO) [Internet]. The Swiss Federal Council. Status as of 24 April 2018 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/en/classified-compilation/20121177/index.html.
  27. Vokinger KN, Stekhoven DJ, Krauthammer M. Lost in Anonymization - A Data Anonymization Reference Classification Merging Legal and Technical Considerations. J Law Med Ethics. 2020;48(1):228–31. doi:.https://doi.org/10.1177/1073110520917025
  28. Peter C. DSGVO und E-DSG fordern Schweizer Spitäler, Praxen, Heime und Spitex, Jusletter. 26 Februar 2018. German.
  29. Stürzer M, Günter K. Werden Patientendaten anonymisiert? Digma. 2017;17(3):176–9. [German.].
  30. Law on the Electronic Patient Record (LEPR) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 17 April 2017 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/de/classified-compilation/20111795/index.html. German.
  31. Law on Health Insurance (LHI) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 1 January 2020 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/de/classified-compilation/19940073/index.html. German.
  32. Law E. (EL) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 1 January 2020 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/de/classified-compilation/20071012/index.html. German.
  33. Law on Cancer Registration (LCR) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 1 January 2020 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/de/classified-compilation/20121618/index.html. German.
  34. Federal Statistical Act (FSA) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 1 January 2020 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/en/classified-compilation/19920252/index.html.
  35. Federal Act on Human Genetic Testing (HGTA) [Internet]. The Federal Assembly of the Swiss Confederation. Status on the 1 January 2014 [cited 2020 March 30]. Available from: https://www.admin.ch/opc/en/classified-compilation/20011087/index.html.
  36. De Pietro C, Francetic I. E-health in Switzerland: The laborious adoption of the federal law on electronic health records (EHR) and health information exchange (HIE) networks. Health Policy. 2018;122(2):69–74. doi:.https://doi.org/10.1016/j.healthpol.2017.11.005
  37. Swiss Criminal Code (CC). Status as of 1 February 2020. Available at: https://www.admin.ch/opc/en/classified-compilation/19370083/index.html.
  38. Botschaft zum Bundesgesetz über die Forschung am Menschen vom 21. Oktober 2009. BBI. 2009:8045–61. Available from: https://www.admin.ch/opc/de/federal-gazette/2009/8045.pdf. German.
  39. Rütsche B. Die Neuordnung des Schweizerischen Humanforschungsrechts: Normgenese als kritische Rezeption internationaler Vorgaben. Zeitung für Schweizerisches Recht. 2010;129-I(4):391–411. [German.].
  40. Noack T, Hoffstadt A, Zotz N. Therapeutische und nicht-therapeutische Forschung. In: Lenk C, Duttge G, Fangerau H, editors. Handbuch Ethik und Recht der Forschung am Menschen. Berlin, Heidelberg: Springer; 2014. p. 273.276. doi: https://doi.org/10.1007/978-3-642-35099-3_45. German.
  41. von Kielmansegg S. Datenschutz in der Forschung am Menschen. In: Lenk C, Duttge G, Fangerau H, editors. Handbuch Ethik und Recht der Forschung am Menschen. Berlin, Heidelberg: Springer; 2014. p. 121-128. doi: https://doi.org/10.1007/978-3-642-35099-3_19. German.
  42. Eidgenössische Departement des Innern EDI. (2006) Erläuternder bericht vorentwurf HFG. Available at: https://www.admin.ch/ch/d/gg/pc/documents/1266/HFG_Erlaeuterungen_d.pdf. German.
  43. Vokinger Kerstin N. Gesundheitsdaten im digitalen Zeitalter. Jusletter. 27 January 2020. German.
  44. Rudin B, Baeriswyl B. Praxiskommentar zum Informations- und Datenschutzgesetz des Kantons Basel-Stadt (IDG). Zürich: Schulthess Verlag; 2014. German.
  45. Schweizerische Akademie der Medizinischen Wissenschaften (SAMW) [Internet]. Stärkung der Versorgungsforschung in der Schweiz. Swiss Academies Reports, Basel 2014. [cited 2020 March 30]. Available from: http://www.akademien-schweiz.ch/dms/publikationen/09/report0901.pdf. German.
  46. Rütsche B. Datenschutzaufsicht über Spitäler. Digma. 2012;12(4):176–81. [German.].
  47. Szucs TD, Bräm C. Gesundheitsforschung mit Versicherungsdaten. Jusletter. 27 January 2020. German.
  48. McLennan S, Maritz R, Shaw D, Elger B. The inconsistent ethical oversight of healthcare quality data in Switzerland. Swiss Med Wkly. 2018;148:w14637. doi:.https://doi.org/10.4414/smw.2018.14637
  49. Vayena E. Ein ethischer Rahmen für den Austausch von Gesundheitsdaten. Schweiz Arzteztg. 2017;98(36):1138–40. doi:. [German.].https://doi.org/10.4414/saez.2017.05941
  50. Miller FG. Research on medical records without informed consent. J Law Med Ethics. 2008;36(3):560–6. doi:.https://doi.org/10.1111/j.1748-720X.2008.304.x
  51. Townend D. Privacy, health insurance, and medical research: tensions raised by European data protection law. New Genet Soc. 2010;29(4):477–93. doi:.https://doi.org/10.1080/14636778.2010.528194
  52. Ludvigsson JF, Håberg SE, Knudsen GP, Lafolie P, Zoega H, Sarkkola C, et al. Ethical aspects of registry-based research in the Nordic countries. Clin Epidemiol. 2015;7:491–508. doi:.https://doi.org/10.2147/CLEP.S90589
  53. Nordfalk F, Hoeyer K. The rise and fall of an opt-out system. Scand J Public Health. Scand J Public Health. 2020;48(4):400–4. doi:.https://doi.org/10.1177/1403494817745189
  54. Ehrenzeller B, Mastronardi P, Schweizer RJ, Vallender KA. Die Schweizerische Bundesverfassung. Kommentar. Zürich: Schulthess Verlag; 2002. German.
  55. Gächter T, Egli P. Informationsaustausch im Umfeld der Sozialhilfe, Jusletter. 6 September 2010. German.
  56. Sprecher F. Sozialpflichtigkeit von Gesundheitsdaten. Digma. 2019;19(4):184–9. [German.].
  57. Roth JA, Goebel N, Sakoparnig T, Neubauer S, Kuenzel-Pawlik E, Gerber M, et al.; PATREC Study Group. Secondary use of routine data in hospitals: description of a scalable analytical platform based on a business intelligence system. JAMIA Open. 2018;1(2):172–7. doi:.https://doi.org/10.1093/jamiaopen/ooy039
  58. Willers J. Development of a governance and quality management system for exchange of patient related data for research purpose. 2018. [cited 2020 March 30]. Available from: https://sphn.ch/wp-content/uploads/2019/11/2017DEV02_Willers_Lay_Summaries_20180117.pdf.
  59. Martani A, Geneviève LD, Pauli-Magnus C, McLennan S, Elger BS. Regulating the Secondary Use of Data for Research: Arguments Against Genetic Exceptionalism. Front Genet. 2019;10:1254. doi:.https://doi.org/10.3389/fgene.2019.01254
  60. Bundesamt für Gesundheit [Internet]. Humanforschungsgesetz (HFG): Ergebnisse der Evaluation und weiteres Vorgehen. Bern: 6 December 2019. [cited 2020 March 30]. Available from: https://www.bag.admin.ch/dam/bag/de/dokumente/biomed/forschung-am-menschen/evaluationhfg/evaluation-hfg-bericht-bag.pdf.download.pdf/Bericht_des_BAG_Ergebnisse_und_Empfehlungen_EvalHFG_d.pdf. German.
  61. Thouvenin F. Forschung im Spannungsfeld von Big Data und Datenschutzrecht: eine Problemskizze. In: Boehme-Nessler V, Rehbinder M, editors. Big Data: Ende des Datenschutzes? Gedächtnisschrift für Martin Usteri. Bern: Stämpfli Verlag; 2017. P. 27-53. German.
  62. SPHN/BioMedIT Data Privacy and IT Security Training [at the bottom of the page] [Internet]. BioMedIT Project [Cited 2020 Jul 6]. Available from: https://sphn.ch/network/projects/biomedit/.
  63. Privatim. Resolution: Fehlende Ressourcen bei den Datenschutzbehörden [Internet]. [Cited 2020 Jul 6]. Available from: https://www.privatim.ch/de/resolution-fehlende-ressourcen-bei-den-datenschutzbehorden/. German.

Most read articles by the same author(s)