Health Data Governance

Privacy, Monitoring and Research

image of Health Data Governance

All countries are investing in health data. There are however significant cross-country differences in data availability and use. Some countries stand out for their innovative practices enabling privacy-protective data use while others are falling behind with insufficient data and restrictions that limit access to and use of data, even by government itself. Countries that develop a data governance framework that enables privacy-protective data use will not only have the information needed to promote quality, efficiency and performance in their health systems, they will become a more attractive centre for medical research. After examining the current situation in OECD countries, a multi-disciplinary advisory panel of experts identified eight key data governance mechanisms to maximise benefits to patients and to societies from the collection, linkage and analysis of health data and to, at the same time, minimise risks to the privacy of patients and to the security of health data. These mechanisms include coordinated development of high-value, privacy-protective health information systems, legislation that permits privacy-protective data use, open and transparent public communication, accreditation or certification of health data processors, transparent and fair project approval processes, data de-identification and data security practices that meet legal requirements and public expectations without compromising data utility and a process to continually assess and renew the data governance framework as new data and new risks emerge.



HCQI Expert Interviews on Health Information Infrastructure

Interviews with contact persons identified through the country survey as experts in dimensions of data governance including legal frameworks for health information privacy protection, project approval processes, data security mechanisms, data access mechanisms. Experts were asked about the practices that are followed to initiate projects, approve projects, protect data security, provide access to data, supervise access to data, train staff and researchers, and assess results. They were also asked about efforts to centralise services for data processing, access and project approval and for their views on progress and the outlook for the future. Sets of interview questions tailored to the expertise of each type of expert to be interviewed and were developed with the advice of the APHII in September 2013. Interviews took place by telephone from November 2013 through to July 2014.


This is a required field
Please enter a valid email address
Approval was a Success
Invalid data
An Error Occurred
Approval was partially successful, following selected items could not be processed due to error