Avoid common mistakes on your manuscript.
We appreciate the scholarly attention that our communication and the Salzburg Intensive Care database (SICdb) have received, as demonstrated by the correspondence from Thoral and Elbers [1, 2].
We would like to extend our congratulations to the authors for their creation of AmsterdamUMCdb and their previous publications on the regulatory challenges of sharing intensive care databases within the context of Regulation (EU) 2016/679, the European General Data Protection Regulation (GDPR) [3]. The preliminary strategizing, establishment of a legal structure, and intensive debates greatly facilitated the conception of the SICdb [4].
For a large critical care dataset, achieving full anonymization without the theoretical possibility to identify subjects with a critical piece of information based on technical deidentification measures is mathematically not feasible without significantly compromising its scientific value. The widespread use of k-anonymity and l-diversity naturally decreases the granularity of the data [5]. In the case of AmsterdamUMCdb, k-anonymity and l-diversity were applied to a limited set of parameters [4]. Ideally, no individual value nor any combination of parameters should be unique. Given the scale and magnitude of individual values within a comprehensive critical care dataset, avoiding any uniqueness becomes impossible or would make the dataset useless. However, both SICdb and AmsterdamUMCdb may still be considered anonymous from a sole legal standpoint. According to recital 26 of the GDPR, the term anonymous refers to information that is processed in such a manner that data subjects are no longer identifiable. The recital further states that to determine whether a natural person is identifiable, account should be taken of all the means reasonably likely to be used, such as the costs of and the amount of time required for identification. For both, SICdb and AmsterdamUMCdb, multiple state-of-the-art safety measures have been implemented to technically reduce the risk of reidentification. Additionally, strict safeguards were defined, which is true for both databases. These safeguards include a proof of research, ethics and compliance training, and requires legitimate interests of the end user, which is solely limited to medical research. As a result, the likelihood of reidentification is deemed to be remote. Consequently, SICdb can be considered fully anonymous and compliant with GDPR.
That being said, it should be noted that deidentification will not exempt researchers from the ambit and principles of the GDPR altogether, in which we fully agree with Thoral and Elbers. The GDPR ultimately also reminds every individual researcher that they are working with large numbers of data related to individual patients, which must be treated with the utmost care at all times.
In light of the accelerating pace of data science and artificial intelligence, the importance of responsible sharing of intensive care data is likely to heighten. This paradigm shift ushers in significant technical, legal, and ethical challenges and responsibilities. As such, we would greatly advocate for a cooperative initiative amongst European medical, legal, and patient communities to deliver additional guidance on responsible medical data sharing practices.
References
Thoral P, Elbers P (2023) Encouraging responsible intensive care data sharing. Intensive Care Med. https://doi.org/10.1007/s00134-023-07113-9
Rodemund N, Wernly B, Jung C et al (2023) The Salzburg intensive care database (SICdb): an openly available critical care dataset. Intensive Care Med. https://doi.org/10.1007/s00134-023-07046-3
EU-GDPR (2018) EU General Data Protection Regulation (EU-GDPR). Offi J Eur Union
Thoral PJ, Peppink JM, Driessen RH et al (2021) Sharing ICU patient data responsibly under the society of critical care medicine/European society of intensive care medicine joint data science collaboration: the Amsterdam university medical centers database (AmsterdamUMCdb) example*. Crit Care Med 49:e563–e577. https://doi.org/10.1097/CCM.0000000000004916
Machanavajjhala A, Gehrke J, Kifer D, Venkitasubramaniam M (2006) L-diversity: privacy beyond k-anonymity. 22nd International conference on data engineering (ICDE’06). IEEE, pp 24–32
Funding
Open Access funding enabled and organized by Projekt DEAL.
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Conflicts of interest
On behalf of all authors, the corresponding author states that there is no conflict of interest.
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
This comment refers to the article available online at https://doi.org/10.1007/s00134-023-07046-3.
Rights and permissions
Open Access This article is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License, which permits any non-commercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article's Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article's Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by-nc/4.0/.
About this article
Cite this article
Rodemund, N., Wernly, B., Jung, C. et al. Striking the balance: privacy protection and data accessibility in critical care research. Intensive Care Med 49, 1029–1030 (2023). https://doi.org/10.1007/s00134-023-07153-1
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s00134-023-07153-1