3.2 Protecting privacy and confidentiality
Data should remain as disaggregated as possible, but with measures to ensure that privacy and confidentiality are maintained. Privacy and confidentiality can be maintained by de-identifying the data (e.g. removing names, phone numbers and street addresses from the main database) and implementing a permission system that controls access to the data. For example, a doctor may have access to confidential information including names and contact details. By contrast, the data analyst or hospital administrator may only have access to the patient numeric identifier (
3.1 Providing a single source of validated information