Using Software Agents to Preserve Individual Health Data Confidentiality in Micro-scale Geographical Analyses
Overview
Affiliations
Confidentiality constraints often preclude the release of disaggregate data about individuals, which limits the types and accuracy of the results of geographical health analyses that could be done. Access to individually geocoded (disaggregate) data often involves lengthy and cumbersome procedures through review boards and committees for approval (and sometimes is not possible). Moreover, current data confidentiality-preserving solutions compatible with fine-level spatial analyses either lack flexibility or yield less than optimal results (because of confidentiality-preserving changes they introduce to disaggregate data), or both. In this paper, we present a simulation case study to illustrate how some analyses cannot be (or will suffer if) done on aggregate data. We then quickly review some existing data confidentiality-preserving techniques, and move on to explore a solution based on software agents with the potential of providing flexible, controlled (software-only) access to unmodified confidential disaggregate data and returning only results that do not expose any person-identifiable details. The solution is thus appropriate for micro-scale geographical analyses where no person-identifiable details are required in the final results (i.e., only aggregate results are needed). Our proposed software agent technique also enables post-coordinated analyses to be designed and carried out on the confidential database(s), as needed, compared to a more conventional solution based on the Web Services model that would only support a rigid, pre-coordinated (pre-determined) and rather limited set of analyses. The paper also provides an exploratory discussion of mobility, security, and trust issues associated with software agents, as well as possible directions/solutions to address these issues, including the use of virtual organizations. Successful partnerships between stakeholder organizations, proper collaboration agreements, clear policies, and unambiguous interpretations of laws and regulations are also much needed to support and ensure the success of any technological solution.
Fox L, Miller W, Gesink D, Doherty I, Serre M PLoS Comput Biol. 2024; 20(10):e1012464.
PMID: 39480897 PMC: 11774488. DOI: 10.1371/journal.pcbi.1012464.
A Bayesian maximum entropy model for predicting tsetse ecological distributions.
Fox L, Peter B, Frake A, Messina J Int J Health Geogr. 2023; 22(1):31.
PMID: 37974150 PMC: 10655428. DOI: 10.1186/s12942-023-00349-0.
Privacy-by-Design Environments for Large-Scale Health Research and Federated Learning from Data.
Zhang P, Kamel Boulos M Int J Environ Res Public Health. 2022; 19(19).
PMID: 36231175 PMC: 9565554. DOI: 10.3390/ijerph191911876.
Reconciling public health common good and individual privacy: new methods and issues in geoprivacy.
Kamel Boulos M, Kwan M, El Emam K, Chung A, Gao S, Richardson D Int J Health Geogr. 2022; 21(1):1.
PMID: 35045864 PMC: 8767534. DOI: 10.1186/s12942-022-00300-9.
Ajayakumar J, Curtis A, Curtis J Int J Health Geogr. 2019; 18(1):30.
PMID: 31864350 PMC: 6925902. DOI: 10.1186/s12942-019-0194-8.