The GDPR and the research exemption: considerations on the necessary safeguards for research biobanks

Staunton, Ciara; Slokenberga, Santa; Mascalzoni, Deborah

The GDPR and the research exemption: considerations on the necessary safeguards for research biobanks

Mark

Staunton, Ciara ; Slokenberga, Santa ^LU

and Mascalzoni, Deborah (2019) In European Journal of Human Genetics

Abstract: The General Data Protection Regulation (GDPR) came into force in May 2018. The aspiration of providing for a high level of protection to individuals’ personal data risked placing considerable constraints on scientific research, which was contrary to various research traditions across the EU. Therefore, along with the set of carefully outlined data subjects’ rights, the GDPR provides for a two-level framework to enable derogations from these rights when scientific research is concerned. First, by directly invoking provisions of the GDPR on a condition that safeguards that must include ‘technical and organisational measures’ are in place and second, through the Member State law. Although these derogations are allowed in the name of... (More); The General Data Protection Regulation (GDPR) came into force in May 2018. The aspiration of providing for a high level of protection to individuals’ personal data risked placing considerable constraints on scientific research, which was contrary to various research traditions across the EU. Therefore, along with the set of carefully outlined data subjects’ rights, the GDPR provides for a two-level framework to enable derogations from these rights when scientific research is concerned. First, by directly invoking provisions of the GDPR on a condition that safeguards that must include ‘technical and organisational measures’ are in place and second, through the Member State law. Although these derogations are allowed in the name of scientific research, they can simultaneously be challenging in light of the ethical requirements and well-established standards in biobanking that have been set forth in various research-related soft legal tools, international treaties and other legal instruments. In this article, we review such soft legal tools, international treaties and other legal instruments that regulate the use of health research data. We report on the results of this review, and analyse the rights contained within the GDPR and Article 89 of the GDPR vis-à-vis these instruments. These instruments were also reviewed to provide guidance on possible safeguards that should be followed when implementing any derogations. To conclude, we will offer some commentary on limits of the derogations under the GDPR and appropriate safeguards to ensure compliance with standard ethical requirements. (Less)

Please use this url to cite or link to this publication: https://lup.lub.lu.se/record/83190d83-b094-450a-ae9e-b603fc2a711f

author

Staunton, Ciara ; Slokenberga, Santa ^LU

and Mascalzoni, Deborah

organization

Department of Law

publishing date

2019

type

Contribution to journal

publication status

published

subject

Law and Society

keywords

Medical law, GDPR, Medicinsk rätt, GDPR

in

European Journal of Human Genetics

publisher

Nature Publishing Group

external identifiers

scopus:85064618520
pmid:30996335

ISSN

1476-5438

DOI

10.1038/s41431-019-0386-5

language

English

LU publication?

yes

id

83190d83-b094-450a-ae9e-b603fc2a711f

date added to LUP

2019-03-06 12:23:29

date last changed

2022-04-25 21:26:34

@article{83190d83-b094-450a-ae9e-b603fc2a711f,
  abstract     = {{The General Data Protection Regulation (GDPR) came into force in May 2018. The aspiration of providing for a high level of protection to individuals’ personal data risked placing considerable constraints on scientific research, which was contrary to various research traditions across the EU. Therefore, along with the set of carefully outlined data subjects’ rights, the GDPR provides for a two-level framework to enable derogations from these rights when scientific research is concerned. First, by directly invoking provisions of the GDPR on a condition that safeguards that must include ‘technical and organisational measures’ are in place and second, through the Member State law. Although these derogations are allowed in the name of scientific research, they can simultaneously be challenging in light of the ethical requirements and well-established standards in biobanking that have been set forth in various research-related soft legal tools, international treaties and other legal instruments. In this article, we review such soft legal tools, international treaties and other legal instruments that regulate the use of health research data. We report on the results of this review, and analyse the rights contained within the GDPR and Article 89 of the GDPR vis-à-vis these instruments. These instruments were also reviewed to provide guidance on possible safeguards that should be followed when implementing any derogations. To conclude, we will offer some commentary on limits of the derogations under the GDPR and appropriate safeguards to ensure compliance with standard ethical requirements.}},
  author       = {{Staunton, Ciara and Slokenberga, Santa and Mascalzoni, Deborah}},
  issn         = {{1476-5438}},
  keywords     = {{Medical law; GDPR; Medicinsk rätt; GDPR}},
  language     = {{eng}},
  publisher    = {{Nature Publishing Group}},
  series       = {{European Journal of Human Genetics}},
  title        = {{The GDPR and the research exemption: considerations on the necessary safeguards for research biobanks}},
  url          = {{http://dx.doi.org/10.1038/s41431-019-0386-5}},
  doi          = {{10.1038/s41431-019-0386-5}},
  year         = {{2019}},
}

Lund University Publications

LUND UNIVERSITY LIBRARIES

The GDPR and the research exemption: considerations on the necessary safeguards for research biobanks