Your search keyword '"El-Emam, Khaled"' showing total 17 results

1. A method for managing re-identification risk from small geographic areas in Canada.

Author

El Emam, Khaled, Brown, Ann, AbdelMalik, Philip, Neisa, Angelica, Walker, Mark, Bottomley, Jim, and Roffey, Tyson

Subjects

*NONDISCLOSURE, *CLINICAL medicine -- Hospital reports, *MEDICAL records, *CENSUS

Abstract

Background: A common disclosure control practice for health datasets is to identify small geographic areas and either suppress records from these small areas or aggregate them into larger ones. A recent study provided a method for deciding when an area is too small based on the uniqueness criterion. The uniqueness criterion stipulates that an the area is no longer too small when the proportion of unique individuals on the relevant variables (the quasi-identifiers) approaches zero. However, using a uniqueness value of zero is quite a stringent threshold, and is only suitable when the risks from data disclosure are quite high. Other uniqueness thresholds that have been proposed for health data are 5% and 20%. Methods: We estimated uniqueness for urban Forward Sortation Areas (FSAs) by using the 2001 long form Canadian census data representing 20% of the population. We then constructed two logistic regression models to predict when the uniqueness is greater than the 5% and 20% thresholds, and validated their predictive accuracy using 10-fold cross-validation. Predictor variables included the population size of the FSA and the maximum number of possible values on the quasi-identifiers (the number of equivalence classes). Results: All model parameters were significant and the models had very high prediction accuracy, with specificity above 0.9, and sensitivity at 0.87 and 0.74 for the 5% and 20% threshold models respectively. The application of the models was illustrated with an analysis of the Ontario newborn registry and an emergency department dataset. At the higher thresholds considerably fewer records compared to the 0% threshold would be considered to be in small areas and therefore undergo disclosure control actions. We have also included concrete guidance for data custodians in deciding which one of the three uniqueness thresholds to use (0%, 5%, 20%), depending on the mitigating controls that the data recipients have in place, the potential invasion of privacy if the data is disclosed, and the motives and capacity of the data recipient to re-identify the data. Conclusion: The models we developed can be used to manage the re-identification risk from small geographic areas. Being able to choose among three possible thresholds, a data custodian can adjust the definition of "small geographic area" to the nature of the data and recipient. [ABSTRACT FROM AUTHOR]

Published

2010

2. Software Engineering R&D group at CRIM.

Author

Briand, Lionel and El Emam, Khaled

Subjects

SOFTWARE engineering, RESEARCH, COMPUTER software development, COMPUTER software quality control, COMPUTER systems

Abstract

Focuses on the software engineering research & development (R&D) group at the Centre de recherche informatique de Montreal in Quebec. Adoption of the Quality Improvement Paradigm (QIP) by the R&D group; Steps for the implementation of the QIP; Formation of process improvement team.

Published

1996

3. The Use of Electronic Data Capture Tools in Clinical Trials: Web-Survey of 259 Canadian Trials.

Author

El Emam, Khaled, Jonker, Elizabeth, Sampson, Margaret, Krleža-Jeric, Karmela, and Neisa, Angelica

Subjects

CLINICAL trials, DIFFUSION of innovations, INTERNET surveys, AUTOMATIC data collection systems, WEBSITES

Abstract

Background: Electronic data capture (EDC) tools provide automated support for data collection, reporting, query resolution, randomization, and validation, among other features, for clinical trials. There is a trend toward greater adoption of EDC tools in clinical trials, but there is also uncertainty about how many trials are actually using this technology in practice. A systematic review of EDC adoption surveys conducted up to 2007 concluded that only 20% of trials are using EDC systems, but previous surveys had weaknesses. Objectives: Our primary objective was to estimate the proportion of phase II/III/IV Canadian clinical trials that used an EDC system in 2006 and 2007. The secondary objectives were to investigate the factors that can have an impact on adoption and to develop a scale to assess the extent of sophistication of EDC systems. Methods: We conducted a Web survey to estimate the proportion of trials that were using an EDC system. The survey was sent to the Canadian site coordinators for 331 trials. We also developed and validated a scale using Guttman scaling to assess the extent of sophistication of EDC systems. Trials using EDC were compared by the level of sophistication of their systems. Results: We had a 78.2% response rate (259/331) for the survey. It is estimated that 41% (95% CI 37.5%-44%) of clinical trials were using an EDC system. Trials funded by academic institutions, government, and foundations were less likely to use an EDC system compared to those sponsored by industry. Also, larger trials tended to be more likely to adopt EDC. The EDC sophistication scale had six levels and a coefficient of reproducibility of 0.901 (P<.001) and a coefficient of scalability of 0.79. There was no difference in sophistication based on the funding source, but pediatric trials were likely to use a more sophisticated EDC system. Conclusion: The adoption of EDC systems in clinical trials in Canada is higher than the literature indicated: a large proportion of clinical trials in Canada use some form of automated data capture system. To inform future adoption, research should gather stronger evidence on the costs and benefits of using different EDC systems. [ABSTRACT FROM AUTHOR]

Published

2009

4. An Evaluation of Personal Health Information Remnants in Second-Hand Personal Computer Disk Drives.

Author

El Emam, Khaled, Neri, Emilio, and Jonker, Elizabeth

Subjects

MEDICAL record access control, LEAKS (Disclosure of information), INFORMATION resources management, DATA protection, DATA security, DATA disk drives, USED computers, PREVENTION

Abstract

Background: The public is concerned about the privacy of their health information, especially as more of it is collected, stored, and exchanged electronically. But we do not know the extent of leakage of personal health information (PHI) from data custodians. One form of data leakage is through computer equipment that is sold, donated, lost, or stolen from health care facilities or individuals who work at these facilities. Previous studies have shown that it is possible to get sensitive personal information (PI) from second-hand disk drives. However, there have been no studies investigating the leakage of PHI in this way. Objectives: The aim of the study was to determine the extent to which PHI can be obtained from second-hand computer disk drives. Methods: A list of Canadian vendors selling second-hand computer equipment was constructed, and we systematically went through the shuffled list and attempted to purchase used disk drives from the vendors. Sixty functional disk drives were purchased and analyzed for data remnants containing PHI using computer forensic tools. Results: It was possible to recover PI from 65% (95% CI: 52%-76%) of the drives. In total, 10% (95% CI: 5%-20%) had PHI on people other than the owner(s) of the drive, and 8% (95% CI: 7%-24%) had PHI on the owner(s) of the drive. Some of the PHI included very sensitive mental health information on a large number of people. Conclusions: There is a strong need for health care data custodians to either encrypt all computers that can hold PHI on their clients or patients, including those used by employees and subcontractors in their homes, or to ensure that their computers are destroyed rather than finding a second life in the used computer market. [ABSTRACT FROM AUTHOR]

Published

2007

5. Evaluating Common De-Identification Heuristics for Personal Health Information.

Author

El Emam, Khaled, Jabbouri, Sam, Sams, Scott, Drouet, Youenn, and Power, Michael

Subjects

ELECTRONIC health records, HEURISTIC programming, DATA protection, IDENTIFICATION

Abstract

Background: With the growing adoption of electronic medical records, there are increasing demands for the use of this electronic clinical data in observational research. A frequent ethics board requirement for such secondary use of personal health information in observational research is that the data be de-identified. De-identification heuristics are provided in the Health Insurance Portability and Accountability Act Privacy Rule, funding agency and professional association privacy guidelines, and common practice. Objective: The aim of the study was to evaluate whether the re-identification risks due to record linkage are sufficiently low when following common de-identification heuristics and whether the risk is stable across sample sizes and data sets. Methods: Two methods were followed to construct identification data sets. Re-identification attacks were simulated on these. For each data set we varied the sample size down to 30 individuals, and for each sample size evaluated the risk of re-identification for all combinations of quasi-identifiers. The combinations of quasi-identifiers that were low risk more than 50% of the time were considered stable. Results: The identification data sets we were able to construct were the list of all physicians and the list of all lawyers registered in Ontario, using 1% sampling fractions. The quasi-identifiers of region, gender, and year of birth were found to be low risk more than 50% of the time across both data sets. The combination of gender and region was also found to be low risk more than 50% of the time. We were not able to create an identification data set for the whole population. Conclusions: Existing Canadian federal and provincial privacy laws help explain why it is difficult to create an identification data set for the whole population. That such examples of high re-identification risk exist for mainstream professions makes a strong case for not disclosing the high-risk variables and their combinations identified here. For professional subpopulations with published membership lists, many variables often needed by researchers would have to be excluded or generalized to ensure consistently low re-identification risk. Data custodians and researchers need to consider other statistical disclosure techniques for protecting privacy. [ABSTRACT FROM AUTHOR]

Published

2006

6. Canadian Association of Radiologists White Paper on De-identification of Medical Imaging: Part 2, Practical Considerations.

Author

Parker, William, Jaremko, Jacob L., Cicero, Mark, Azar, Marleine, El-Emam, Khaled, Gray, Bruce G., Hurrell, Casey, Lavoie-Cardinal, Flavie, Desjardins, Benoit, Lum, Andrea, Sheremeta, Lori, Lee, Emil, Reinhold, Caroline, Tang, An, and Bromwich, Rebecca

Subjects

*ALGORITHMS, *ARTIFICIAL intelligence, *DATA encryption, *DATABASE management, *DIAGNOSTIC imaging, *HEALTH services accessibility, *MACHINE learning, *MEDICAL protocols, *DICOM (Computer network protocol), *COVID-19 pandemic

Abstract

The application of big data, radiomics, machine learning, and artificial intelligence (AI) algorithms in radiology requires access to large data sets containing personal health information. Because machine learning projects often require collaboration between different sites or data transfer to a third party, precautions are required to safeguard patient privacy. Safety measures are required to prevent inadvertent access to and transfer of identifiable information. The Canadian Association of Radiologists (CAR) is the national voice of radiology committed to promoting the highest standards in patient-centered imaging, lifelong learning, and research. The CAR has created an AI Ethical and Legal standing committee with the mandate to guide the medical imaging community in terms of best practices in data management, access to health care data, de-identification, and accountability practices. Part 2 of this article will inform CAR members on the practical aspects of medical imaging de-identification, strengths and limitations of de-identification approaches, list of de-identification software and tools available, and perspectives on future directions. [ABSTRACT FROM AUTHOR]

Published

2021

7. Canadian Association of Radiologists White Paper on De-Identification of Medical Imaging: Part 1, General Principles.

Author

Parker, William, Jaremko, Jacob L., Cicero, Mark, Azar, Marleine, El-Emam, Khaled, Gray, Bruce G., Hurrell, Casey, Lavoie-Cardinal, Flavie, Desjardins, Benoit, Lum, Andrea, Sheremeta, Lori, Lee, Emil, Reinhold, Caroline, Tang, An, and Bromwich, Rebecca

Subjects

*RIGHT of privacy, *MEDICAL ethics laws, *DATABASE management standards, *ARTIFICIAL intelligence, *DATA encryption, *HEALTH, *IDENTIFICATION, *DIGITAL image processing, *INFORMATION resources management, *PATIENTS, *RESPONSIBILITY, *INFORMATION resources, *ACCESS to information

Abstract

The application of big data, radiomics, machine learning, and artificial intelligence (AI) algorithms in radiology requires access to large data sets containing personal health information. Because machine learning projects often require collaboration between different sites or data transfer to a third party, precautions are required to safeguard patient privacy. Safety measures are required to prevent inadvertent access to and transfer of identifiable information. The Canadian Association of Radiologists (CAR) is the national voice of radiology committed to promoting the highest standards in patient-centered imaging, lifelong learning, and research. The CAR has created an AI Ethical and Legal standing committee with the mandate to guide the medical imaging community in terms of best practices in data management, access to health care data, de-identification, and accountability practices. Part 1 of this article will inform CAR members on principles of de-identification, pseudonymization, encryption, direct and indirect identifiers, k-anonymization, risks of reidentification, implementations, data set release models, and validation of AI algorithms, with a view to developing appropriate standards to safeguard patient information effectively. [ABSTRACT FROM AUTHOR]

Published

2021

8. A comparison of synthetic data generation and federated analysis for enabling international evaluations of cardiovascular health.

Author

Azizi Z, Lindner S, Shiba Y, Raparelli V, Norris CM, Kublickiene K, Herrero MT, Kautzky-Willer A, Klimek P, Gisinger T, Pilote L, and El Emam K

Subjects

Humans, Canada, Austria, Disclosure, Privacy, Cardiovascular System

Abstract

Sharing health data for research purposes across international jurisdictions has been a challenge due to privacy concerns. Two privacy enhancing technologies that can enable such sharing are synthetic data generation (SDG) and federated analysis, but their relative strengths and weaknesses have not been evaluated thus far. In this study we compared SDG with federated analysis to enable such international comparative studies. The objective of the analysis was to assess country-level differences in the role of sex on cardiovascular health (CVH) using a pooled dataset of Canadian and Austrian individuals. The Canadian data was synthesized and sent to the Austrian team for analysis. The utility of the pooled (synthetic Canadian + real Austrian) dataset was evaluated by comparing the regression results from the two approaches. The privacy of the Canadian synthetic data was assessed using a membership disclosure test which showed an F1 score of 0.001, indicating low privacy risk. The outcome variable of interest was CVH, calculated through a modified CANHEART index. The main and interaction effect parameter estimates of the federated and pooled analyses were consistent and directionally the same. It took approximately one month to set up the synthetic data generation platform and generate the synthetic data, whereas it took over 1.5 years to set up the federated analysis system. Synthetic data generation can be an efficient and effective tool for enabling multi-jurisdictional studies while addressing privacy concerns., (© 2023. The Author(s).)

Published

2023

9. Sex and gender aspects in diabetes mellitus: Focus on access to health care and cardiovascular outcomes.

Author

Gisinger T, Azizi Z, Alipour P, Harreiter J, Raparelli V, Kublickiene K, Herrero MT, Norris CM, El Emam K, Pilote L, and Kautzky-Willer A

Subjects

Male, Humans, Female, Canada, Surveys and Questionnaires, Health Services Accessibility, Diabetes Mellitus epidemiology, Stroke

Abstract

Aims: The aim of this study was to elucidate whether sex and gender factors influence access to health care and/or are associated with cardiovascular (CV) outcomes of individuals with diabetes mellitus (DM) across different countries., Methods: Using data from the Canadian Community Health Survey (8.4% of respondent reporting DM) and the European Health Interview Survey (7.3% of respondents reporting DM), were analyzed. Self-reported sex and a composite measure of socio-cultural gender was constructed (range: 0-1; higher score represent participants who reported more characteristics traditionally ascribed to women). For the purposes of analyses the Gender Inequality Index (GII) was used as a country level measure of institutionalized gender., Results: Canadian females with DM were more likely to undergo HbA1c monitoring compared to males (OR = 1.26, 95% CI: 1.01-1.58), while conversely in the European cohort females with DM were less likely to have their blood sugar measured compared to males (OR = 0.88, 95% CI: 0.79-0.99). A higher gender score in both cohorts was associated with less frequent diabetes monitoring. Additionally, independent of sex, higher gender scores were associated with higher prevalence of self-reported heart disease, stroke, and hospitalization in all countries albeit European countries with medium-high GII, conferred a higher risk of all outcomes and hospitalization rates than low GII countries., Conclusion: Regardless of sex, individuals with DM who reported characteristics typically ascribed to women and those living in countries with greater gender inequity for women exhibited poorer diabetes care and greater risk of CV outcomes and hospitalizations., Competing Interests: KE was employed by Replica Analytics Ltd. The remaining authors declare that the research was conducted in the absence of any commercial or financial relationships that could be construed as a potential conflict of interest., (Copyright © 2023 Gisinger, Azizi, Alipour, Harreiter, Raparelli, Kublickiene, Herrero, Norris, El Emam, Pilote and Kautzky-Willer.)

Published

2023

10. Evaluating the re-identification risk of a clinical study report anonymized under EMA Policy 0070 and Health Canada Regulations.

Author

Branson J, Good N, Chen JW, Monge W, Probst C, and El Emam K

Subjects

Canada, Electronic Health Records organization & administration, Humans, Clinical Trials as Topic standards, Data Anonymization standards, Electronic Health Records standards, Privacy, Research Design standards

Abstract

Background: Regulatory agencies, such as the European Medicines Agency and Health Canada, are requiring the public sharing of clinical trial reports that are used to make drug approval decisions. Both agencies have provided guidance for the quantitative anonymization of these clinical reports before they are shared. There is limited empirical information on the effectiveness of this approach in protecting patient privacy for clinical trial data., Methods: In this paper we empirically test the hypothesis that when these guidelines are implemented in practice, they provide adequate privacy protection to patients. An anonymized clinical study report for a trial on a non-steroidal anti-inflammatory drug that is sold as a prescription eye drop was subjected to re-identification. The target was 500 patients in the USA. Only suspected matches to real identities were reported., Results: Six suspected matches with low confidence scores were identified. Each suspected match took 24.2 h of effort. Social media and death records provided the most useful information for getting the suspected matches., Conclusions: These results suggest that the anonymization guidance from these agencies can provide adequate privacy protection for patients, and the modes of attack can inform further refinements of the methodologies they recommend in their guidance for manufacturers.

Published

2020

11. Anonymising and sharing individual patient data.

Author

El Emam K, Rodgers S, and Malin B

Subjects

Biomedical Research, Canada, Data Collection legislation & jurisprudence, European Union, Humans, Medical Records, United States, Confidentiality legislation & jurisprudence, Data Collection methods, Information Dissemination legislation & jurisprudence

Published

2015

12. De-identifying a public use microdata file from the Canadian national discharge abstract database.

Author

El Emam K, Paton D, Dankar F, and Koru G

Subjects

Canada, Humans, Information Storage and Retrieval, Length of Stay, Algorithms, Databases, Factual, Patient Discharge statistics & numerical data

Abstract

Background: The Canadian Institute for Health Information (CIHI) collects hospital discharge abstract data (DAD) from Canadian provinces and territories. There are many demands for the disclosure of this data for research and analysis to inform policy making. To expedite the disclosure of data for some of these purposes, the construction of a DAD public use microdata file (PUMF) was considered. Such purposes include: confirming some published results, providing broader feedback to CIHI to improve data quality, training students and fellows, providing an easily accessible data set for researchers to prepare for analyses on the full DAD data set, and serve as a large health data set for computer scientists and statisticians to evaluate analysis and data mining techniques. The objective of this study was to measure the probability of re-identification for records in a PUMF, and to de-identify a national DAD PUMF consisting of 10% of records., Methods: Plausible attacks on a PUMF were evaluated. Based on these attacks, the 2008-2009 national DAD was de-identified. A new algorithm was developed to minimize the amount of suppression while maximizing the precision of the data. The acceptable threshold for the probability of correct re-identification of a record was set at between 0.04 and 0.05. Information loss was measured in terms of the extent of suppression and entropy., Results: Two different PUMF files were produced, one with geographic information, and one with no geographic information but more clinical information. At a threshold of 0.05, the maximum proportion of records with the diagnosis code suppressed was 20%, but these suppressions represented only 8-9% of all values in the DAD. Our suppression algorithm has less information loss than a more traditional approach to suppression. Smaller regions, patients with longer stays, and age groups that are infrequently admitted to hospitals tend to be the ones with the highest rates of suppression., Conclusions: The strategies we used to maximize data utility and minimize information loss can result in a PUMF that would be useful for the specific purposes noted earlier. However, to create a more detailed file with less information loss suitable for more complex health services research, the risk would need to be mitigated by requiring the data recipient to commit to a data sharing agreement.

Published

2011

13. The re-identification risk of Canadians from longitudinal demographics.

Author

El Emam K, Buckeridge D, Tamblyn R, Neisa A, Jonker E, and Verma A

Subjects

Adult, Canada, Databases, Factual, Disclosure, Humans, Male, Policy, Risk Assessment, Risk Factors, Young Adult, Confidentiality, Demography, Longitudinal Studies

Abstract

Background: The public is less willing to allow their personal health information to be disclosed for research purposes if they do not trust researchers and how researchers manage their data. However, the public is more comfortable with their data being used for research if the risk of re-identification is low. There are few studies on the risk of re-identification of Canadians from their basic demographics, and no studies on their risk from their longitudinal data. Our objective was to estimate the risk of re-identification from the basic cross-sectional and longitudinal demographics of Canadians., Methods: Uniqueness is a common measure of re-identification risk. Demographic data on a 25% random sample of the population of Montreal were analyzed to estimate population uniqueness on postal code, date of birth, and gender as well as their generalizations, for periods ranging from 1 year to 11 years., Results: Almost 98% of the population was unique on full postal code, date of birth and gender: these three variables are effectively a unique identifier for Montrealers. Uniqueness increased for longitudinal data. Considerable generalization was required to reach acceptably low uniqueness levels, especially for longitudinal data. Detailed guidelines and disclosure policies on how to ensure that the re-identification risk is low are provided., Conclusions: A large percentage of Montreal residents are unique on basic demographics. For non-longitudinal data sets, the three character postal code, gender, and month/year of birth represent sufficiently low re-identification risk. Data custodians need to generalize their demographic information further for longitudinal data sets.

Published

2011

14. Physician privacy concerns when disclosing patient data for public health purposes during a pandemic influenza outbreak.

Author

El Emam K, Mercer J, Moreau K, Grava-Gubins I, Buckeridge D, and Jonker E

Subjects

Attitude of Health Personnel, Canada epidemiology, Female, Focus Groups, Humans, Male, Surveys and Questionnaires, Confidentiality ethics, Disease Outbreaks, Influenza A Virus, H1N1 Subtype, Influenza, Human epidemiology, Physicians, Public Health

Abstract

Background: Privacy concerns by providers have been a barrier to disclosing patient information for public health purposes. This is the case even for mandated notifiable disease reporting. In the context of a pandemic it has been argued that the public good should supersede an individual's right to privacy. The precise nature of these provider privacy concerns, and whether they are diluted in the context of a pandemic are not known. Our objective was to understand the privacy barriers which could potentially influence family physicians' reporting of patient-level surveillance data to public health agencies during the Fall 2009 pandemic H1N1 influenza outbreak., Methods: Thirty seven family doctors participated in a series of five focus groups between October 29-31 2009. They also completed a survey about the data they were willing to disclose to public health units. Descriptive statistics were used to summarize the amount of patient detail the participants were willing to disclose, factors that would facilitate data disclosure, and the consensus on those factors. The analysis of the qualitative data was based on grounded theory., Results: The family doctors were reluctant to disclose patient data to public health units. This was due to concerns about the extent to which public health agencies are dependable to protect health information (trusting beliefs), and the possibility of loss due to disclosing health information (risk beliefs). We identified six specific actions that public health units can take which would affect these beliefs, and potentially increase the willingness to disclose patient information for public health purposes., Conclusions: The uncertainty surrounding a pandemic of a new strain of influenza has not changed the privacy concerns of physicians about disclosing patient data. It is important to address these concerns to ensure reliable reporting during future outbreaks.

Published

2011

15. The inadvertent disclosure of personal health information through peer-to-peer file sharing programs.

Author

El Emam K, Neri E, Jonker E, Sokolova M, Peyton L, Neisa A, and Scassa T

Subjects

Canada, Computer Security, Disclosure, Humans, Information Storage and Retrieval, Risk Management, United States, Computer Communication Networks, Confidentiality, Electronic Health Records, Information Dissemination

Abstract

Objective: There has been a consistent concern about the inadvertent disclosure of personal information through peer-to-peer file sharing applications, such as Limewire and Morpheus. Examples of personal health and financial information being exposed have been published. We wanted to estimate the extent to which personal health information (PHI) is being disclosed in this way, and compare that to the extent of disclosure of personal financial information (PFI)., Design: After careful review and approval of our protocol by our institutional research ethics board, files were downloaded from peer-to-peer file sharing networks and manually analyzed for the presence of PHI and PFI. The geographic region of the IP addresses was determined, and classified as either USA or Canada., Measurement: We estimated the proportion of files that contain personal health and financial information for each region. We also estimated the proportion of search terms that return files with personal health and financial information. We ascertained and discuss the ethical issues related to this study., Results: Approximately 0.4% of Canadian IP addresses had PHI, as did 0.5% of US IP addresses. There was more disclosure of financial information, at 1.7% of Canadian IP addresses and 4.7% of US IP addresses. An analysis of search terms used in these file sharing networks showed that a small percentage of the terms would return PHI and PFI files (ie, there are people successfully searching for PFI and PHI on the peer-to-peer file sharing networks)., Conclusion: There is a real risk of inadvertent disclosure of PHI through peer-to-peer file sharing networks, although the risk is not as large as for PFI. Anyone keeping PHI on their computers should avoid installing file sharing applications on their computers, or if they have to use such tools, actively manage the risks of inadvertent disclosure of their, their family's, their clients', or patients' PHI.

Published

2010

16. Evaluating predictors of geographic area population size cut-offs to manage re-identification risk.

Author

El Emam K, Brown A, and AbdelMalik P

Subjects

Canada, Censuses, Demography, Health Services Research, Humans, Models, Theoretical, Risk, Confidentiality legislation & jurisprudence, Geography, Medical Records Systems, Computerized, Population Density

Abstract

Objective: In public health and health services research, the inclusion of geographic information in data sets is critical. Because of concerns over the re-identification of patients, data from small geographic areas are either suppressed or the geographic areas are aggregated into larger ones. Our objective is to estimate the population size cut-off at which a geographic area is sufficiently large so that no data suppression or further aggregation is necessary., Design: The 2001 Canadian census data were used to conduct a simulation to model the relationship between geographic area population size and uniqueness for some common demographic variables. Cut-offs were computed for geographic area population size, and prediction models were developed to estimate the appropriate cut-offs., Measurements: Re-identification risk was measured using uniqueness. Geographic area population size cut-offs were estimated using the maximum number of possible values in the data set and a traditional entropy measure., Results: The model that predicted population cut-offs using the maximum number of possible values in the data set had R2 values around 0.9, and relative error of prediction less than 0.02 across all regions of Canada. The models were then applied to assess the appropriate geographic area size for the prescription records provided by retail and hospital pharmacies to commercial research and analysis firms., Conclusions: To manage re-identification risk, the prediction models can be used by public health professionals, health researchers, and research ethics boards to decide when the geographic area population size is sufficiently large.

Published

2009

17. Parents are reluctant to use technological means of communication in pediatric day care.

Author

Murto K, Bryson GL, Abushahwan I, King J, Moher D, El-Emam K, and Splinter W

Subjects

Canada, Child, Preschool, Computer Literacy, Consumer Behavior, Data Collection, Electronic Mail, Humans, Internet, Telephone, Ambulatory Surgical Procedures, Anesthesia, General, Communication, Parents, Pediatrics, Professional-Family Relations

Abstract

Purpose: We hypothesized that advanced information and communication technology (ICT) would be acceptable to parents in a pediatric surgical, and diagnostic imaging day care setting., Methods: After Ethics Committee approval, we distributed surveys, over a one-month period, to parents of children arriving for day care surgery or diagnostic imaging. Parents indicated their acceptance of various proposed modes of postoperative discussion of healthcare i.e.; face-to-face, videophone, or telephone. Parents were also asked to describe their receptiveness to scheduling non-emergency hospital appointments online and to receiving electronic media describing their child's surgery and postoperative management. Parental education, income, and familiarity with the Internet were also assessed., Results: A total of 451 surveys (84% response rate) were returned. Most parents (95%) had access to the Internet and 70% did their banking online. Forty-two percent of the parents had at least a university education and 63% had an annual family income > $50,000 Canadian. The majority of parents (98%) accepted face-to-face interaction, while only 35% and 37% of parents were receptive to videophone and telephone interviews, respectively. Computer availability (P = 0.001) and online banking (P = 0.011) were the only variables that predicted those parents who were in favour of using videophone technology. Parents were receptive to instruction electronic media (80%) and booking appointments online (61%)., Conclusions: A well-educated and technologically sophisticated parent population does not favour advanced communication technologies over simple, face-to-face interaction in an in-hospital setting. These parents are prepared to receive technology-based information about their child's surgery and to schedule non-emergency hospital appointments online.

Published

2008