Data Security

This section contains a range of information about data security that is useful to those conducting research using linked data. In this section you will find information about:

• Types of risk
• Evaluating risk
• Managing risk
• Linkage and security

Researchers proposing the use of linked data will be required by the data linkage unit, Human Research Ethics Committees and the data custodian of each of the data collections for which they are requesting data to provide a detailed security plan outlining how the personal information and the privacy of the people whose information is being used will be protected.

Personal information is defined in s6(1) of the Privacy Act as: 
"…information or an opinion (including information or an opinion forming part of a database), whether true or not, and whether recorded in a material form or not, about an individual whose identity is apparent, or can be reasonably ascertained, from the information or opinion".

Researchers should incorporate into their data security plan any standards, guidelines and policies on security specified by their organisations or the data custodians from which they are requesting data. Researchers will also need to be aware of relevant legislation that imposes obligations in relation to personal information security. Researchers are required to develop and implement a data security plan to eliminate, minimise or manage risks associated with data linkage projects.