Managing Risk

Managing Risk

Researchers proposing the use of linked data must develop and implement a data security plan to protect the personal information and the privacy of the people whose information they are using. It is essential that the security plan is commensurate with the level of risk associated with the proposal and the likelihood of this harm eventuating.

A data security plan must:

  • acknowledge all potential risks to participants and ensure that adequate steps are detailed to minimize and manage those risks
  • identify the type of data, its level of risk and the measures proposed to manage the privacy risks at every stage of the research project.
  • address elements including -
    Personnel security controls:
    this includes limiting access to only those people assessed to be suitable and whose work responsibilities specifically require them to access these resources.
    Administrative Security Controls: consists of approved written policies, procedures, standards, guidelines, security training, risk assessments and external reviews.  
    Protection of identity: such as the separation of identifying information and content information and statistical disclosure control in publication of results.
    Physical security: physical barriers should be in place to prevent access by unauthorised people.
    Technological Security: this includes password protection, encryption, firewalls, secure remote access laboratorys and the use of stand-alone computers.
    Secure Transportation: both physical and technological protection should be used in transporting information.
    Secure Retention and Disposal: transparent and secure arrangements should be made for the retention and final destruction of the data after the project is complete.

Useful resources

shutterstock_586204247 Hospital Theatre.jpg


PHRN is closely monitoring the COVID-19 situation and has taken steps to mitigate the risk of transmission to our staff. In line with advice on social distancing, all staff at PHRN program office have moved to work from home. Staff are currently all working in line with our usual work patterns and our landline numbers are being diverted to staff at home, so will either be answered, or it will be possible to leave a voicemail. Please bear with us as we move to this new way of working. We will be participating in any meetings we need to attend remotely via Zoom. We are reviewing our work plans in light of the current situation and will make changes as required to ensure we are serving our network, researchers and community in this changing situation.

iStock-525755929 - Researcher in Meeting.jpg


WA Department of Health is seeking to establish a contract for the provision of an expert resource which will provide consultation to the Department of Health and the Department of Jobs, Tourism and Industry on a joint initiative. The ‘Strategic Linkage Advisor’, will provide strategic linkage advice, research, analysis, stakeholder management and inter-governmental coordination on matters relating to data linkage.