Privacy and Partnerships

Privacy and Partnerships 

How can we design our research to balance an interest in robust data collection, with a competing interest in protecting participant privacy?

1. Have we consulted with information security experts about exactly where the data will flow, from start to finish?

2. Do we have a written policy on data deidentification and participant privacy that is consistent with best practices in psychiatry and neuroscience?

3. Have we determined which third-party vendors will be required to be HIPAA compliant and sign a Business Associate Agreement (BAA)?