PDF iconDownload This Paper
Open PDF in Browser
Add Paper to My Library
Permalink
Using these links will ensure access to this page indefinitely
Copy URL

Redescribing Health Privacy: The Importance of Information Policy

Houston Journal of Health Law and Policy, Vol. 14, p. 95, 2014

U of Maryland Legal Studies Research Paper No. 2015-40

35 Pages Posted: 4 Nov 2015

See all articles by Frank Pasquale

Frank Pasquale

Cornell Law School; Cornell Tech

Date Written: November 3, 2015

Abstract

Current conversations about health information policy often tend to be based on three broad assumptions. First, many perceive a tension between regulation and innovation. We often hear that privacy regulations are keeping researchers, companies, and providers from aggregating the data they need to promote innovation. Second, aggregation of fragmented data is seen as a threat to its proper regulation, creating the risk of breaches and other misuse. Third, a prime directive for technicians and policymakers is to give patients ever more granular methods of control over data. This article questions and complicates those assumptions, which I deem (respectively) the Privacy Threat to Research, the Aggregation Threat to Privacy, and the Control Solution.

This article is also intended to enrich our concepts of “fragmentation” and “integration” in health care. There is a good deal of sloganeering around “firewalls” and “vertical integration” as idealized implementations of “fragmentation” and “integration” (respective). The problem, though, is that terms like these (as well as “disruption”) are insufficiently normative to guide large-scale health system change. They describe, but they do not adequately prescribe.

By examining those instances where: a) regulation promotes innovation, and b) increasing (some kinds of) availability of data actually enhances security, confidentiality, and privacy protections, this article attempts to give a richer account of the ethics of fragmentation and integration in the U.S. health care system. But, it also has a darker side, highlighting the inevitable conflicts of values created in a “reputation society” driven by stigmatizing social sorting systems. Personal data control may exacerbate social inequalities. Data aggregation may increase both our powers of research and our vulnerability to breach. The health data policymaking landscape of the next decade will feature a series of intractable conflicts between these important social values.

Keywords: health records, insurance fraud, identity theft, inadvertent disclosure, data science, big data, data mining, social networks, HIPAA, Affordable Care Act, credit scoring, data brokers, gamification

Suggested Citation

Pasquale, Frank A., Redescribing Health Privacy: The Importance of Information Policy (November 3, 2015). Houston Journal of Health Law and Policy, Vol. 14, p. 95, 2014, U of Maryland Legal Studies Research Paper No. 2015-40, Available at SSRN: https://ssrn.com/abstract=2685696

Frank A. Pasquale (Contact Author)

Cornell Law School ( email )

Myron Taylor Hall
Ithaca, NY 14853

Cornell Tech ( email )

111 8th Avenue #302
New York, NY 10011
United States

PDF iconDownload This Paper
Open PDF in Browser

Do you have negative results from your research you’d like to share?

Submit Negative Results

Paper statistics

Downloads
172
Abstract Views
1,394
Rank
316,836
14 References
PlumX Metrics

Related eJournals