Data sharing governance in sub-Saharan Africa during public health emergencies: Gaps and guidance

Dirk Brand; Jerome A Singh; Annelize G Nienaber McKay; Nezerith Cengiz; Keymanthri Moodley

doi:10.17159/sajs.2022/13892

. Author manuscript; available in PMC: 2024 Jul 12.

Published in final edited form as: S Afr J Sci. 2022 Oct 26;118(11-12):10.17159/sajs.2022/13892. doi: 10.17159/sajs.2022/13892

Data sharing governance in sub-Saharan Africa during public health emergencies: Gaps and guidance

Dirk Brand ¹, Jerome A Singh ², Annelize G Nienaber McKay ^3,⁴, Nezerith Cengiz ⁵, Keymanthri Moodley ⁵

PMCID: PMC11241865 NIHMSID: NIHMS1997197 PMID: 39005847

Abstract

While the COVID-19 pandemic has captured the attention of the global community since the end of 2019, deadly health pandemics are not new to Africa. Tuberculosis (TB), malaria and human immunodeficiency virus (HIV) count amongst other serious diseases that have had a catastrophic impact on the African continent. Effective responses to such pandemics require high-quality, comprehensive data sets that can inform policymaking and enhance healthcare decision-making. While data is driving the information economy in the 21st century, the scarcity in Africa of carefully curated, large epidemiologic data sources and analytical capacity to rapidly identify and understand emerging infectious diseases poses a major challenge to mounting a time-sensitive response to unfolding pandemics. Data access, sharing and transfer between countries are crucial to effectively managing current and future health pandemics. Data access and sharing, however, raises questions about personal privacy, the adequacy of governance mechanisms to regulate cross-border data flows, and ethical issues relating to the collection and use of personal data in the interests of public health. Sub-Saharan Africa’s most research-intensive countries are characterised by diverse data management and privacy governance frameworks. Such regional variance can impede time-sensitive data sharing and highlights the need for urgent governance reforms to facilitate effective decision-making in response to rapidly evolving public health threats.

Keywords: data transfer regulations, data sharing, public health, sub-Saharan Africa

Introduction

The collation, storage, and sharing of personal data are becoming increasingly important in public health research and surveillance. Balancing data protection and privacy concerns with data sharing and open science is a persistent challenge. The COVID-19 pandemic has highlighted the importance of data sharing in the public interest.^1,2

While the world has afforded significant attention to the COVID-19 pandemic since the end of 2019, Africa has historically been the perennial epicentre of some of the world’s deadliest diseases, including tuberculosis, malaria, and human immunodeficiency virus (HIV). The clinical and public health management of these pandemics requires the collation, storage, and use of personal and aggregated health data to inform clinical decision-making, scientific endeavours, and policymaking. The COVID-19 pandemic has demonstrated the need for transparency – not just to keep the public informed about the nature and spread of the disease, but also to enable citizens to hold governments accountable for the extraordinary measures they have adopted to manage the pandemic. Seen in this light, data sharing is also in the public interest as the guidance and directives the public is expected to follow, should be evidence-based.

The rapid global spread of COVID-19 has necessitated greater international cooperation. Although optimised data collection at a national level is important to strengthen the domestic response to COVID-19, regional and international cooperation in accessing and using such data to inform policymaking beyond the data source setting is equally important due to the global impact of the disease.^3,4 Not surprisingly, the World Health Organization (WHO) has repeatedly stressed the need for cooperation between countries to end the COVID-19 pandemic.⁵

At a very basic level, there should be appropriate infrastructure in a country for the effective collection of personal information of data subjects, and the storage thereof. Moreover, a country should possess analytical capacity to understand the implications of the data. Limited Internet access, poor quality data sources, and inadequate analytical capacity characterise many African settings.⁶ In the context of COVID-19, such shortcomings contributed to critical knowledge gaps, such as the impact of COVID-19 on African children.⁷ The scale of the current COVID-19 pandemic has underscored the need for appropriate data collation, storage, and analysis globally to strengthen evidence-based approaches to managing the pandemic.^6,8 Although many African countries have promulgated data protection legislation, the practical gap between the availability of data sources and analytical capacity is of serious concern. While such gaps negatively impact local and national efforts to fight the pandemic, they also underscore the global inequity regarding the resources and ability to manage health pandemics.^9,10

Data requirements to manage COVID-19 and other health pandemics

The lack of harmonised data sets and information systems poses a major barrier to the effective management of public health emergencies. Moreover, time-sensitive access to data may not always be possible.^11,12 Access to large, high-quality data sets is also crucial to the development of artificial intelligence (AI) models, which can help optimise predictive decision-making in health pandemics.¹³ One of the basic building blocks in managing health pandemics at a country level is the development of national health information systems that include both public and private sources of health data.

Broad categories of data are required to effectively respond to pandemics. Primary data sources include, but are not limited to, mobility surveillance data, incidence, hospitalisation, recovery, and mortality data aggregated by amongst other factors, age, sex, comorbidity, and vaccination status. Epidemiological data and omics research data are, from a research perspective, critical data sources that support an evidence-based approach to managing a pandemic.¹⁴ An inability to gain timely access to data, trust deficits, diverse data sources and diverse data needs are amongst the factors that can hinder an effective response to a pandemic (Box 1).^15–18 To overcome such barriers, the characterisation and formats of various health data sources should be harmonised and standardised to facilitate sharing amongst relevant stakeholders, such as researchers, public health officials, and international agencies.

Box 1: Key limitations in data sharing.

Timely access to data during a public health emergency is critical to gain detailed knowledge of a pandemic that could assist in developing effective public health responses. Many low- and middle-income countries have limited capacity to undertake epidemiological, clinical, and other research, thus negatively impacting on the ability to respond effectively to public health emergencies.
Data sharing, including cross-border transfer of data, is limited due to a lack of trust about the future use of the data, insufficient data transfer regimes or the academic competition to be the first to publish results of scientific research and thus unwillingness to share research data.
Data needs of different stakeholders differ, which makes a common approach to data sharing difficult.¹⁷
There is a variety of types of data collected and used in the context of public health, which complicates effective data sharing practices.
In cases where data quality is questionable or the data is incomplete, the scope of using the data in the management of a health pandemic is limited.
Colonial legacies and social and economic inequalities could have a negative impact on international cooperation to share data due to questions about trust between international partners.¹⁸
A lack of standardisation of types of data limits international cooperation.¹⁵

In considering data sharing needs during a pandemic, it is important to reflect on how ‘open data’ could facilitate access to, and use of, health data. The scale of the COVID-19 pandemic and the need to have time-sensitive epidemiological data publicly accessible on a daily basis has boosted support for open data. An important motivating factor for open data is the opportunity such data creates for a diverse group of stakeholders, including researchers and software developers, to analyse the data and generate new insights and applications.¹⁹ The internationally renowned COVID-19 global dashboard created by the Johns Hopkins University²⁰ and other similar country-level dashboards that are updated daily, count as examples of how open data can add value to the management of pandemics. Open data, however, also present challenges and potential risks. Some commentators note that government efforts to provide and maintain open data are costly and require considerable expertise, which is not universally available.¹⁹

Data quality, access to primary data and completeness of data are additional challenges to open data. Data access governance, intellectual property rights and privacy considerations also merit noting.²¹ When open data applications are created, data anonymisation is usually part of that creation process. However, privacy concerns could arise if there remains a possibility to de-anonymise personal data, notwithstanding technological tools, such as differential privacy used in machine learning modelling, which could be used to respond to such privacy concerns. Despite such potential risks and challenges, the benefit of timely open data during a pandemic is clear. The COVID-19 pandemic has demonstrated the key role that bioinformaticians and epidemiologists can play in collating and analysing data sets to rapidly inform pandemic decision-making.²² Such contributions would not be possible without the collection of, and time-sensitive access to, large, high-quality data sets.

Initiatives to facilitate cross-border data sharing in Africa

In 2002, the WHO published an Integrated Disease Surveillance and Response (IDSR) for WHO’s African region, which was widely adopted by African member states.²³ The African Union (AU) is similarly leading an effort to harmonise statistical data sets to facilitate and foster data sharing in Africa.²⁴ In 2018, the Africa Centres for Disease Control (Africa CDC), which serves as a specialised technical institution of the AU, published a Framework for Event-based Surveillance, which is intended to complement and enhance the implementation of IDSR.²⁵ In publishing the third edition of its IDSR Guidelines in 2019, the WHO conceded that progress towards a coordinated, integrated surveillance system in Africa has been mixed.²³ In recognition thereof, the Africa CDC has stepped up its efforts to support Member States to develop and establish high-quality public health information and technology systems.

One of the Africa CDC’s flagship initiatives involves the development of a continental wide public health information system platform by linking public health institutes in each country through a wide area network managed by the Africa CDC.²⁶ The strategic objective of this initiative includes, amongst others, enhancing secure electronic transmission of relevant data and reports, facilitating the development and promotion of network domains, and adopting informatics guidelines and standards to enable interconnectivity and electronic transmission of data and information among Africa CDC institutes.²⁶

Similarly, the Africa CDC has also established the Regional Integrated Surveillance and Laboratory Network (RISLNET) initiative, which aims to establish an integrated electronic network of regional surveillance platforms by leveraging existing regional public health assets, such as the surveillance and laboratory networks operated by public agencies, private organisations, foundations, and universities in eastern and southern Africa.²⁷ Data from RISLNET is intended to inform, amongst others, the Extension for Community Healthcare Outcomes (ECHO) platform, which aims to share critical, timely, lifesaving information and data with healthcare workers at different geographical locations.²⁸ Digital disease surveillance is described as ‘the aggregation and analysis of data available on the internet, such as search engines, social media, and mobile phones, and not directly associated with patient illnesses or medical encounters’²⁹. In recognition of its potential to contribute to disease surveillance, the Africa CDC has established a pilot digital disease surveillance programme aimed at conducting real-time surveillance of infectious diseases in Africa by monitoring social media and building capacity in ‘Big Data’ approaches for outbreak prediction, analysis, and prevention.²⁹ Such ambitious regional initiatives speak to the need for time-sensitive cross-border data sharing but also raise privacy concerns.

Data stewardship: Ethics and governance considerations

The Open Data Institute characterises data sharing in three aspects: (1) stewardship of data (collection, maintenance, sharing); (2) creating information from the data (analysis, insights); and (3) making informed decisions utilising data from different sources.³⁰ Various technical, motivational, economic, political, legal, and ethical barriers can negatively impact on public health data sharing initiatives.³¹ Such barriers include a lack of resources in the public sector (economic barrier), ownership and copyright (legal barrier) and lack of reciprocity in data sharing practices (ethical barrier). The COVID-19 pandemic has underscored the need to develop a universal system or standard for collating and sharing data, including research outputs based on such data.^32–34 This universality is especially crucial during the initial stages of an emerging pandemic when information about the nature and spread of a disease should be shared internationally as soon as possible, as well as later, when coordinated evidence-based efforts to fight the pandemic are important. In 2022, the OECD published recommendations on enhancing access to and sharing of data¹², which include the principles and guidelines captured in Box 2. In a research report²⁴ that focuses on data sharing to enhance public health in Africa, equitable, ethical, and efficient data sharing constitute key principles.

Box 2: Recommendations of the Council on Enhancing Access to and Sharing of Data in 2022.

Promote trustworthiness of the data ecosystem.
Enhance transparency of data access and sharing arrangements.
Incentivise data access and sharing.
Foster effective and responsible data access, sharing and use across society.

The United Kingdom (UK) government has followed a practical approach in devising its Data Ethics Framework (DEF), which offers guidance for responsible data use in the public sector.³⁵ The DEF posits three principles, namely transparency, accountability, and fairness. In this context, transparency means that data processes are open to inspection and that information about a project must be published in an understandable and accessible format. Adherence to accountability means that governance and oversight mechanisms are in place and implemented effectively. To mitigate any bias or discrimination in the capturing, sharing and use of data, the principle of fairness must apply, that is, there must be respect for the dignity of individuals and an aim to deliver fair and non-discriminatory outcomes. Despite being UK-focused, DEF’s guidance principles are universally relevant and should be considered in the context of cross-border data transfers between African countries. Transparency, accountability, and fairness are also legal principles underpinning administrative and constitutional law. Although they are not necessarily included in data protection legislation, they are still important in the context of responsible data use and should guide the drafting of data transfer agreements.

Some commentators have argued for a wide approach to drafting a data transfer agreement in a research context, suggesting that it should include, amongst others, provisions on ethical considerations including ethical approval, and benefit sharing.³⁶ Novel ideas such as benefit sharing could be considered from a research ethics perspective, but the Protection of Personal Information Act (POPIA) and other data protection legislation are aimed at protecting personal information and not aimed at research ethics per se. Although the detail of a data transfer agreement is context specific, and anchored in the relevant data protection legislation, any data transfer agreement in a research context should, at minimum, include the elements indicated in Box 3. In some settings, national data protection authorities may need to prospectively approve cross-border transfers involving personal data.

Box 3: Minimum requirements for a data transfer agreement.

Responsibilities of the provider and recipient of the data
Purpose of the use of the data
Description of the data
Time period of the agreement
Access to the data (e.g. in a research context there could be various people in the working environment of the recipient who need access to the data)
Confirmation of adherence to all the legal requirements for lawful processing of data
Publication of the research results based on the transferred data
Ethical clearance for the use of the data in the research
Dispute resolution provisions

The Research Data Alliance (RDA) COVID-19 Working Group has published a set of recommendations and guidelines relating to the collection and sharing of data in the context of COVID-19.^11,12 The work of the RDA COVID-19 Working Group is divided into four categories, namely clinical research, omics, epidemiology, and social sciences, all of which contribute to the multidisciplinary nature of managing a pandemic. In all these areas there is a need for more data sharing, but often a lack of proper data sharing or data transfer agreements negatively impacts the analytical work as well as the policy responses as part of the management of a pandemic.

Africa’s data sharing regulatory landscape

Data protection laws provide the legal framework for the collection, access to and sharing of data, as well as the cross-border transfer of data. Many African countries have embarked on initiatives to regulate data protection. In the fields of public health, environmental and occupational health, South Africa, Nigeria, Kenya, Ethiopia and Uganda³⁷ rank respectively as the most research-intense countries in sub-Saharan Africa by research output^32–34. It is thus apt to briefly consider how these settings manage cross-border data transfers.

Table 1 categorises the rigour of national data protection laws regarding cross-border transfer of personal data.³⁸ Table 1 is not aimed at providing a strict overall categorisation of various data protection laws, but rather, is focused on the scope of legal protection afforded to data subjects in relation to the cross-border transfer of their personal data. Countries with stringent rules require notification of, or approval by, a relevant data protection authority, and/or special conditions (such as proof of appropriate safeguards with respect to the protection and security of personal data), as well as consent from the data subject.

Table 1:

Data protection laws, regarding cross-border transfer of personal data, of sub-Saharan African countries ranked by research output in “Public Health, Environment, and Occupational Health”³⁷

Rank and country	Legal requirements	Legislation	Data export protection classification
South Africa	A responsible party may only transfer personal data outside South Africa if the recipient is subject to a law, binding corporate rules or binding agreement that provides adequate protection; or the data subject consents to the transfer; or the transfer is necessary in terms of the provisions of the Act.	Section 72 of the Protection of Personal Information Act, 4 of 2013	Strict
Nigeria	Cross-border transfer of personal data is subject to authorisation by the Attorney General or the National Information Technology Development Agency (NITDA) based on an adequate level of protection. In the absence of authorisation by the Attorney General or the NITDA, personal data transfer may only take place if the data subject gives consent, or the data transfer is necessary in terms of the Regulation.	Reg. 2.11 and 2.12 of the Nigeria Data Protection Regulation, 2019	Moderate
Kenya	Data transfer is allowed only if there is proof of adequate data protection safeguards or consent from the data subject. The data controller or data processor must provide proof of appropriate safeguards to the Data Commissioner. The data transfer must be necessary in terms of the Act.	Section 25(h) 48 of the Data Protection Act, No. 24 of 2019 (Kenya)	Strict
Ethiopia	Cross-border data transfer may only take place subject to an adequate level of data protection in the recipient country. The data controller or data processor must provide proof to the Data Protection Commission of an appropriate level of protection, or the data subject must give consent to the proposed transfer, or the transfer must be necessary, or the transfer must be made from a register and intended to provide information to the public.	Sections 27–30 of the Draft Proclamation to Provide for Personal Data Protection, 2021 (Ethiopia)	Strict
Uganda	The data processor or data controller must ensure that there are adequate measures in place for the protection of personal data, or the data subject must provide consent.	Section 19 of the Data Protection and Privacy Act, 2019 (Uganda)	Strict

Open in a new tab

South Africa and Kenya count amongst countries that could be described as providing stringent data export protection to data subjects. For example, Kenya’s Data Protection Act of 2019 complies with the European Union (EU) legal standards, which are generally regarded as being stringent in nature. For data to be transferred out of Kenya, the data processor must verify to the data commissioner that the third-party recipient’s jurisdiction is bound by appropriate safeguards for the security and protection of the data. It is also important that the data transfer be purposeful, such as being necessary for the conclusion or performance of a contract or legal claim, and the public or data subjects’ interests. In addition, consent from the data subject is also required for cross-border data transfers.³⁸

Countries falling in the moderate category allow for more than one possible legal ground to permit data export, such as consent of the data subject, but do not require notification or approval by the data protection authority. Nigeria counts amongst countries providing moderate data export protection to data subjects as the country’s data protection law does not require third-party recipients of data to be bound by adequate data protection law, agreements, or corporate rules if the data subject provides consent after being informed of possible risks of inadequate data protection or if the transfer meets a certain exception. One example of such exception is the public’s or data subject’s interest. Beyond obtaining consent from data subjects for data transfers, the Nigeria Data Protection Regulation 2019 requires the National Information Technology Development Agency (NITDA) or Honourable Attorney General of the Federation (HAGF) to ensure that the third-party recipients of the transferred data have adequate data protection standards in place.³⁸

Ghana’s data protection legislation does not contain any provisions pertaining to cross-border transfer of personal information³⁹ and could thus be described as providing inadequate protection to data subjects in relation to the export of their personal data.

The diverse legal landscape governing data sharing in sub-Saharan Africa – including the stringency of data export provisions – highlights that cross-border data transfers will have to be evaluated on a case-by-case basis as there is no uniform law across the continent akin to the General Data Protection Regulation (GDPR 2018), which constitutes a common legal framework for all EU Member States. Although the AU Commission is developing a data policy framework for Africa to harness digital technologies and innovation in an attempt to bridge the digital divide, this process is ongoing and will take time to implement.¹⁶ Further, the AU Convention on Cyber Security and Personal Data (2014) has been ratified by only 13 AU Member States.⁴⁰

It is important to note that in addition to specific data protection legislation, 29 sub-Saharan countries have published some form of research ethics guidance regarding the collection and use of human biological specimens, which are essential in national health systems and important to consider in international research cooperation.⁴¹ These countries are Benin, Botswana, Burkina Faso, Cameroon, Democratic Republic of the Congo, Equatorial Guinea, Ethiopia, Gabon, The Gambia, Ghana, Guinea, Kenya, Lesotho, Liberia, Madagascar, Malawi, Mali, Mauritius, Mozambique, Nigeria, Rwanda, Senegal, Sierra Leone, South Africa, Sudan, Tanzania, Uganda, Zambia, and Zimbabwe.⁴¹

These guidance documents do not specifically govern data sharing. In South Africa, the Academy of Science of South Africa (ASSAf) – a statutory body and the country’s apex science advisory body, has developed a privacy Code of Conduct for Research. The Code is intended to provide guidance to the research community about the use of data in research and is binding.⁴² The Code reiterates the country’s legislative stance on the transfers of personal information outside the country.

It is evident from the above that data sharing governance varies across Africa. Adequacy of legal protection for cross-border transfers is of particular importance when scientists and other stakeholders in different countries need to share data to effectively respond to a rapidly evolving pandemic. Cross-border data transfers of personal information may only take place if certain requirements are met in accordance with the applicable local legislation. A common approach found in various data protection laws includes the imposition of certain conditions, as indicated in Box 4.

Box 4: Common conditions enforced in various data protection laws.

The third-party recipient of the data is subject to a law, binding corporate rules or a binding agreement, which provides adequate protection.
The data subject gives consent for the cross-border transfer.
The transfer is necessary for the performance of a contract between the data subject and the responsible party/controller.
The transfer is necessary for the conclusion or performance of a contract in the interest of the data subject between the responsible party and a third party.
The transfer is for the benefit of the data subject.

Data transfer agreements can facilitate the cross-border transfer of data and catalyse international research collaboration.¹⁷ A lack of pre-approved data sharing agreements and archaic health data systems count amongst the critical shortcomings of the global community’s response to the COVID-19 pandemic.^17,26 To avoid similar shortcomings in the future, relevant authorities should develop standardised tools and templates for international research collaboration. The development of such tools and templates should be based on sound governance and ethics principles. Additional factors to consider in the processing of personal information are outlined in Box 5.

Box 5: Factors to consider in the processing of personal information¹⁸.

The need for a time limit for the retention of the data
Clarity and a sound legal basis for the purpose of the data processing
Proportionality of the measures taken in processing the personal data
Transparency and explainability
Accountability
Integration of privacy by design
Realisation of data protection impact assessments

Conclusion and recommendations

This article highlights the factors that impact data sharing in sub-Saharan Africa, especially in the context of managing health pandemics. The COVID-19 pandemic has underscored the need for a reliable and accessible data ecosystem that could inform the management of public health threats. The combined effect of diverse limitations or barriers to data sharing in public health necessitates more dedicated continental and international cooperation as well as the development of standard formats for health data. Harmonised data sources and their integration into national health information systems will create a comprehensive data set that includes epidemiologic, clinical as well as behavioural data relating to public health emergencies. Such a holistic approach to data management should underpin evidence-based decision-making. The principles of transparency, fairness and accountability should underpin the development of a reliable and accessible data ecosystem. To facilitate cross-border data transfers involving personal data, standard contractual provisions and templates for cross-border data transfers should be developed by data protection authorities in Africa. This will facilitate not just scientific cooperation between countries, but also an integrated cross-border approach to the management of future pandemics.

Significance:

We explore governance considerations that ought to apply to the collection, transfer, and use of data in public health emergencies. Specifically, we provide an overview of the prevailing data sharing governance landscape in selected African countries. In doing so, we identify limitations and gaps that impede effective data collation, sharing and analysis. This work could find utility amongst a range of stakeholders, including bioinformaticians, epidemiologists, artificial intelligence coders, and government decision-makers. While this work focuses primarily on an African context, the issues explored are of universal concern and therefore of relevance to a broader international audience.

Acknowledgement

We acknowledge the US National Institutes of Health (NIH) DS-I Africa for funding (grant 1U01MH127704-01).

Footnotes

Competing interests

We have no competing interests to declare.

References

1.The World Health Organization. World health report 2013: Research for universal health coverage [webpage on the Internet]. c2013 [cited 2022 Aug 22]. Available from: https://www.afro.who.int/publications/world-health-report-2013-research-universal-health-coverage
2.The World Medical Association (WMA). WMA Statement on Healthcare Information for All [webpage on the Internet]. c2019 [cited 2022 Aug 22]. Available from: https://www.wma.net/policies-post/wma-statement-on-healthcare-information-for-all/
3.Do Lee W, Qian M, Schwanen T. The association between socioeconomic status and mobility reductions in the early stage of England’s COVID-19 epidemic. Health Place. 2021;69, Art. #102563. 10.1016/j.healthplace.2021.102563 [DOI] [PMC free article] [PubMed] [Google Scholar]
4.Trestian R, Celeste E, Xie G, Lohar P, Bendechache M, Brennan R, et al. The privacy paradox – investigating people’s attitude towards privacy in a time of COVID-19. In: Proceedings of the 14th International Conference on Communications (COMM); 16–18 June 2022; Bucharest, Romania. IEEE; 2022. p. 1–6. 10.1109/COMM54429.2022.9817170 [DOI] [Google Scholar]
5.Commonwealth Secretariat, World Health Organization (WHO). Commonwealth and WHO to strengthen cooperation on health, including access to vaccines [media release]. World Health Organization (WHO). 7 February 2022. Available from: https://www.who.int/news/item/07-02-2022-commonwealth-and-who-to-strengthen-cooperation-on-health-including-access-to-vaccines [Google Scholar]
6.Nachega JB, Uthman OA, Ho YS, Lo M, Anude C, Kayembe P, et al. Current status and future prospects of epidemiology and public health training and research in the WHO African region. Int J Epidemiol. 2012;41(6):1829–1846. 10.1093/ije/dys189 [DOI] [PMC free article] [PubMed] [Google Scholar]
7.Sam-Agudu NA, Rabie H, Pipo MT, Byamungu LN, Masekela R, Van der Zalm MM, et al. The critical need for pooled data on coronavirus disease 2019 in African children: An AFREhealth call for action through multicountry research collaboration. Clin Infect Dis. 2021;73(10):1913–1919. 10.1093/cid/ciab142 [DOI] [PMC free article] [PubMed] [Google Scholar]
8.Haleem A, Javaid M, Khan IH, Vaishya R. Significant applications of big data in COVID-19 pandemic. Indian J Orthop. 2020;54(4):526–528. 10.1007/s43465-020-00129-z [DOI] [PMC free article] [PubMed] [Google Scholar]
9.Townsend B The lawful sharing of health research data in South Africa and beyond. Inf Commun Technol Law. 2022;31(1):17–34. 10.1080/13600834.2021.1918905 [DOI] [Google Scholar]
10.Staunton C, Tschigg K, Sherman G. Data protection, data management, and data sharing: Stakeholder perspectives on the protection of personal health information in South Africa. PLoS ONE. 2021;16(12), e0260341. 10.1371/journal.pone.0260341 [DOI] [PMC free article] [PubMed] [Google Scholar]
11.RDA COVID-19 Working Group. RDA COVID-19 Recommendations and guidelines on data sharing. Research Data Alliance (RDA); 2020. 10.15497/rda00052 [DOI] [Google Scholar]
12.Research Data Alliance. Enhancing access to research data during crises: Lessons learned from the COVID-19 pandemic. Paris: Organisation for Economic Co-operation and Development (OECD); 2021. Available from: https://www.oecd.org/sti/inno/enhance-access-research-data-during-crises.htm [Google Scholar]
13.Syrowatka A, Kuznetsova M, Alsubai A, Beckman AL, Bain PA, Craig KJT, et al. Leveraging artificial intelligence for pandemic preparedness and response: A scoping review to identify key use cases. NPJ Digit Med. 2021;4(1), Art. #96. 10.1038/s41746-021-00459-8 [DOI] [PMC free article] [PubMed] [Google Scholar]
14.Tonacci A, Genovese S, Pioggia G, Gangemi S. COVID-19 pandemic: Different roles for scientific publications and funding face to epidemiological data – an European, country-based perspective. Clin Mol Allergy. 2021;19(1), Art. #16. 10.1186/s12948-021-00154-9 [DOI] [PMC free article] [PubMed] [Google Scholar]
15.Wellcome Trust. Data sharing in public health emergencies [webpage on the Internet]. c2019 [cited 2022 Aug 22]. Available from: https://wellcome.org/what-we-do/our-work/data-sharing-public-health-emergencies [Google Scholar]
16.African Union (AU). The digital transformation strategy for Africa (2020–2030). Addis Ababa: AU; 2021. Available from: https://au.int/sites/default/files/documents/38507-doc-dts-english.pdf [Google Scholar]
17.The Royal Society, Ada Lovelace Institute. Learning data lessons: Data access and sharing during COVID-19 [document on the Internet]. c2021 [cited 2022 Mar 29]. Available from: https://royalsociety.org/-/media/policy/Publications/2021/learning-data-lessons-data-access-and-sharing-during-COVID-19.pdf?la=en-GB&hash=DA87DF3B44154E407FDADC6B4269CEED
18.Abebe R, Aruleba K, Birhane A, Kingsley S, Obaido G, Remy S, et al. Narratives and counternarratives on data sharing in Africa. In: Proceedings of the 2021 FAccT ACM Conference on Fairness, Accountability, and Transparency; 3–10 March 2021; virtual event. New York: Association for Computing Machinery (ACM); 2021. p. 329–341. 10.1145/3442188.3445897 [DOI] [Google Scholar]
19.Pyo S, Reggi L, Martin E. The potential role of open data in mitigating the COVID-19 pandemic: Challenges and opportunities. Health Affairs Blog. 2 November 2020. [cited 2022 Mar 29]. 10.1377/forefront.20201029.94898 [DOI] [Google Scholar]
20.Coronavirus Resource Center, Johns Hopkins University and Medicine. COVID-19 Dashboard by the Center for Systems Science and Engineering (CSSE) at Johns Hopkins University (JHU) [webpage on the Internet]. No date [cited 2022 Aug 23]. Available from: https://coronavirus.jhu.edu/map.html
21.The Royal Society. Science as an open enterprise. Science Policy Centre report 02/12. London: The Royal Society; 2012. Available from: https://royalsociety.org/~/media/policy/projects/sape/2012-06-20-saoe.pdf [Google Scholar]
22.Hedberg K, Maher J. Collecting data. In: Rasmussen S, Goodman R, editors. The CDC field epidemiology manual. New York: Oxford Academic; 2019. p. 53–70. 10.1093/oso/9780190933692.003.0004 [DOI] [Google Scholar]
23.World Health Organization (WHO). Integrated disease surveillance and response technical guidelines in the WHO Africa region. Booklet one: Introduction section. Brazzaville: WHO Regional Office for Africa; 2019. Available from: https://apps.who.int/iris/bitstream/handle/10665/325015/WHO-AF-WHE-CPI-05.2019-eng.pdf?sequence=1&isAllowed=y [Google Scholar]
24.Committee on Population; Division of Behavioral and Social Sciences and Education; US National Academies of Sciences, Engineering and Medicine. Sharing research data to improve public health in Africa: A workshop summary. O’Connell ME, Plewes TJ, rapporteurs. Washington DC: US National Academies Press; 2015. 10.17226/21801 [DOI] [PubMed] [Google Scholar]
25.Africa Centres for Disease Control and Prevention. Africa CDC event-based surveillance framework [document on the Internet] c2018 [cited 2022 May 03]. Available from: https://africacdc.org/download/africa-cdc-event-based-surveillance-framework/
26.Africa Centres for Disease Control and Prevention. Public health information systems [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/public-health-information-systems/
27.Africa Centres for Disease Control and Prevention. Southern Africa RISLNET. World Bank-Africa CDC Regional Investment Financing Project [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/southern-africa-rislnet/
28.Africa Centres for Disease Control and Prevention. Extension for Community Healthcare Outcomes (ECHO) [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/public-health-information-systems/extension-for-community-healthcare-outcomes-echo/
29.Africa Centres for Disease Control and Prevention. Digital disease surveillance [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/surveillance-disease-intelligence/digital-disease-surveillance/
30.Vryzakis A, Thereaux O. How our network is considering data ethics: Survey results. The Open Data Institue Blog. 11 March 2020. Available from: https://theodi.org/article/how-our-network-is-considering-data-ethics-survey-results/ [Google Scholar]
31.Van Panhuis WG, Paul P, Emerson C, Grefenstette J, Wilder R, Herbst AJ, et al. A systematic review of barriers to data sharing in public health. BMC Public Health. 2014;14, Art. #1144. 10.1186/1471-2458-14-1144 [DOI] [PMC free article] [PubMed] [Google Scholar]
32.Lucas-Dominguez R, Alonso-Arroyo A, Vidal-Infer A, Aleixandre-Benavent R. The sharing of research data facing the COVID-19 pandemic. Scientometrics. 2021;126(6):4975–4990. 10.1007/s11192-021-03971-6 [DOI] [PMC free article] [PubMed] [Google Scholar]
33.Moorthy V, Henao Restrepo AM, Preziosi MP, Swaminathan S. Data sharing for novel coronavirus (COVID-19). Bull World Health Organ. 2020;98(3):150. 10.2471/BLT.20.251561 [DOI] [PMC free article] [PubMed] [Google Scholar]
34.Capocasa M, Anagnostou P, Bisol GD. A light in the dark: Open access to medical literature and the COVID-19 pandemic. Inf Res. 2022;27(2), Art. #929. 10.47989/irpaper929 [DOI] [Google Scholar]
35.UK Central Digital and Data Office. Data ethics framework [webpage on the Internet]. c2018 [cited 2022 Mar 29]. Available from: https://www.gov.uk/government/publications/data-ethics-framework/data-ethics-framework-2020
36.Mahomed S, Loots G, Staunton C. The role of data transfer agreements in ethically managing data sharing for research in South Africa. S Afr J Bioeth Law. 2022;15(1):26–30. 10.7196/SAJBL.2022.v15i1.807 [DOI] [Google Scholar]
37.Scimago Journal & Country Rank. Country rankings: Public Health, Environment, and Occupational Health [database on the Internet]. c2022 [cited 2022 Aug 23]. Available from: https://www.scimagojr.com/countryrank.php?region=Africa&category=2739
38.Suominen K, Vambell E. Alliance for E-Trade Development: Toward an African data transfer regime to enable MSMEs’ cross-border ecommerce [document on the Internet]. c2021 [cited 2022 May 06]. Available from: https://www.allianceforetradedevelopment.org/_files/ugd/478c1a_72021e35a826441db0723642a79e65e5.pdf
39.The Parliament of the Republic of Ghana. Data Protection Act, 2012.
40.The Member States of the African Union. African Union Convention on Cyber Security and Personal Data Protection [document on the Internet]. c2014 [cited 2022 Aug 22]. Available from: https://au.int/sites/default/files/treaties/29560-treaty-0048_-_african_union_convention_on_cyber_security_and_personal_data_protection_e.pdf
41.Barchi F, Little MT. National ethics guidance in sub-Saharan Africa on the collection and use of human biological specimens: A systematic review. BMC Med Ethics. 2016;17(1), Art. #64. 10.1186/s12910-016-0146-9 [DOI] [PMC free article] [PubMed] [Google Scholar]
42.Academy of Science of South Africa (ASSAf). Concept note: The Protection of Personal Information Act No 4 of 2013: A Code of Conduct for Research [document on the Internet]. c2021 [cited 2022 May 03]. Available from: https://www.assaf.org.za/files/2020/POPIA%20CoC%20Research_Conceptnote_Letter%20003.pdf

[R1] 1.The World Health Organization. World health report 2013: Research for universal health coverage [webpage on the Internet]. c2013 [cited 2022 Aug 22]. Available from: https://www.afro.who.int/publications/world-health-report-2013-research-universal-health-coverage

[R2] 2.The World Medical Association (WMA). WMA Statement on Healthcare Information for All [webpage on the Internet]. c2019 [cited 2022 Aug 22]. Available from: https://www.wma.net/policies-post/wma-statement-on-healthcare-information-for-all/

[R3] 3.Do Lee W, Qian M, Schwanen T. The association between socioeconomic status and mobility reductions in the early stage of England’s COVID-19 epidemic. Health Place. 2021;69, Art. #102563. 10.1016/j.healthplace.2021.102563 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R4] 4.Trestian R, Celeste E, Xie G, Lohar P, Bendechache M, Brennan R, et al. The privacy paradox – investigating people’s attitude towards privacy in a time of COVID-19. In: Proceedings of the 14th International Conference on Communications (COMM); 16–18 June 2022; Bucharest, Romania. IEEE; 2022. p. 1–6. 10.1109/COMM54429.2022.9817170 [DOI] [Google Scholar]

[R5] 5.Commonwealth Secretariat, World Health Organization (WHO). Commonwealth and WHO to strengthen cooperation on health, including access to vaccines [media release]. World Health Organization (WHO). 7 February 2022. Available from: https://www.who.int/news/item/07-02-2022-commonwealth-and-who-to-strengthen-cooperation-on-health-including-access-to-vaccines [Google Scholar]

[R6] 6.Nachega JB, Uthman OA, Ho YS, Lo M, Anude C, Kayembe P, et al. Current status and future prospects of epidemiology and public health training and research in the WHO African region. Int J Epidemiol. 2012;41(6):1829–1846. 10.1093/ije/dys189 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R7] 7.Sam-Agudu NA, Rabie H, Pipo MT, Byamungu LN, Masekela R, Van der Zalm MM, et al. The critical need for pooled data on coronavirus disease 2019 in African children: An AFREhealth call for action through multicountry research collaboration. Clin Infect Dis. 2021;73(10):1913–1919. 10.1093/cid/ciab142 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R8] 8.Haleem A, Javaid M, Khan IH, Vaishya R. Significant applications of big data in COVID-19 pandemic. Indian J Orthop. 2020;54(4):526–528. 10.1007/s43465-020-00129-z [DOI] [PMC free article] [PubMed] [Google Scholar]

[R9] 9.Townsend B The lawful sharing of health research data in South Africa and beyond. Inf Commun Technol Law. 2022;31(1):17–34. 10.1080/13600834.2021.1918905 [DOI] [Google Scholar]

[R10] 10.Staunton C, Tschigg K, Sherman G. Data protection, data management, and data sharing: Stakeholder perspectives on the protection of personal health information in South Africa. PLoS ONE. 2021;16(12), e0260341. 10.1371/journal.pone.0260341 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R11] 11.RDA COVID-19 Working Group. RDA COVID-19 Recommendations and guidelines on data sharing. Research Data Alliance (RDA); 2020. 10.15497/rda00052 [DOI] [Google Scholar]

[R12] 12.Research Data Alliance. Enhancing access to research data during crises: Lessons learned from the COVID-19 pandemic. Paris: Organisation for Economic Co-operation and Development (OECD); 2021. Available from: https://www.oecd.org/sti/inno/enhance-access-research-data-during-crises.htm [Google Scholar]

[R13] 13.Syrowatka A, Kuznetsova M, Alsubai A, Beckman AL, Bain PA, Craig KJT, et al. Leveraging artificial intelligence for pandemic preparedness and response: A scoping review to identify key use cases. NPJ Digit Med. 2021;4(1), Art. #96. 10.1038/s41746-021-00459-8 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R14] 14.Tonacci A, Genovese S, Pioggia G, Gangemi S. COVID-19 pandemic: Different roles for scientific publications and funding face to epidemiological data – an European, country-based perspective. Clin Mol Allergy. 2021;19(1), Art. #16. 10.1186/s12948-021-00154-9 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R15] 15.Wellcome Trust. Data sharing in public health emergencies [webpage on the Internet]. c2019 [cited 2022 Aug 22]. Available from: https://wellcome.org/what-we-do/our-work/data-sharing-public-health-emergencies [Google Scholar]

[R16] 16.African Union (AU). The digital transformation strategy for Africa (2020–2030). Addis Ababa: AU; 2021. Available from: https://au.int/sites/default/files/documents/38507-doc-dts-english.pdf [Google Scholar]

[R17] 17.The Royal Society, Ada Lovelace Institute. Learning data lessons: Data access and sharing during COVID-19 [document on the Internet]. c2021 [cited 2022 Mar 29]. Available from: https://royalsociety.org/-/media/policy/Publications/2021/learning-data-lessons-data-access-and-sharing-during-COVID-19.pdf?la=en-GB&hash=DA87DF3B44154E407FDADC6B4269CEED

[R18] 18.Abebe R, Aruleba K, Birhane A, Kingsley S, Obaido G, Remy S, et al. Narratives and counternarratives on data sharing in Africa. In: Proceedings of the 2021 FAccT ACM Conference on Fairness, Accountability, and Transparency; 3–10 March 2021; virtual event. New York: Association for Computing Machinery (ACM); 2021. p. 329–341. 10.1145/3442188.3445897 [DOI] [Google Scholar]

[R19] 19.Pyo S, Reggi L, Martin E. The potential role of open data in mitigating the COVID-19 pandemic: Challenges and opportunities. Health Affairs Blog. 2 November 2020. [cited 2022 Mar 29]. 10.1377/forefront.20201029.94898 [DOI] [Google Scholar]

[R20] 20.Coronavirus Resource Center, Johns Hopkins University and Medicine. COVID-19 Dashboard by the Center for Systems Science and Engineering (CSSE) at Johns Hopkins University (JHU) [webpage on the Internet]. No date [cited 2022 Aug 23]. Available from: https://coronavirus.jhu.edu/map.html

[R21] 21.The Royal Society. Science as an open enterprise. Science Policy Centre report 02/12. London: The Royal Society; 2012. Available from: https://royalsociety.org/~/media/policy/projects/sape/2012-06-20-saoe.pdf [Google Scholar]

[R22] 22.Hedberg K, Maher J. Collecting data. In: Rasmussen S, Goodman R, editors. The CDC field epidemiology manual. New York: Oxford Academic; 2019. p. 53–70. 10.1093/oso/9780190933692.003.0004 [DOI] [Google Scholar]

[R23] 23.World Health Organization (WHO). Integrated disease surveillance and response technical guidelines in the WHO Africa region. Booklet one: Introduction section. Brazzaville: WHO Regional Office for Africa; 2019. Available from: https://apps.who.int/iris/bitstream/handle/10665/325015/WHO-AF-WHE-CPI-05.2019-eng.pdf?sequence=1&isAllowed=y [Google Scholar]

[R24] 24.Committee on Population; Division of Behavioral and Social Sciences and Education; US National Academies of Sciences, Engineering and Medicine. Sharing research data to improve public health in Africa: A workshop summary. O’Connell ME, Plewes TJ, rapporteurs. Washington DC: US National Academies Press; 2015. 10.17226/21801 [DOI] [PubMed] [Google Scholar]

[R25] 25.Africa Centres for Disease Control and Prevention. Africa CDC event-based surveillance framework [document on the Internet] c2018 [cited 2022 May 03]. Available from: https://africacdc.org/download/africa-cdc-event-based-surveillance-framework/

[R26] 26.Africa Centres for Disease Control and Prevention. Public health information systems [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/public-health-information-systems/

[R27] 27.Africa Centres for Disease Control and Prevention. Southern Africa RISLNET. World Bank-Africa CDC Regional Investment Financing Project [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/southern-africa-rislnet/

[R28] 28.Africa Centres for Disease Control and Prevention. Extension for Community Healthcare Outcomes (ECHO) [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/public-health-information-systems/extension-for-community-healthcare-outcomes-echo/

[R29] 29.Africa Centres for Disease Control and Prevention. Digital disease surveillance [webpage on the Internet]. No date [cited 2022 May 03]. Available from: https://africacdc.org/programme/surveillance-disease-intelligence/digital-disease-surveillance/

[R30] 30.Vryzakis A, Thereaux O. How our network is considering data ethics: Survey results. The Open Data Institue Blog. 11 March 2020. Available from: https://theodi.org/article/how-our-network-is-considering-data-ethics-survey-results/ [Google Scholar]

[R31] 31.Van Panhuis WG, Paul P, Emerson C, Grefenstette J, Wilder R, Herbst AJ, et al. A systematic review of barriers to data sharing in public health. BMC Public Health. 2014;14, Art. #1144. 10.1186/1471-2458-14-1144 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R32] 32.Lucas-Dominguez R, Alonso-Arroyo A, Vidal-Infer A, Aleixandre-Benavent R. The sharing of research data facing the COVID-19 pandemic. Scientometrics. 2021;126(6):4975–4990. 10.1007/s11192-021-03971-6 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R33] 33.Moorthy V, Henao Restrepo AM, Preziosi MP, Swaminathan S. Data sharing for novel coronavirus (COVID-19). Bull World Health Organ. 2020;98(3):150. 10.2471/BLT.20.251561 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R34] 34.Capocasa M, Anagnostou P, Bisol GD. A light in the dark: Open access to medical literature and the COVID-19 pandemic. Inf Res. 2022;27(2), Art. #929. 10.47989/irpaper929 [DOI] [Google Scholar]

[R35] 35.UK Central Digital and Data Office. Data ethics framework [webpage on the Internet]. c2018 [cited 2022 Mar 29]. Available from: https://www.gov.uk/government/publications/data-ethics-framework/data-ethics-framework-2020

[R36] 36.Mahomed S, Loots G, Staunton C. The role of data transfer agreements in ethically managing data sharing for research in South Africa. S Afr J Bioeth Law. 2022;15(1):26–30. 10.7196/SAJBL.2022.v15i1.807 [DOI] [Google Scholar]

[R37] 37.Scimago Journal & Country Rank. Country rankings: Public Health, Environment, and Occupational Health [database on the Internet]. c2022 [cited 2022 Aug 23]. Available from: https://www.scimagojr.com/countryrank.php?region=Africa&category=2739

[R38] 38.Suominen K, Vambell E. Alliance for E-Trade Development: Toward an African data transfer regime to enable MSMEs’ cross-border ecommerce [document on the Internet]. c2021 [cited 2022 May 06]. Available from: https://www.allianceforetradedevelopment.org/_files/ugd/478c1a_72021e35a826441db0723642a79e65e5.pdf

[R39] 39.The Parliament of the Republic of Ghana. Data Protection Act, 2012.

[R40] 40.The Member States of the African Union. African Union Convention on Cyber Security and Personal Data Protection [document on the Internet]. c2014 [cited 2022 Aug 22]. Available from: https://au.int/sites/default/files/treaties/29560-treaty-0048_-_african_union_convention_on_cyber_security_and_personal_data_protection_e.pdf

[R41] 41.Barchi F, Little MT. National ethics guidance in sub-Saharan Africa on the collection and use of human biological specimens: A systematic review. BMC Med Ethics. 2016;17(1), Art. #64. 10.1186/s12910-016-0146-9 [DOI] [PMC free article] [PubMed] [Google Scholar]

[R42] 42.Academy of Science of South Africa (ASSAf). Concept note: The Protection of Personal Information Act No 4 of 2013: A Code of Conduct for Research [document on the Internet]. c2021 [cited 2022 May 03]. Available from: https://www.assaf.org.za/files/2020/POPIA%20CoC%20Research_Conceptnote_Letter%20003.pdf

PERMALINK

Data sharing governance in sub-Saharan Africa during public health emergencies: Gaps and guidance

Dirk Brand

Jerome A Singh

Annelize G Nienaber McKay

Nezerith Cengiz

Keymanthri Moodley

Abstract

Introduction

Data requirements to manage COVID-19 and other health pandemics

Box 1: Key limitations in data sharing.

Initiatives to facilitate cross-border data sharing in Africa

Data stewardship: Ethics and governance considerations

Box 2: Recommendations of the Council on Enhancing Access to and Sharing of Data in 2022.

Box 3: Minimum requirements for a data transfer agreement.

Africa’s data sharing regulatory landscape

Table 1:

Box 4: Common conditions enforced in various data protection laws.

Box 5: Factors to consider in the processing of personal information¹⁸.

Conclusion and recommendations

Significance:

Acknowledgement

Footnotes

References

ACTIONS

PERMALINK

RESOURCES

Cite

Add to Collections

PERMALINK

Data sharing governance in sub-Saharan Africa during public health emergencies: Gaps and guidance

Dirk Brand

Jerome A Singh

Annelize G Nienaber McKay

Nezerith Cengiz

Keymanthri Moodley

Abstract

Introduction

Data requirements to manage COVID-19 and other health pandemics

Box 1: Key limitations in data sharing.

Initiatives to facilitate cross-border data sharing in Africa

Data stewardship: Ethics and governance considerations

Box 2: Recommendations of the Council on Enhancing Access to and Sharing of Data in 2022.

Box 3: Minimum requirements for a data transfer agreement.

Africa’s data sharing regulatory landscape

Table 1:

Box 4: Common conditions enforced in various data protection laws.

Box 5: Factors to consider in the processing of personal information18.

Conclusion and recommendations

Significance:

Acknowledgement

Footnotes

References

ACTIONS

PERMALINK

RESOURCES

Similar articles

Cited by other articles

Links to NCBI Databases

Box 5: Factors to consider in the processing of personal information¹⁸.