Table 1.
Recommendations for protecting the privacy of health data
| Privacy policy | Recommendations |
|---|---|
| Privacy awareness | Sharing the minimum amount of person-specific data to accomplish the intended purpose. When in doubt, err on the side of providing less data |
| Privacy by education | Privacy-awareness education; user-friendly way of setting privacy; use and protection of personally identifiable information (PII) policy; advance notice of any material changes to the privacy policy |
| Privacy by design | Building data protection and privacy by design into the platform; sharing anonymized data within and beyond the community |
| Privacy by regulation | Ensuring consent to non-medical uses before users’ data are used; banning unauthorized re-identification of anonymized data; prohibiting inappropriate uses of health data |