Skip to main content
NCBI home page
Human Brain Mapping logoLink to Human Brain Mapping
editorial
. 2021 Feb 1;42(7):1945–1951. doi: 10.1002/hbm.25351

The Open Brain Consent: Informing research participants and obtaining consent to share brain imaging data

Elise Bannier 1,2, Gareth Barker 3, Valentina Borghesani 4, Nils Broeckx 5, Patricia Clement 6, Kyrre E Emblem 7, Satrajit Ghosh 8,9, Enrico Glerean 10,11, Krzysztof J Gorgolewski 12, Marko Havu 13, Yaroslav O Halchenko 14,, Peer Herholz 15,, Anne Hespel 16, Stephan Heunis 17,, Yue Hu 18, Chuan‐Peng Hu 19, Dorien Huijser 20, María de la Iglesia Vayá 21, Radim Jancalek 22, Vasileios K Katsaros 23,24, Marie‐Luise Kieseler 25, Camille Maumet 26, Clara A Moreau 27, Henk‐Jan Mutsaerts 28,29, Robert Oostenveld 30, Esin Ozturk‐Isik 31, Nicolas Pascual Leone Espinosa 32, John Pellman 33, Cyril R Pernet 34,, Francesca Benedetta Pizzini 35, Amira Šerifović Trbalić 36, Paule‐Joanne Toussaint 37, Matteo Visconti di Oleggio Castello 38, Fengjuan Wang 39, Cheng Wang 40, Hua Zhu 41
PMCID: PMC8046140  PMID: 33522661

Abstract

Having the means to share research data openly is essential to modern science. For human research, a key aspect in this endeavor is obtaining consent from participants, not just to take part in a study, which is a basic ethical principle, but also to share their data with the scientific community. To ensure that the participants' privacy is respected, national and/or supranational regulations and laws are in place. It is, however, not always clear to researchers what the implications of those are, nor how to comply with them. The Open Brain Consent (https://open-brain-consent.readthedocs.io) is an international initiative that aims to provide researchers in the brain imaging community with information about data sharing options and tools. We present here a short history of this project and its latest developments, and share pointers to consent forms, including a template consent form that is compliant with the EU general data protection regulation. We also share pointers to an associated data user agreement that is not only useful in the EU context, but also for any researchers dealing with personal (clinical) data elsewhere.

Keywords: brain imaging, general data protection regulation, informed consent

1. GOAL AND BACKGROUND

Petabytes of brain imaging data are collected for research purposes every year, yet only a small fraction becomes publicly available despite evidence for the benefits of sharing such data sets (Milham et al., 2018). One reason, among others, is that openly sharing human brain imaging data requires conforming to established ethical and legal norms, in particular with respect to ensuring that research participants' privacy is respected. Ethical and legal requirements are usually validated by institutional review boards (also known as research ethics committees), which operate under national, federal, and/or supra‐national regulations. In the case of brain imaging, ethical and legal norms generally follow international recommendations for medical research involving human participants, in particular those from the World Medical Association: the declaration of Helsinki (World Medical Association, 2001) which lays down ethical principles for medical research involving human subjects, and the declaration of Taipei (World Medical Association, 2017) which lays down ethical principles regarding health databases and biobanks.

In some scientific disciplines, for example, genetics (Khan, Capps, Sum, Kuswanto, & Sim, 2014), consent is widely discussed and analyzed, and templates for participant consent forms are available and commonly used, for example, for clinical trials (https://www.who.int/ethics/review-committee/informed_consent/en/). To date, similar work has not been undertaken for brain imaging studies. The goal of the Open Brain Consent initiative is to facilitate brain imaging data sharing by providing practical tools that enable data sharing while respecting research participants' privacy. It consists primarily in providing widely acceptable information/consent forms allowing processing and deposition of data into appropriate archives for future (re)use. Additionally, the project website references tools/pipelines to minimize the risk of re‐identification and provides additional information about the various regulations to help brain imaging researchers.

2. PROJECT HISTORY AND CONTRIBUTION MODEL

The Open Brain Consent project was started in 2014 to provide (a) a collection of existing samples of consent forms allowing data sharing, (b) a reference “ultimate” consent form, and (c) tools helpful for pseudonymization, making brain imaging data easier to share. The goal of having a template consent form was, and still is, to establish a recommended wording for a consent form based on collected examples that represent community wide expertise. At that time, the OpenfMRI archive (later developed into OpenNeuro) (Poldrack et al., 2013) was confronted with issues related to the rights to share the growing number of data sets being submitted. To address them, OpenfMRI established a recommended wording which was contributed to the Open Brain Consent project in 2015. Since then, many researchers have joined the project to provide translations to a number of languages and to expand the list of sample forms and tools. In 2018, the advent of the European General Data Protection Regulation (GDPR: https://gdpr-info.eu) left many researchers unsure about the sharing of brain imaging data, since anonymous data can be shared freely, but personal data cannot. An online discussion ensued concerning the status of brain imaging data, and work began to revise the “Ultimate” Open Brain Consent form to make sharing brain imaging data, GDPR compliant. This work took place in particular during the Organization for Human Brain Mapping (https://www.humanbrainmapping.org) “hackathon” in Rome (June 2019). Based on this work, the most recent rewriting took place in November 2019 (and the following weeks) during a GLiMR action workshop (https://glimr.eu) hosted at the COST association (https://www.cost.eu) in Brussels.

The Open Brain Consent project is hosted on GitHub (https://github.com/con/open-brain-consent). Contributions to the project are submitted via GitHub's Pull Request mechanism for changes to the text and recommended additions to sample forms or detected issues are proposed via Issues. The project is open access, all materials are provided under CC‐BY‐SA 3.0 license, and we encourage researchers across the world to contribute their knowledge about data privacy, (personal) information protection, data sharing and consent. The full history of changes to the project is available in its Git history, and citable releases are provided through Zenodo.org (Halchenko et al., 2019).

3. ETHICAL CONCERNS WHEN SHARING BIOMEDICAL AND BRAIN IMAGING DATA

As more brain imaging data and biomedical data are shared openly, concerns have been raised in several publications about risks to data privacy. From a legal and ethical standpoint, risks about research participants' privacy must be identified and mitigated. This necessitates, on one hand, that procedures for data de‐identification are in place (from pseudonymization to full anonymization) along with means for individuals to exercise control over the use of their personal data. On the other hand, it requires retaining as much as possible information in the data, allowing researchers to use the data to answer specific research questions. Thus, a balance needs to be struck and that balance is influenced, in part, by the risks of re‐identification based on current technological possibilities and limitations. For instance, it has been shown that it is possible to identify participants in the 1,000 Genomes Project by combining publicly available demographic information from the American census and public information from the peoplefinder.com website with anonymized genomic data sets (Gymrek, McGuire, Golan, Halperin, & Erlich, 2013). This work, however, relied on having been given secured access to the genomic data and being able to code and use advanced cryptographic algorithms; hence, it can be argued that the risk of identification remains low. By contrast, Rocher, Hendrickx, and de Montjoye (2019) (Rocher et al., 2019) estimated the likelihood of re‐identification of individuals at around 95% by combining biomedical data and information from postcodes and census using relatively simple statistical models available in open source packages like R or Python. The cost and know‐how, in that case, is low and the risk of re‐identification is thus higher.

Brain imaging data are often collected along with a range of associated biomedical and/or clinical data which represent additional identifying features. Even if additional biomedical data are not provided, there are brain imaging specific concerns, especially for magnetic resonance imaging (MRI) data. From a standard anatomical MRI of the participants' head, the facial features can be reconstructed in 3D and matched to publicly accessible photos. Various approaches have been proposed to “deface” MRI data, from blurring to zeroing (some e.g., of defacing algorithms are presented in Figure 1). Such approaches cause data loss and, if performed too coarsely, can affect the outcome of analysis pipelines (de Sitter et al., 2020). In addition, recent advances in machine learning have cast doubt on the efficacy of this approach. Abramian and Eklund (2019) have been able to “reface” single slice data with relative success (~60 to 75% success) using machine learning (employing a Generative Adversarial Network), and it is reasonable to anticipate that methods like these will improve and become more widely available in the future. Beyond re‐identification using direct identifiers, GDPR highlights that singling out is a precondition to identification, and it should therefore be minimized. Identification can be straightforward with an anatomical MRI in which the face is available since faces are likely unique (Sheehan & Nachman, 2014), but singling‐out individuals from defaced data is also possible based on the gyral patterns that are unique to every individual (Duan et al., 2020), like fingerprints. From MRI data that do not include facial information or detailed anatomy, such as functional MRI data, it is still possible to single out individuals. For example, Ravindra and Grama (2019) were able to single out participants across multiple data sets, using task performance and connectivity patterns, with a success of ~90%. Altogether, these results suggest that biomedical data and brain MRI in particular, are at risk of re‐identification—that is, can in all likelihood not be fully anonymized—and should therefore be considered as personal data under the GDPR. Acknowledging that risks to personal data privacy exist for brain imaging data, identifying them and putting mechanisms in place to mitigate them are therefore essential, as is informing each participant throughout the process: these are core steps in the Open Brain Consent working group.

FIGURE 1.

FIGURE 1

Open in a new tab

The typical structural MRI of the brain is made up of a series of 2D slices (left) from which it is easy to reconstruct a face. Pseudonymization procedures (from the middle to right) go from blurring/masking the face to zero‐out an entire part of the image, increasing anonymity but decreasing usage and sometimes damaging the frontal part of the brain. (This image was made from the MRI of one of the authors, CP, visualized with MRICRoGL, masked using mask_face (https://nrg.wustl.edu/software/face‐masking/usage/), mri_deface from the freesurfer suite (https://surfer.nmr.mgh.harvard.edu/fswiki/mri_deface) and SPM12 (https://www.fil.ion.ucl.ac.uk/spm/software/spm12/) — (https://doi.org/10.7488/ds/2877)

4. THE ULTIMATE CONSENT FORM

Provided that national regulations allow data sharing in open public databases, a consent form template for openly sharing brain imaging data have been established, and is available in seven languages (Chinese, English, French, German, Italian, Polish, Spanish—https://open-brain-consent.readthedocs.io/en/stable/ultimate.html). This template has been established before the GDPR was in place, and is recommended for researchers outside the EU. It was informed by existing consent forms from various institutions and from discussions with ethicists. As discussed above, it aims to (a) provide privacy‐related information to the participants and (b) secure open data sharing for researchers. It also establishes a difference between the consent to take part in a research study, and the consent for sharing data for secondary usage, while these can still be combined in a single information notice.

Another feature on the consent form is that it comes in two “flavors” with a single versus dual access model. This differentiates the open and public sharing of all versus some of the data. In the latter case, researchers can give controlled access to the data not publicly shared. This is necessary to address privacy issues related to sharing biomedical metadata which increases risk of re‐identification, as discussed above.

5. THE OPEN BRAIN CONSENT, GDPR EDITION

Under the European GDPR, two types of data are defined: anonymous and personal data (Mourby et al., 2018), the latter being further subdivided based on its sensitivity. Personal sensitive data are data revealing racial or ethnic origin, sexual orientation, political opinions, religious, or philosophical beliefs, trade union membership, genetic data, biometric data processed solely to identify a human being, and health data. In this context, pseudonymization is a procedure to reduce the risk of identification by removing or replacing individual identifiers—for example, address, name—while retaining those identifiers separately from the rest of the individual information (i.e., with restricted access), thus making it difficult but not impossible to retrace this information to the actual subject. Since pseudonymization does not entirely delete the link between the information and the individual, this does not change the status of the data from personal to anonymous according to the GDPR, thus GDPR does not recognize pseudonymized data as a distinct category. This means that even after removing direct identifiers such as names, addresses, but also facial features, MRI data are likely to remain classified as personal data, since there is still a risk of re‐identification. Such a classification in turn requires compliance with all relevant aspects of GDPR.

The GDPR‐compliant template form (https://open-brain-consent.readthedocs.io/en/stable/gdpr/index.html) was taken from the ultimate Open Brain Consent form and adapted to comply with the GDPR, using examples from existing privacy statements and participant information letters encountered by members of our working group. The key elements are to (a) have a consent form that only deals with data sharing; (b) inform participants about the data storage, privacy measures (e.g., pseudonymization procedure) and control over usage (e.g., withdrawal) and; (c) provide information on how data will be shared, specifically outside the EU. These key elements must be included to promote secondary use of the data (Staunton, Slokenberga, & Mascalzoni, 2019). The main difference with the non‐EU specific consent form is that further information about privacy and usage control is provided. For researchers from the EU and affiliated countries, we therefore recommend having, in addition to their study consent form, a separate data sharing consent form based on this template.

5.1. Data user agreement

As part of information on how data will be shared, we recommend using a data user agreement (DUA) rather than a license, and a template DUA is also provided. Both, the consent and the DUA, are available in 11 languages (Bosnian, Czech, Dutch [NL/BE], English, Finnish, French, Italian, Norwegian, Greek, Spanish, Turkish—https://open-brain-consent.readthedocs.io/en/stable/gdpr/data_user_agreement.html). Since brain imaging data are seen as personal data, they are protected and sharing cannot be open and public without a legal ground/lawful basis under GDPR, and therefore only one type of access is proposed. The use of a DUA is recommended to help mitigate risks to personal data privacy of the research participants, while still supporting the sharing of said data with the wider research community. The proposed DUA explicitly asks the applicant—the researcher applying to access the participant data—to confirm that they will refrain from redistributing the data and attempting to re‐identify the participants. It also makes it clear that any applicant who downloads the data becomes the data controller, a natural or legal person, who alone or jointly with others, determines the purposes and means of the further processing of the personal data. This new data controller is then responsible for the appropriate usage of the copy of the shared data, and for ensuring that the agreed terms and conditions are applied/taken care of. This new data controller—or applicant—does not have to be within the EU, but agrees with the DUA—which refers to the Standard Contract Clauses (https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en) approved by the European Commission for data transfers to data controllers outside the EU, thus complying with the GDPR—by signing it. Licenses, in contrast, do not impose such restrictions. While a DUA must be signed, and usage is limited, it still allows for easy access and broad reuse within the scientific community. Our proposal is for institutions to have a “click‐through” DUA or similarly automated system rather than having ad hoc decisions on a case by case basis, which stands against modern open data practices. This would be particularly important/ethically desirable if researchers who collect data are also the ones deciding who has access to them (Bishop, 2016). Having said that, there are also practical and legal reasons for not using automated systems, for example, how to ensure the identity of a signatory of the DUA. If the DUA is not correctly signed by a duly identified controller, then this may render the DUA legally invalid. There are, however, solutions to this as well, for example, using electronic signatures or registered user accounts.

6. DISCUSSION

The Open Brain Consent project aims at facilitating human brain imaging data sharing. By sharing these data as openly as possible, researchers are confronted with ethical and legal issues. While ethical issues are internationally recognized and discussed, they are legally translated differently across countries creating confusion. Here we tried to reconcile these two aspects by offering two generic consent template forms that should help with the law in most situations.

Recent technological advances, not only in gathering data and linking databases, but also from statistical modeling and machine learning, increase the risk of re‐identification of pseudonymized data. As a result, it is essential to provide up‐to‐date information to research participants about data privacy (both privacy risks and right of control) which are included in the consent forms. Within the EU context, data that were previously thought to be anonymous are now considered personal. Although pseudonymization of biomedical data is still necessary and encouraged, it does not change the data status from personal to anonymous. Thus, compliance with the GDPR is required and, depending on national regulation, secured access (with or without a DUA) might be necessary. We provide information/consent templates and a DUA template for these different cases, which we believe will improve researchers' likelihood of getting approval from their institutional review boards/ethics committees to share brain imaging data on web‐serviced data repositories.

More recent data platform technologies rely on distributed data storage and/or processing models. A data set collected at multiple sites could be stored and processed at multiple locations, and yet accessed via a single query given a user is authorized to access the data (see e.g., http:// datalad .org). It remains to be seen how a DUA could be implemented for such a distributed model. In other cases, data analysis can be performed (with local or remote execution) using algorithms implementing federated learning (Sheller et al., 2020) and differential privacy concepts (redaction threshold, noise addition, query limitations, Plis et al., 2016). In such scenarios, privacy concerns are greatly reduced and the consent template should be modified accordingly, in particular regarding data confidentiality. Finally, other initiatives rely on local data processing and sharing of aggregate/derivative data only (Plis et al., 2016; Thompson et al., 2014). If individuals cannot be singled out in the shared results, a DUA is not necessary since raw/individual data remain with the data processor and re‐identification becomes impossible.

While we believe standardized templates such as these from the Open Brain Consent working group play an important role in advancing transparent research practices, they do not provide a complete solution to the complex challenges involved in sharing research data. For example, are data from brain imaging techniques other than MRI also at risk or re‐identification? Since many brain imaging data sets include various demographics, clinical metadata, and perhaps even multimodal imaging data, these are likely at risk too. As noted earlier, structural MRI data are at high risk of re‐identification because facial features are available if not sufficiently removed or obscured. Since functional MRI can also be used to single out individuals (Ravindra & Grama, 2019) despite not having such defining features, it seems pertinent to extrapolate this possibility to other whole‐brain imaging techniques, for example, magneto‐ or electro‐ encephalography (MEG‐EEG). In fact, previous work has demonstrated that a simple EEG event‐related potential (ERP) from a single electrode has a discriminability d‐prime of around three, which is only half of standard biometrics like finger or iris recognition (Gaspar, Rousselet, & Pernet, 2011). Having subjects' identity at hand, whole scalp ERP classification showed a 100% accuracy in discriminating between participants (Ruiz‐Blondet, Jin, & Laszlo, 2017). More recently, spectral power derived from MEG was shown to have participant specific embeddings dependent on sidekick cell adhesion molecule 1 encoded by the SDK1 gene, allowing discrimination and identification even between twins (Leppäaho et al., 2019). As technology on linking information and singling out individuals from large data sets is evolving, we recommend following the precautionary principle, considering any brain‐related data as personal data and consequently following the appropriate regulations. Future work will also consider linking consent to resources such as the Open Humans Project https://www.openhumans.org, which enables personal data stores. Individuals are in control of sharing their data, with whom, and for what reason. By aggregating individual data from different sources, such resources increase the richness of any data for scientific analyses while preserving privacy and allowing for consented access. The Open Brain Consent project provides a comprehensive starting point for resources that account for legal sharing of data by providing consent template forms compliant with different regulations.

CONFLICT OF INTERESTS

We declare no conflict of interest related to this work.

ACKNOWLEDGMENT

This work is first and foremost an open and free contribution from people in the working group with support from the US National Science Foundation (DataLad NSF 1429999), NIH (ReproNim NIH‐NIBIB P41 EB019936), the COST association (CA‐18206). RJ had further support from the INTER‐EXCELLENCE program (LTC20027), subprogram INTER‐COST of the Ministry of Education, Youth and Sports CR. P.H. was supported in parts by the ReproNim project and NIMH R01MH096906. E.G. was supported in parts by a grant from Neurocenter Finland and by the International Laboratory of Social Neurobiology ICN HSE RF 075–15–2019–1930.

Bannier E, Barker G, Borghesani V, et al. The Open Brain Consent: Informing research participants and obtaining consent to share brain imaging data. Hum Brain Mapp. 2021;42:1945–1951. 10.1002/hbm.25351

Authors belong to the Open Brain Consent working group: Working group collaborators in alphabetic order.

Funding information European Cooperation in Science and Technology, Grant/Award Number: CA‐18206; National Institute of Health, Grant/Award Number: NIH‐NIBIB P41 EB019936; National Science Foundation, Grant/Award Number: NSF 1429999; EU INTER‐EXCELLENCE program, Grant/Award Number: LTC20027; NIMH, Grant/Award Number: R01MH096906; International Laboratory of Social Neurobiology ICN HSE RF, Grant/Award Number: 075–15–2019–1930

Contributor Information

Yaroslav O. Halchenko, Email: yoh@dartmouth.edu, Email: yoh@datmouth.edu.

Peer Herholz, Email: herholz.peer@gmail.com.

Stephan Heunis, Email: jsheunis@gmail.com.

Cyril R Pernet, Email: wamcyril@gmail.com.

DATA AVAILABILITY STATEMENT

All material used here is distributed freely under CC‐BY license.

REFERENCES

  1. Abramian, D. , & Eklund, A. (2019). Refacing: Reconstructing anonymized facial features using GANs. Paper presented at 2019 IEEE 16th International Symposium on Biomedical Imaging (ISBI 2019) , 1104–1108. 10.1109/ISBI.2019.8759515 [DOI]
  2. Bishop, D. V. M. (2016). Open research practices: Unintended consequences and suggestions for averting them. (commentary on the peer reviewers' openness initiative). Royal Society Open Science , 3(4), 160109. 10.1098/rsos.160109 [DOI] [PMC free article] [PubMed] [Google Scholar]
  3. de Sitter, A. , Visser, M. , Brouwer, I. , Cover, K. S. , van Schijndel, R. A. , Eijgelaar, R. S. … Vrenken, H. (2020). Facing privacy in neuroimaging: Removing facial features degrades performance of image analysis methods. European Radiology , 30(2), 1062–1074. 10.1007/s00330-019-06459-3 [DOI] [PMC free article] [PubMed] [Google Scholar]
  4. Duan, D. , Xia, S. , Rekik, I. , Wu, Z. , Wang, L. , Lin, W. , … Li, G. (2020). Individual identification and individual variability analysis based on cortical folding features in developing infant singletons and twins. Human Brain Mapping , 41(8), 1985‐2003. 10.1002/hbm.24924 [DOI] [PMC free article] [PubMed] [Google Scholar]
  5. Gaspar, C. M. , Rousselet, G. A. , & Pernet, C. R. (2011). Reliability of ERP and single‐trial analyses. NeuroImage , 58(2), 620–629. 10.1016/j.neuroimage.2011.06.052 [DOI] [PubMed] [Google Scholar]
  6. Gymrek, M. , McGuire, A. L. , Golan, D. , Halperin, E. , & Erlich, Y. (2013). Identifying personal genomes by surname inference. Science , 339(6117), 321–324. 10.1126/science.1229566 [DOI] [PubMed] [Google Scholar]
  7. Halchenko Yaroslav, Vborghesani, Chris Gorgolewski , Yarikoptic‐private, Satrajit Ghosh , Kieseler Marie‐Luise, Pellman John, & Hu Chuan‐Peng. (2019). Datalad/open‐brain‐consent 0.2.4. Zenodo. 10.5281/zenodo.3403176 [DOI]
  8. Khan, A. , Capps, B. J. , Sum, M. Y. , Kuswanto, C. N. , & Sim, K. (2014). Informed consent for human genetic and genomic studies: A systematic review. Clinical Genetics , 86(3), 199–206. 10.1111/cge.12384 [DOI] [PubMed] [Google Scholar]
  9. Leppäaho, E. , Renvall, H. , Salmela, E. , Kere, J. , Salmelin, R. , & Kaski, S. (2019). Discovering heritable modes of MEG spectral power. Human Brain Mapping , 40(5), 1391–1402. 10.1002/hbm.24454 [DOI] [PMC free article] [PubMed] [Google Scholar]
  10. Milham, M. P. , Craddock, R. C. , Son, J. J. , Fleischmann, M. , Clucas, J. , Xu, H. , … Klein, A. (2018). Assessment of the impact of shared brain imaging data on the scientific literature. Nature Communications , 9(1), 1–7. 10.1038/s41467-018-04976-1 [DOI] [PMC free article] [PubMed] [Google Scholar]
  11. Mourby, M. , Mackey, E. , Elliot, M. , Gowans, H. , Wallace, S. E. , Bell, J. , … Kaye, J. (2018). Are ‘pseudonymised’ data always personal data? Implications of the GDPR for administrative data research in the UK. Computer Law and Security Review , 34(2), 222–233. 10.1016/j.clsr.2018.01.002 [DOI] [Google Scholar]
  12. Plis, S. M. , Sarwate, A. D. , Wood, D. , Dieringer, C. , Landis, D. , Reed, C. , … Calhoun, V. D. (2016). COINSTAC: A privacy enabled model and prototype for leveraging and processing decentralized brain imaging data. Frontiers in Neuroscience , 10, 365. 10.3389/fnins.2016.00365 [DOI] [PMC free article] [PubMed] [Google Scholar]
  13. Poldrack, R. A. , Barch, D. M. , Mitchell, J. P. , Wager, T. D. , Wagner, A. D. , Devlin, J. T. … Milham, M. P. (2013). Toward open sharing of task‐based fMRI data: The openfMRI project. Frontiers in Neuroinformatics, 7, 12. 10.3389/fninf.2013.00012 [DOI] [PMC free article] [PubMed] [Google Scholar]
  14. Ravindra, V. , & Grama, A. (2019). De‐anonymization attacks on neuroimaging datasets. ArXiv:1908.03260 [Cs, Eess, q‐Bio] . http://arxiv.org/abs/1908.03260
  15. Rocher, L. , Hendrickx, J. M. , & de Montjoye, Y.‐A. (2019). Estimating the success of re‐identifications in incomplete datasets using generative models. Nature Communications , 10. 10.1038/s41467-019-10933-3, 3069 [DOI] [PMC free article] [PubMed] [Google Scholar]
  16. Ruiz‐Blondet, M. V. , Jin, Z. , & Laszlo, S. (2017). Permanence of the CEREBRE brain biometric protocol. Pattern Recognition Letters , 95, 37–43. 10.1016/j.patrec.2017.05.031 [DOI] [Google Scholar]
  17. Sheehan, M. J. , & Nachman, M. W. (2014). Morphological and population genomic evidence that human faces have evolved to signal individual identity. Nature Communications , 5(1), 1–10. 10.1038/ncomms5800 [DOI] [PMC free article] [PubMed] [Google Scholar]
  18. Sheller, M. J. , Edwards, B. , Reina, G. A. , Martin, J. , Pati, S. , Kotrotsou, A. , … Bakas, S. (2020). Federated learning in medicine: Facilitating multi‐institutional collaborations without sharing patient data. Scientific Reports, 10(1), 12598. 10.1038/s41598-020-69250-1 [DOI] [PMC free article] [PubMed] [Google Scholar]
  19. Staunton, C. , Slokenberga, S. , & Mascalzoni, D. (2019). The GDPR and the research exemption: Considerations on the necessary safeguards for research biobanks. European Journal of Human Genetics , 27(8), 1159–1167. 10.1038/s41431-019-0386-5 [DOI] [PMC free article] [PubMed] [Google Scholar]
  20. Thompson, P. M. , Stein, J. L. , Medland, S. E. , Hibar, D. P. , Vasquez, A. A. , Renteria, M. E. , … Drevets, W. (2014). The ENIGMA consortium: Large‐scale collaborative analyses of neuroimaging and genetic data. Brain Imaging and Behavior , 8(2), 153–182. 10.1007/s11682-013-9269-5 [DOI] [PMC free article] [PubMed] [Google Scholar]
  21. World Medical Association . (2001). World medical association declaration of Helsinki. Bulletin of the World Health Organization , 79(4), 373–374. [PMC free article] [PubMed] [Google Scholar]
  22. World Medical Association . (2017). The world medical association declaration of Taipei . https://www.wma.net/policies‐post/wma‐declaration‐of‐taipei‐on‐ethical‐considerations‐regarding‐health‐databases‐and‐biobanks/

Associated Data

This section collects any data citations, data availability statements, or supplementary materials included in this article.

Data Availability Statement

All material used here is distributed freely under CC‐BY license.

Articles from Human Brain Mapping are provided here courtesy of Wiley

RESOURCES