Practices for the Review of Data Requests and the Disclosure of Health Information by Health Ministries and Large Data Custodians Prepared for the Pan Canadian Health Information Privacy (HIP) Group Authored by: Khaled El Emam, June 2010 Document Information Document Title: Practices for the Review of Data Requests and the Disclosure of Health Information by Health Ministries and Large Data Cust [...] Examples of unknown practices include how data requests are made by external parties, how they are reviewed, the criteria for deciding whether to disclose information, the de-identification practices used when the data is disclosed, whether these practices vary by the nature of the data requester/recipient and the data requested, and whether they are consistent within each ministry. [...] The initial coding of the transcripts was based on the categories in the general model shown in Figure 1. However, throughout the analysis these practice categories were modified slightly to fit the data set. [...] While the coding we performed was subjective, two factors dilute the subjectivity: (a) three different coders extracted the information from transcripts, and this reduces the subjectivity in interpreting the transcripts, and (b) the “Researcher Notes” are intended to provide some of the context to interpret the counts. [...] Allow requestors to link 0 (0) • None of the custodians provide sufficient identifiable identifiable data information to allow the data requestor to link the data to some external database.