{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,11]],"date-time":"2026-02-11T18:38:09Z","timestamp":1770835089871,"version":"3.50.1"},"reference-count":30,"publisher":"Georg Thieme Verlag KG","issue":"01","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Appl Clin Inform"],"published-print":{"date-parts":[[2025,1]]},"abstract":"Abstract<\/jats:title>\n Objectives\u2003This study aimed to (1) empirically investigate current practices and analyze ethical dimensions of clinical data sharing by health care organizations for uses other than treatment, payment, and operations; and (2) make recommendations to inform research and policy for health care organizations to protect patients' privacy and autonomy when sharing data with unrelated third parties.<\/jats:p>\n Methods\u2003Semistructured interviews and surveys involving 24 informatics leaders from 22 U.S. health care organizations, accompanied by thematic and ethical analyses.<\/jats:p>\n Results\u2003We found considerable heterogeneity across organizations in policies and practices. Respondents understood \u201cdata sharing\u201d and \u201cresearch\u201d in very different ways. Their interpretations of these terms ranged from making data available for academic and public health uses, and to health information exchanges; to selling data for corporate research; and to contracting with aggregators for future resale or use. The nine interview themes were that health care organizations: (1) share clinical data with many types of organizations, (2) have a variety of motivations for sharing data, (3) do not make data-sharing policies readily available, (4) have widely varying data-sharing approval processes, (5) most commonly rely on Health Insurance and Portability and Accountability Act (HIPAA) de-identification to protect privacy, (6) were concerned about clinical data use by electronic health record vendors, (7) lacked data-sharing transparency to the general public, (8) allowed individual patients little control over sharing of their data, and (9) had not yet changed data-sharing practices within the year following the U.S. Supreme Court 2022 decision denying rights to abortion.<\/jats:p>\n Conclusion\u2003Our analysis identified gaps between ethical principles and health care organizations' data-sharing policies and practices. To better align clinical data-sharing practices with patient expectations and biomedical ethical principles, we recommend updating HIPAA, including re-identification and upstream sharing restrictions in data-sharing contracts, better coordination across data-sharing approval processes, fuller transparency and opt-out options for patients, and accountability for data-sharing and consequent harms.<\/jats:p>","DOI":"10.1055\/a-2432-0329","type":"journal-article","created":{"date-parts":[[2024,10,3]],"date-time":"2024-10-03T23:11:21Z","timestamp":1727997081000},"page":"090-100","source":"Crossref","is-referenced-by-count":3,"title":["Ethical Dimensions of Clinical Data Sharing by U.S. Health Care Organizations for Purposes beyond Direct Patient Care: Interviews with Health Care Leaders"],"prefix":"10.1055","volume":"16","author":[{"given":"Brian R.","family":"Jackson","sequence":"additional","affiliation":[{"name":"University of Utah, Salt Lake City, Utah, United States"}]},{"given":"Bonnie","family":"Kaplan","sequence":"additional","affiliation":[{"name":"Department of Biostatistics (Health Informatics), Bioethics Center, Information Society Project, Solomon Center for Health Law and Policy, Center for Biomedical Data Science, and Program for Biomedical Ethics, Yale University, Yale School of Public Health, New Haven, Connecticut, United States"}]},{"given":"Richard","family":"Schreiber","sequence":"additional","affiliation":[{"name":"Information Services, Penn State Health, Camp Hill, Pennsylvania, United States"},{"name":"Department of Biomedical Informatics and Data Science, Johns Hopkins School of Medicine, University of Maryland Graduate School of Medicine, Baltimore, Maryland, United States"},{"name":"University of Maryland Graduate School, Clinical Informatics Master of Science Program, Baltimore, Maryland, United States"}]},{"given":"Paul R.","family":"DeMuro","sequence":"additional","affiliation":[{"name":"Epstein Becker Green, Dallas, Texas, United States"}]},{"given":"Victoria","family":"Nichols-Johnson","sequence":"additional","affiliation":[{"name":"Southern Illinois University School of Medicine, Springfield, Illinois, United States"}]},{"given":"Larry","family":"Ozeran","sequence":"additional","affiliation":[{"name":"Clinical Informatics Inc., Woodland, California, United States"}]},{"given":"Anthony","family":"Solomonides","sequence":"additional","affiliation":[{"name":"Research Institute, Endeavor Health, Evanston, Illinois, United States"}]},{"given":"Ross","family":"Koppel","sequence":"additional","affiliation":[{"name":"Department of Biomedical Informatics, Perelman School of Medicine and The Leonard Davis Institute of Health Economics, University of Pennsylvania, Philadelphia, Pennsylvania, United States"},{"name":"Department of Biomedical Informatics, Jacobs School of Medicine, University at Buffalo, Buffalo, New York, United States"}]}],"member":"194","published-online":{"date-parts":[[2025,1,29]]},"reference":[{"issue":"12","key":"ref1","doi-asserted-by":"crossref","first-page":"1237","DOI":"10.1001\/jama.2016.2420","article-title":"Data sharing: an ethical and scientific imperative","volume":"315","author":"H Bauchner","year":"2016","journal-title":"JAMA"},{"issue":"01","key":"ref2","doi-asserted-by":"crossref","first-page":"7","DOI":"10.1136\/amiajnl-2012-001023","article-title":"Patients want granular privacy control over health information in electronic medical records","volume":"20","author":"K Caine","year":"2013","journal-title":"J Am Med Inform Assoc"},{"key":"ref3","doi-asserted-by":"crossref","first-page":"e45002","DOI":"10.2196\/45002","article-title":"Patients' and members of the public's wishes regarding transparency in the context of secondary use of health data: Scoping review","volume":"25","author":"A Cumyn","year":"2023","journal-title":"J Med Internet Res"},{"issue":"01","key":"ref4","doi-asserted-by":"crossref","first-page":"66","DOI":"10.1186\/s12911-023-02143-1","article-title":"Exploring patient perspectives on the secondary use of their personal health information: an interview study","volume":"23","author":"R Dobson","year":"2023","journal-title":"BMC Med Inform Decis Mak"},{"issue":"01","key":"ref5","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.ijmedinf.2012.11.003","article-title":"Trustworthy reuse of health data: a transnational perspective","volume":"82","author":"A Geissbuhler","year":"2013","journal-title":"Int J Med Inform"},{"issue":"08","key":"ref6","doi-asserted-by":"crossref","first-page":"e199550","DOI":"10.1001\/jamanetworkopen.2019.9550","article-title":"Patent perspectives about decisions to share medical data and biospecimens for research","volume":"2","author":"J Kim","year":"2019","journal-title":"JAMA Netw Open"},{"issue":"01","key":"ref7","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1136\/medethics-2019-105651","article-title":"Patients' and public views and attitudes towards the sharing of health data for research: a narrative review of the empirical evidence","volume":"48","author":"S Kalkman","year":"2022","journal-title":"J Med Ethics"},{"issue":"02","key":"ref8","doi-asserted-by":"crossref","first-page":"312","DOI":"10.1017\/S0963180115000614","article-title":"How should health data be used? Privacy, secondary use, and big data sales","volume":"25","author":"B Kaplan","year":"2016","journal-title":"Camb Q Healthc Ethics"},{"issue":"01","key":"ref9","doi-asserted-by":"crossref","first-page":"lsaa062","DOI":"10.1093\/jlb\/lsaa062","article-title":"Seeing through health information technology: the need for transparency in software, algorithms, data privacy, and regulation","volume":"7","author":"B Kaplan","year":"2020","journal-title":"J Law Biosci"},{"issue":"06","key":"ref10","doi-asserted-by":"crossref","first-page":"1137","DOI":"10.1093\/jamia\/ocad058","article-title":"Patient and researcher stakeholder preferences for use of electronic health record data: a qualitative study to guide the design and development of a platform to honor patient preferences","volume":"30","author":"B Morse","year":"2023","journal-title":"J Am Med Inform Assoc"},{"issue":"06","key":"ref11","doi-asserted-by":"crossref","first-page":"223","DOI":"10.1002\/jsc.2558","article-title":"Data sharing decisions: perceptions and intentions in healthcare","volume":"32","author":"A Kharlamov","year":"2023","journal-title":"Strateg Change"},{"issue":"12","key":"ref12","doi-asserted-by":"crossref","first-page":"1141","DOI":"10.1001\/jama.2019.11365","article-title":"Big data, big tech, and protecting patient privacy","volume":"322","author":"I G Cohen","year":"2019","journal-title":"JAMA"},{"issue":"01","key":"ref13","doi-asserted-by":"crossref","first-page":"12","DOI":"10.1186\/s40504-017-0060-z","article-title":"Ethical sharing of health data in online platforms - which values should be considered?","volume":"13","author":"B Riso","year":"2017","journal-title":"Life Sci Soc Policy"},{"issue":"09","key":"ref14","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1080\/15265161.2010.494215","article-title":"Is deidentification sufficient to protect health privacy in research?","volume":"10","author":"M A Rothstein","year":"2010","journal-title":"Am J Bioeth"},{"issue":"13","key":"ref15","doi-asserted-by":"crossref","first-page":"1061","DOI":"10.1161\/CIR.0000000000001173","article-title":"Principles for health information collection sharing, and use: a policy statement from the American Heart Association","volume":"148","author":"K Spector-Bagdady","year":"2023","journal-title":"Circulation"},{"issue":"03","key":"ref16","doi-asserted-by":"crossref","first-page":"646","DOI":"10.1093\/jamia\/ocaa260","article-title":"Ten principles for data sharing and commercialization","volume":"28","author":"C L Cole","year":"2021","journal-title":"J Am Med Inform Assoc"},{"issue":"07","key":"ref17","doi-asserted-by":"crossref","first-page":"994","DOI":"10.7326\/M20-7639","article-title":"Health information privacy, protection and use in the expanding digital health ecosystem: a position paper of the American College of Physicians","volume":"174","author":"B Rockwern","year":"2021","journal-title":"Ann Intern Med"},{"issue":"11","key":"ref18","doi-asserted-by":"crossref","first-page":"11","DOI":"10.1080\/15265161.2023.2209535","article-title":"Ethical responsibilities for companies that process personal data","volume":"23","author":"M S McCoy","year":"2023","journal-title":"Am J Bioeth"},{"key":"ref19","first-page":"30","volume-title":"Qualitative research methods for evaluating computer information systems","author":"B Kaplan","year":"2005","edition":"2nd ed."},{"issue":"02","key":"ref21","doi-asserted-by":"crossref","first-page":"169","DOI":"10.1136\/jamia.2009.000026","article-title":"Evaluating re-identification risks with respect to the HIPAA privacy rule","volume":"17","author":"K Benitez","year":"2010","journal-title":"J Am Med Inform Assoc"},{"issue":"04","key":"ref22","doi-asserted-by":"crossref","first-page":"e239","DOI":"10.1016\/S2589-7500(22)00234-5","article-title":"Does deidentification of data from wearable devices give us a false sense of security? A systematic review","volume":"5","author":"L Chikwetu","year":"2023","journal-title":"Lancet Digit Health"},{"key":"ref23","doi-asserted-by":"crossref","first-page":"S110","DOI":"10.1197\/jamia.M1240","article-title":"Disambiguation data: extracting information from anonymized sources","volume":"9","author":"S Dreiseitl","year":"2002","journal-title":"J Am Med Inform Assoc"},{"issue":"03","key":"ref28","doi-asserted-by":"crossref","first-page":"179","DOI":"10.1016\/j.jbi.2004.04.005","article-title":"How (not) to protect genomic data privacy in a distributed network: using trail re-identification to evaluate and design anonymity protection systems","volume":"37","author":"B Malin","year":"2004","journal-title":"J Biomed Inform"},{"key":"ref29","doi-asserted-by":"crossref","first-page":"3069","DOI":"10.1038\/s41467-019-10933-3","article-title":"Estimating the success of reidentifications in incomplete datasets using generative models","volume":"10","author":"L Rocher","year":"2019","journal-title":"Nat Commun"},{"key":"ref31","first-page":"19","volume-title":"Big data and individual autonomy in a crowd","author":"B J Evans","year":"2018"},{"issue":"03","key":"ref34","doi-asserted-by":"crossref","first-page":"256","DOI":"10.1017\/S0963180114000589","article-title":"Selling health data: de-identification, privacy, and speech","volume":"24","author":"B Kaplan","year":"2015","journal-title":"Camb Q Healthc Ethics"},{"issue":"07","key":"ref36","doi-asserted-by":"crossref","first-page":"515","DOI":"10.1136\/medethics-2021-107464","article-title":"Data for sale: trust, confidence and sharing health data with commercial companies","volume":"49","author":"M Graham","year":"2023","journal-title":"J Med Ethics"},{"key":"ref37","volume-title":"The immortal life of Henrietta Lacks","author":"R Skloot","year":"2010"},{"key":"ref38","doi-asserted-by":"crossref","first-page":"e130","DOI":"10.1136\/amiajnl-2014-002804","article-title":"The double-edged sword of electronic health records: implications for patient disclosure","volume":"22","author":"C Campos-Castillo","year":"2015","journal-title":"J Am Med Inform Assoc"},{"key":"ref39","doi-asserted-by":"crossref","first-page":"833","DOI":"10.1055\/a-2373-3291","article-title":"What do we mean by sharing of patient data? DaSH - A data sharing hierarchy of privacy and ethical challenges","volume":"15","author":"R Schreiber","year":"2024","journal-title":"Appl Clin Inform"}],"container-title":["Applied Clinical Informatics"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.thieme-connect.de\/products\/ejournals\/pdf\/10.1055\/a-2432-0329.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,29]],"date-time":"2025-01-29T23:57:13Z","timestamp":1738195033000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.thieme-connect.de\/DOI\/DOI?10.1055\/a-2432-0329"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,3]]},"references-count":30,"journal-issue":{"issue":"01","published-online":{"date-parts":[[2025,1,1]]},"published-print":{"date-parts":[[2025,1]]}},"URL":"https:\/\/doi.org\/10.1055\/a-2432-0329","archive":["Portico","CLOCKSS"],"relation":{},"ISSN":["1869-0327"],"issn-type":[{"value":"1869-0327","type":"electronic"}],"subject":[],"published-other":{"date-parts":[[2024,10,3]]},"published":{"date-parts":[[2024,10,3]]}}}