Affiliation:
1. Institut für Gesundheit und Soziales, FOM Hochschule für Oekonomie und Management
Abstract
Abstract
Purpose
Physicians and scientists hope to gain new insights from health data to improve medical care and optimize costs in the healthcare sector. However, data protection laws in Europe often impose limits on the use of patient data. During the COVID-19 pandemic the exercise of all civil rights and liberties depends on successful vaccinations, negative tests, and recovery from the disease. Digital proof thereof was of particular importance for participation in social life. This research project aims to create a system concept for vaccination, testing, and recovery proof called P3VT (Privacy Preserving Pass for Vaccination and Testing), which makes all collected data anonymously available in real time to scientists as well as to political pandemic management.
Methods
Based on the Design Science Research methodology (DSR) [1], P3VT is the artifact created by the research project. It was developed over several iterations, consistently taking into consideration the goals of privacy-by-design, data minimisation and transparency of the EU-GDPR. Expert interviews have been conducted to validate the system from a medical, technical and data protection perspective.
Results
By using distributed ledger technology and distributed identities, P3VT offers the following advantages compared to the EU digital COVID certificate:
· Pseudonymous proof of vaccination, testing, and recovery, reducing the misuse of sensitive personal data
· Transparency on type, time, and purpose of proof increases users' trust
· Use of anonymous vaccination and testing data to improve regulatory pandemic management, as well as research
· Flexible specification of proof conditions based on the latest epidemiological findings or individual requirements
· Elimination of manual ID checks during the verification process.
Conclusion
P3VT provides a novel combination of unforgeable pseudonymous proof of COVID-19 vaccination, testing, and recovery with simultaneous provision of anonymous data for research purposes and regulatory pandemic management. It is therefore an example of how the comprehensive provision of health data for research purposes can be combined with high data protection requirements. Further areas of application are conceivable.
Publisher
Research Square Platform LLC
Reference46 articles.
1. Design Science in Information Systems Research;Hevner AR;MIS Quarterly,2004
2. Iskandar, K.: Gefälschte Impfausweise in Umlauf. https://www.faz.net/aktuell/rhein-main/corona-impfung-gefaelschte-impfpaesse-auf-frankfurter-schwarzmarkt-17295828.html (2021). Accessed 17 April 2021
3. A survey on digital certificates approaches for the covid-19 pandemic;Karopoulos G;IEEE Access,2021
4. European Commission: Regulation of the European Parliament and of the Council on a framework for the issuance, verification and acceptance of interoperable certificates on vaccination, testing and recovery to facilitate free movement during the COVID-19 pandemic (Digital Green Certificate), Brussels (2021)
5. Krempl, S.: Digitaler Impfnachweis: EU-Staaten einigen sich auf technische Details. https://heise.de/-6027321 (2021). Accessed 26 April 2021