Information stored on your laptop will have more value than the laptop
itself. We need to be concerned to protect the privacy of individuals
in corporate data and subjects in research.
- Sensitive information -- especially personal information
identifying an individual -- should not be stored on laptops or
other mobile devices unless absolutely necessary.
- Sensitive information should be removed from the laptop (PDA,
etc.) as soon as is practical. Be neat and tidy -- remove what
you're not using and empty the "Recycle Bin". But beware, deleted
files remain on the disk until overwritten (encrption helps).
- Data should be organized to separate personal identifying
information (e.g., subject #103 is "Reg Quinton" who lives at
"326 Widder St E") from case records on the subject (e.g.,
subject #103 has "problems x, y and z").
- While you may need to analyze case records on your laptop you
should avoid personal identifying information.
- Maintain as separate data sets and merge only when required.
- Anonymous subjects (ie. a "faceless" subject number) are
preferred in most research. Privacy is easier to protect if you
don't have the information.
- Subject data set to associate subject numbers with personal
identifying information (as might be required for longitudinal
research, medical records, etc.) should be kept off-line under
lock and key.
- For some data there will be legislative requirements -- e.g.,
medical records usually require strong encryption (it's hard to
make them anonymous).
