loading page

Privacy preserving vaccinating- and testing-pass for the European Union
  • Dominik Schrahe,
  • Thomas Städter
Dominik Schrahe
FOM Hochschule fur Oekonomie & Management gemeinnutzige Gesellschaft mbH

Corresponding Author:dominik.schrahe@fom-net.de

Author Profile
Thomas Städter
FOM Hochschule fur Oekonomie & Management gemeinnutzige Gesellschaft mbH
Author Profile

Abstract

Physicians and scientists hope that health-data will provide new insights into improving medical care and optimizing healthcare costs. However, data protection laws in Europe often place limits on the use of patient data. During the COVID-19 pandemic, both digital immunity records and data on infections were needed for pandemic management. Using this example, the research project aims to create a system concept for vaccination, testing, and recovery proof called P3VT (Privacy Preserving Pass for Vaccination and Testing), that will make collected data available to research and policy pandemic management in real time and anonymized. P3VT was developed consistently considering the goals of privacy-by-design, data minimisation and transparency of the EU-GDPR. Expert interviews validated the system from medical, technical and privacy perspectives. P3VT offers the following advantages compared to the EU digital COVID certificate: Pseudonymized proof of vaccination, testing, and recovery, reducing misuse of sensitive personal data Transparency about the nature, timing, and purpose of the proof strengthens user trust Use of anonymous data improves pandemic management, and research P3VT is thus an exemplary solution for the comprehensive provision of health-data for research purposes in combination with high level of data protection. Further areas of application are conceivable.
21 Feb 2023Submitted to Security and Privacy
21 Feb 2023Submission Checks Completed
21 Feb 2023Assigned to Editor
24 Feb 2023Reviewer(s) Assigned
08 Apr 2023Review(s) Completed, Editorial Evaluation Pending
08 Apr 2023Editorial Decision: Revise Major
16 May 20231st Revision Received
16 May 2023Submission Checks Completed
16 May 2023Assigned to Editor
16 May 2023Review(s) Completed, Editorial Evaluation Pending
18 May 2023Reviewer(s) Assigned
12 Jun 2023Editorial Decision: Accept
Jan 2024Published in SECURITY AND PRIVACY volume 7 issue 1. https://doi.org/10.1002/spy2.332