|
| CONSENT POLICY | = | |
|
| Origin.URL | = | https: www.ga4gh.org/wp-content/uploads/GA4GH-Final-Revised-Consent-Policy_16Sept2019.pdf |
|
| Version.Name | = | POL 002 / v 2.0: September 2019 |
|
| Ti | = | Global Alliance for Genomics and Health: Consent Policy |
|
| Preamble.Ti | = | Preamble |
|
| Preamble.sec | = | This Policy aims to guide the sharing of genomic and health-related data in a way that supports the autonomous decision-making of {_data_subject}s while promoting the common good of international data sharing, allowing everyone to share in the benefits of scientific progress and its applications as is their right. It builds on the GA4GH Framework for Responsible Sharing of Genomic and Health-Related Data (“{DefT.Framework}”), and should be read in combination with other GA4GH Policies. |
|
| Preamble. | = | [G/Z/Base] |
|
| 0.sec | = | {Preamble.Sec} |
|
| 1.Ti | = | Context |
|
| 1.1.Ti | = | Background |
|
| 1.1.sec | = | Informed consent is a bedrock principle underlying the ethical conduct of clinical practice and health research involving humans. Seeking {_data_subject}s’ consent to international data sharing shows respect for their ability to make their own decisions, and upholds the trust essential for the effective practice of medicine and research. Consent, in any form it takes, will only be valid if freely given by a capable {_data_subject} (or the legal representative) who has had enough time, materials, and support to make an informed decision. Data may be accessed and re-used long after consent has been given, yet it may not be possible to fully specify the scope of data sharing at the time of that consent. Also, if the consent requested is too specific, or presented too vaguely, it may be difficult to share data in a way that respects the {_data_subject}’s expectations. Like the {_Framework}, this policy addresses both sharing of prospective (not yet collected) data, as well as retrospective (already collected) data. It promotes the sharing of data in a manner consistent with the {_data_subject}s’ consent, authorization by competent authorities, and/or lawful bases, so as to comply with applicable laws and general ethical principles. |
|
| 1.2.Ti | = | Purpose |
|
| 1.2.sec | = | This policy describes how to maximize the responsible and respectful international data sharing through the design of consents for prospective data collection and through the assessment of existing consents for retrospective data sharing. |
|
| 1.3.Ti | = | Principles |
|
| 1.3.0.sec | = | This Policy is founded on the following basic principles: |
|
| 1.3.1.sec | = | Consent is an open, communicative, and continuing relationship. |
|
| 1.3.2.sec | = | The processes for taking consent and any ongoing communications between researchers and {_data_subject}s should be straight-forward, easy to use, and accessible to all. |
|
| 1.3.3.sec | = | The consent process should be situated within and overseen by appropriate governance mechanisms. |
|
| 1.3.4.sec | = | To the extent possible, the consent process should clearly describe to {_data_subject}s any plans to share data across research groups, institutions, sectors (e.g., research, clinical, and commercial), and borders, and any associated limitations or conditions. iii. Best practices and technologies should be adopted to ensure commitments made to {_data_subject}s concerning data sharing are captured, tracked, and communicated across data sharing networks. |
|
| 1.3. | = | [G/Z/ol-i/s4] |
|
| Note | = | Renumbering Definitions to "1.4". The original has some confusion in numbering. The "Definitions" is numbered "3" but the section above is also numbered 3. |
|
| Def. | = | [G/GA4GH/Consent-Policy/Sec/Def/0.md] |
|
| 1.4.Sec | = | {Def.Sec} |
|
| 1. | = | [G/Z/ol/4] |
|
| 2.Ti | = | Consent Best Practices |
|
| 2.0.sec | = | These Best Practices are founded on the Core Elements of the {_Framework} and should be interpreted in a proportionate manner that acknowledges different levels of risk for different data types, data sharing contexts, and cultures. |
|
| 2.1.Ti | = | Transparency |
|
| 2.1.1.sec | = | Consent materials and discussions should clearly indicate if data may be shared, for example, outside of institutions, across borders, for long-term deposition in repositories, or for commercial purposes, where applicable. |
|
| 2.1.2.sec | = | It should be clear what forms data will take, the sources from which the data have been or will be derived, and with whom and for what purposes data will be shared. |
|
| 2.1.3.sec | = | Consent materials and discussions should make it clear that while every reasonable effort will be made to protect privacy, a risk of re-identifying individuals from their data remains, especially if the {_data_subject}s have already made their data available in other forms, such as public platforms (e.g., genealogy websites). |
|
| 2.1.4.sec | = | Individuals should be given the option to opt-out of data sharing plans without affecting their care or participation in research. However, if this is not possible due to the nature and goals of the activity, this should be made clear. |
|
| 2.1.5.sec | = | Where it may be impractical or impossible to retrieve or destroy data once shared, this should also be specified. |
|
| 2.1.6.sec | = | Once shared, details on how data have been shared and with whom should be made available to {_data_subject}s, as well as any general research results. This information should also be shared with the public to the greatest extent possible, in order to highlight the benefits of data sharing to advance health research. |
|
| 2.1.7.sec | = | Best practice guidance and available tools should be used in the development of consent materials to support {_data_subject} understanding. |
|
| 2.1. | = | [G/Z/ol-bullet/s7] |
|
| 2.2.Ti | = | Accountability |
|
| 2.2.1.sec | = | The consent process, in any form it takes, should be properly documented and subject to quality control measures, addressing versioning of consent, the mapping of {_data_subject}s to respective versions, options chosen or withdrawn, and the communication tools used to ensure data are shared as agreed. |
|
| 2.2.2.sec | = | Data sharing plans and consent materials should be regularly reviewed, updated, and made available, according to applicable regulations and policies. |
|
| 2.2.3.sec | = | Easy to use and accessible procedures and instructions should be in place for researchers and {_data_subject}s to contact each other with updates, questions regarding data sharing, withdrawal, complaints, or inquiries about policies and practices relating to the sharing of genomic and health-related data. |
|
| 2.2.4.sec | = | Data sharing plans and consent materials should anticipate if a {_data_subject}s’ legal status might change (e.g., when a minor reaches majority or when a {_data_subject} loses capacity or passes away) to ensure the future availability of data while respecting {_data_subject}s’ choices. |
|
| 2.2.5.sec | = | Consent requirements should not unnecessarily exclude individuals with diminished capacity, or individuals who are deceased, from participating in data sharing as long as appropriate protections are in place (e.g., oversight, representation). |
|
| 2.2.6.sec | = | Consent materials and discussions should be adapted to support the appropriate involvement of individuals with diminished capacity in decision-making. |
|
| 2.2. | = | [G/Z/ol-bullet/s6] |
|
| 2.3.Ti | = | Privacy, Data Protection, and Confidentiality |
|
| 2.3.1.sec | = | Consent materials and discussions should specify what categories of data will be shared (e.g., DNA analyses, health record data), the processes used to de-identify those data (e.g., rendering data pseudonymized or anonymized), and the governance and security provisions in place to protect those data (e.g., {_controlled_access}, {_registered_access}, secure computing environments). |
|
| 2.3.2.sec | = | If applicable, consent materials and discussions should mention if data may be shared with parties in countries where there is an increased privacy risk and provide information on any potential implications or safety measures being taken. |
|
| 2.3.3.sec | = | Consent materials and discussions should acknowledge that data sharing may have implications for family members. |
|
| 2.3. | = | [G/Z/ol-bullet/s3] |
|
| 2. | = | [G/Z/ol/3] |
|
| 3.Ti | = | Retrospective Data Sharing |
|
| 3.1.0.sec | = | Prior to retrospective data sharing or a substantial change to data sharing plans, the following review process should be conducted: |
|
| 3.1.1.sec | = | The existing consent materials and associated policy documents should be assessed to determine if (broader) data sharing was foreseen. |
|
| 3.1.2.sec | = | If (broader) data sharing was not foreseen, {_data_subject}s should where possible and practical be given an opportunity to re-consent to (broader) data sharing, or they should be notified and given an opportunity to opt-out. |
|
| 3.1.3.sec | = | If re-consent or notification with opt-out are not possible or practical, it may still be appropriate to share a limited, anonymized version of the data, or to seek authorization from a competent authority (e.g., consent waiver). |
|
| 3.1. | = | [G/Z/ol-bullet/s3] |
|
| 3.2.sec | = | Regardless, careful consideration should be given to whether or not (broader) data sharing is justifiable based on the potential risks and benefits. |
|
| 3.3.sec | = | Data sharing consortia or repositories should provide tools and guidance to allow contributors to assess if their consent materials cover the desired level of data sharing. They should also request attestations or demonstrations from contributors that data sharing is permitted. |
|
| 3. | = | [G/Z/ol-bullet/s3] |
|
| 4.Ti | = | Implementation Mechanisms and Amendments |
|
| 4.1.sec | = | Organizations and bodies supporting this Policy should take all reasonable and appropriate measures, whether of a regulatory, contractual, administrative or other character, to give effect to this Policy and promote its implementation, monitoring, and enforcement. Procedures and policies should be transparent and accessible. Attention should be paid to the interrelation of this Policy with other GA4GH Policies (e.g., Data Privacy and Security Policy, Accountability Policy). |
|
| 4.2.sec | = | Any persons, organizations or bodies supporting this Policy may propose one or more amendments to the present Policy by communicating the amendments to the GA4GH’s Regulatory and Ethics Work Stream ({Def.REWS.sec}). The {_REWS} shall publicly circulate such amendments for comments and possible inclusion in this Policy. |
|
| 4.3.sec | = | The {_REWS}, in collaboration with biomedical, patient advocacy, and ethical and policy organizations and committees, will routinely review its provisions, be aware of advances in basic research and technology, and ethical and legal developments, and attempt to ensure that this Policy is fit for purpose. |
|
| 4. | = | [G/Z/ol-bullet/s3] |
|
| 5.Ti | = | Acknowledgements |
|
| 5.sec | = | This Policy was developed by the Regulatory and Ethics Work Stream of the GA4GH, and is the result of the collaborative work, comments, and input of many individual and organizational contributors. |
|
| 00.sec | = | {Revise.Sec} |
|
| Revise.Ti | = | Policy Revision History |
|
| Revise.0.sec | = | Policy Number/Version Date Effective Summary of Revisions |
|
| Revise.1.sec | = | POL 002 / v 2.0 September 2019 Global revision |
|
| Revise.2.sec | = | POL 002 / v. 1.0 June 2015 Original document |
|
| Revise. | = | [G/Z/ol/s2] |
|
| = | [G/Z/ol-II/5] |
|
| Note | = | Defined terms as hyperlinks. |
|
| _data_subject | = | data subject |
|
| _Framework | = | Framework |
|
| _anonymized_data | = | anonymized data |
|
| _controlled_access | = | controlled access |
|
| _pseudonymized_data | = | pseudonymized data |
|
| _registered_access | = | registered access |
|
| _REWS | = | REWS |
|
|
| Note | = | For terms defined inline: |
|
| Def.Framework.sec | = | {_Framework} |
|
| Def.REWS.sec | = | {_REWS} |
|
/Docs/G/GA4GH/Consent-Policy/Form/0.md