| The compilation, dissemination and use of databases containing human genetic information raise obvious data protection and privacy concerns. European Union Directive 95/46, implemented in the UK as the Data Protection Act 1998, sets out a rigorous regime of controls and rights concerning the processing of information about individuals. Those involved in the burgeoning bioinformatics sphere need to give careful thought to whether the legislation applies to their activities. This article will show that this may not always be entirely straightforward.The EU Directive and UK Act are concerned with the 'processing' of 'personal data'relating to living individuals. The definition of 'processing' in the legislation is all encompassing, including (but not being limited to) obtaining, organising, recording, holding, disclosing, using and even erasing the information. Therefore the application of the legislation depends more on what is meant by the term 'personal data'. Any information stored or manipulated using a computer qualifies as 'data', but to be 'personal' data the information must relate to a living individual. |
