Data protection and information security in biomedical research: A sequential explanatory mixed study

•This is a mixed quantitative-qualitative study adopting a sequential explanatory model.•The aim is to evaluate the knowledge and compliance behaviors of medical students towards data collection and information security rules.•Students have a low overall knowledge score of these regulations. There w...

Full description

Saved in:
Bibliographic Details
Published in:International journal of medical informatics (Shannon, Ireland) Ireland), 2024-12, Vol.192, p.105635, Article 105635
Main Authors: Farah, Marialida, Helou, Samar, Raad, Elie, El Helou, Elie
Format: Article
Language:English
Subjects:
Adult
Behaviors
Biomedical Research
Computer Security
Confidentiality
Data protection
Female
Health Knowledge, Attitudes, Practice
Humans
Information security
Knowledge
Male
Students, Medical - psychology
Surveys and Questionnaires
Young Adult
Citations: Items that this one cites
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:•This is a mixed quantitative-qualitative study adopting a sequential explanatory model.•The aim is to evaluate the knowledge and compliance behaviors of medical students towards data collection and information security rules.•Students have a low overall knowledge score of these regulations. There was a correlation between non-compliant behavior and lack of knowledge.Three major themes explain non-compliance: a lack of knowledge, work overload, and a false perception of the hospital as a secure environment.Need for better awareness interventions that could reinforce compliance with data protection and information security. Biomedical research is a pillar of every medical student’s career. When collecting data, several regulations are established to ensure the protection of individuals. Most medical students are not compliant with the guidelines, and this is probably due to a lack of knowledge. The aim of our research is to evaluate the knowledge and behavior of medical students regarding these rules, then attempt to explain the results obtained. This is a sequential explanatory mixed study including an initial quantitative section followed by an explanatory qualitative section. For the quantitative part, we administered a questionnaire based on the information security regulation and the GDPR to third- and fourth-year medical students. We evaluated their knowledge and behaviors and their correlation. For the qualitative part, we conducted semi-structured interviews with eight students followed by thematic analysis to explain the results. Most students have a lack of knowledge. A correlation was found between the non-compliant behavior of keeping the laptop unattended in a public place and a low level of knowledge. For the qualitative section, the thematic analysis represents three groups to explain non-compliant behavior: lack of knowledge, work overload, and consideration of the hospital as a safe place. Data collection and information security rules are rarely followed by medical students. This is mainly due to lack of knowledge, work overload and assuming the hospital as a safe place. Future awareness interventions would be necessary to improve non-compliant behavior and subsequently ensure a more secure environment during medical research.
ISSN:1386-5056
1872-8243
1872-8243
DOI:10.1016/j.ijmedinf.2024.105635