Closed prechelt closed 2 years ago
We discussed a similar approach some time ago.
In itself, IRIS could map this case. For this purpose, it would be necessary that the name or the identification characteristics of the person are transmitted to a.nwesen.de when the request is generated by the health department. The name should be known to the health department anyway and you will get the name with your current implementation without IRIS from the health department as well, right?
If a.nwesen.de then receives the request, the matching could be performed and the corresponding data would be transmitted to IRIS in the regular way.
From my point of view, there would be no reason why we shouldn't discuss and explore in detail whether there is a quick way to provide you with the information you need for your matching.
you will get the name with your current implementation without IRIS from the health department as well, right?
Actually no. The infected person will be affiliated with the university (as a member or student) and we require them to notify us at the same time as they inform the Gesundheitsamt. So we can retrieve the data proactively and send it to the Gesundheitsamt before they even ask. And if the information they provided is wrong or insufficient, we simply ask back.
As an important result, we can inform the contact persons very quickly.
As far as I know, the Gesundheitsamt told us that likely we will drive the whole contract tracing regime ourselves, because they will not have the capacity to do so.
It's a Berlin thing where health departments outsource the notication process to the persons or organizations themselves, but it can occur in other occasions where universities have a slightly different legal basis towards keeping contact data. In some occasions they have most of the data anyway and know about infections anyway.
The problem in this scenario is that we send a health information to fulfill the request (infected person) which should be checked with data protection and security. There is only one reason you are be able to request data from a legal basis. Leaking this data would be the worst case.
So we could adapt IRIS for this type of request but I think it should require a special check if the requested application is allowed to retrieve this information. Only if this check passes we should send out a request like this.
Have to think about other implications on other parts of IRIS but I think that could be a way we could handle this type of request.
instead of the name, we discussed using the phone number, which should work quite well, as there are less typo-possibilities and a mostly unique matching (except if people mistype their phone number at either place). What do you think of that @lucky-lusa @bkastl ?
Closing this as I think it's outdated now, thanks for the discussion everyone!
We talked about integrating my browser-based contact tracing application for universities, a.nwesen.de, with IRIS connect.
http://a.nwesen.de/
https://github.com/prechelt/anwesende
I have looked at it and now think that an integration does not make sense because the two applications tick too differently. Here is how:
locations
and time intervals.locations
(such as small pubs with 20 people), not-so-well for mid-sizedlocations
(such as large restaurants with 100 people), and not well for largelocations
(such as concerts with 1000 people).room
is equivalent to an IRISlocation
.seat
in aroom
and eachseat
has a known distance from any otherseat
in thatroom
. Contact person data retrieved from a.nwesen.de spells out the distance of each person from the infected person, which is a great help for the Gesundheitsamt's work.location
(by aseat
) instead of only their personal data.rooms
visited, only the browser history. But many mobile browsers' history function does not list the dates and times of the URL visit and so is very difficult to use for reconstructing the visits.seat
numbers from the top of their heads. They would often not even know theroom
numbers of where they were. Matching student-provided imprecise seminar-room location data to an IRISlocation
list would be very cumbersome for a Gesundheitsamt official.In short: The way how IRIS constructs a group of contact persons and the way how a.nwesen.de does it are sufficiently different that applying IRIS to a.nwesen.de would make life harder for the Gesundheitsamt rather than easier.
Is my above understanding of IRIS correct?
If so, no integration should be attempted.