Cross-border health data sharing between Singapore and Switzerland: controlling for competing regulatory requirements

Research in biomedical and health sciences using data-intensive methods increasingly involve multi-party cross-border institutional collaborations. Regulatory complexities governing international data flow remain challenging to navigate, particularly where differing legal standards in relation to data and privacy protections exist in the respective jurisdictions. In this paper, we use the example of a use case from a joint health research program between Singapore and Switzerland to illustrate the possibility of cross-border data flow for these two jurisdictions with no reciprocal adequacy recognition standards. We have therefore compared data privacy and biomedical research ethics laws in both jurisdictions to help determine when cross-border data sharing could occur that are compliant with data privacy laws. Our comparison makes reference to when technical and organizational measures including privacy enhancing technologies are appropriate to support data sharing. This paper has the potential to inform researchers collaborating with international institutions in navigating similar privacy regulatory considerations in their research and in developing their collaborative agreements.