Saved in:
Bibliographic Details
Main Authors: Sarkar, Atiquer Rahman, Chuang, Yao-Shun, Mohammed, Noman, Jiang, Xiaoqian
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2402.00179
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866909523063603200
author Sarkar, Atiquer Rahman
Chuang, Yao-Shun
Mohammed, Noman
Jiang, Xiaoqian
author_facet Sarkar, Atiquer Rahman
Chuang, Yao-Shun
Mohammed, Noman
Jiang, Xiaoqian
contents For sharing privacy-sensitive data, de-identification is commonly regarded as adequate for safeguarding privacy. Synthetic data is also being considered as a privacy-preserving alternative. Recent successes with numerical and tabular data generative models and the breakthroughs in large generative language models raise the question of whether synthetically generated clinical notes could be a viable alternative to real notes for research purposes. In this work, we demonstrated that (i) de-identification of real clinical notes does not protect records against a membership inference attack, (ii) proposed a novel approach to generate synthetic clinical notes using the current state-of-the-art large language models, (iii) evaluated the performance of the synthetically generated notes in a clinical domain task, and (iv) proposed a way to mount a membership inference attack where the target model is trained with synthetic data. We observed that when synthetically generated notes closely match the performance of real data, they also exhibit similar privacy concerns to the real data. Whether other approaches to synthetically generated clinical notes could offer better trade-offs and become a better alternative to sensitive real notes warrants further investigation.
format Preprint
id arxiv_https___arxiv_org_abs_2402_00179
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle De-identification is not enough: a comparison between de-identified and synthetic clinical notes
Sarkar, Atiquer Rahman
Chuang, Yao-Shun
Mohammed, Noman
Jiang, Xiaoqian
Computation and Language
For sharing privacy-sensitive data, de-identification is commonly regarded as adequate for safeguarding privacy. Synthetic data is also being considered as a privacy-preserving alternative. Recent successes with numerical and tabular data generative models and the breakthroughs in large generative language models raise the question of whether synthetically generated clinical notes could be a viable alternative to real notes for research purposes. In this work, we demonstrated that (i) de-identification of real clinical notes does not protect records against a membership inference attack, (ii) proposed a novel approach to generate synthetic clinical notes using the current state-of-the-art large language models, (iii) evaluated the performance of the synthetically generated notes in a clinical domain task, and (iv) proposed a way to mount a membership inference attack where the target model is trained with synthetic data. We observed that when synthetically generated notes closely match the performance of real data, they also exhibit similar privacy concerns to the real data. Whether other approaches to synthetically generated clinical notes could offer better trade-offs and become a better alternative to sensitive real notes warrants further investigation.
title De-identification is not enough: a comparison between de-identified and synthetic clinical notes
topic Computation and Language
url https://arxiv.org/abs/2402.00179