How do I find and share COVID-19 data?

The Queensland Government is responding rapidly to the outbreak of COVID-19. To support this effort work has commenced to establish clear process maps and workflow guidance on the movement of data across the Queensland Government. The aim of this work is to enable COVID-19 data sharing whilst upholding strong privacy and security standards.

For those wishing to examine the information sharing process in depth, or hoping to put more rigor around their sharing, please access the Information sharing authorising framework (ISAF). The ISAF consists of a set of guidance and advice to assist agencies seeking to establish and manage an information sharing activity. It is broad in it's design and can be tailored to facilitate sharing across the full spectrum of data and for a broad range of uses.

General process flowcharts

These flowcharts provide only a general overview of the steps involved in finding, sharing, and using data for the purposes of supporting Queensland Government's rapid and ongoing response to COVID-19. Please see the links below to view how the process is applied to specific situations.

Pre-authorisation: requesting data

Process flowchart - Pre-authorisation: requesting data (PNG, 33 KB)

Post-authorisation: sharing, using and storing data

Process flowchart - Post-authorisation: sharing, using and storing data (PNG, 34.03 KB)

General roles and responsibilities

Data suppliers

  • Take all the necessary steps to ascertain whether they are holding the requested data.
  • Complete a comprehensive preliminary assessment.
  • Ensure any authorisation includes:
    • statement of authorisation and the legal instrument being relied upon
    • timeframe
    • purpose of sharing
    • permitted usage conditions
    • security classification
    • access limitations
    • availability of data and the outputs of the analytics, including publication permission (e.g. of aggregate datasets to Open Data)
    • process to follow if further use of data is required for another purpose
    • monitoring and auditing requirements
    • record keeping and destruction protocols, including a review period to renegotiate with custodians.
  • Record and store authorisation, including permitted usage conditions.

Data custodians

  • Ensure all authorised users have read and are familiar with the requirements of the access and use policy.
  • Store and use data according to the terms of the authorisation (including permitted usage conditions).
  • Store and use data according to the terms of the access and use policy.
  • Be aware that any use of data must withstand peer and public scrutiny and/or disclosure.
  • Abide by the Information Privacy Principles and the National Privacy Principles in the Information Privacy Act 2009 and Queensland Government Code of Conduct provisions.
  • Maintain complete and accurate records of storage and use of data.
  • Report any incidents of inappropriate use and/or access to the Data Governance Body.

Data governance body 

  • Resolve unforeseen issues in data requesting, sharing and use.
  • Ensure all parties are following the permitted usage conditions.
  • Facilitate amendments to the conditions of use.
  • Identify and mitigate unauthorised access, release, or use of data.
  • Handle publicity and marketing; be aware that data sharing and use must withstand peer and public scrutiny and/or disclosure.
  • Ensure all parties abide by the Information Privacy Principles and the National Privacy Principles in the Information Privacy Act 2009 and Queensland Government Code of Conduct provisions.
  • Maintain and make accessible the access and use policy.

Independent audit and review body

  • Additional body to audit and review decisions of the Data Governance Body.
  • Handle escalated complaints and disputes.

Additional resources

For additional resources, refer to the Queensland Government Enterprise Architecture (QGEA). The QGEA Policies, Standards and Guidelines contain tools and techniques to support decision making in the Queensland Government.

Some useful resources are provided below.


Last Reviewed: 23 April 2020