In a privacy-conscious patient data tracking system, which feature is most essential to privacy?

Protecting privacy hinges on restricting what is collected to only what’s truly needed and ensuring only the right people can see it. Data minimization means the system gathers and stores only the essential information, reducing the amount of sensitive data that could be exposed. Coupled with access control—strict, least-privilege permissions, strong authentication, and audit trails—you prevent unauthorized viewing and keep a clear record of who accessed what and when. This combination minimizes both the data at risk and the chance that someone without a legitimate need can access it, which is at the heart of privacy in a patient data system. The other options fail this goal in clear ways: collecting data without consent increases risk and erodes trust; not encrypting data leaves it vulnerable if a breach occurs; and making records publicly accessible directly destroys privacy.