Sounds like The DBA Knows What She is Doing
Access to the summarized data will be a standard SOX/ISO process. Everyone: government, businesses, individuals will have access to this
Access to the dataset with the individual records will be ISO/SOX and then re-requested, re-authorized, AUTHORIZED BY A SENIOR someone, re-documented, re-executed, re-logged, multiple times. These people are bureaucrats, secure behinds are the primary requirement.
Other than the security services and criminals, I don't see any other group that would even try for the detailed dataset. And, like many others, I am sure the security services already have a copy of it.
Just An Anonymous Canuck