NHS Digital announces patient de-identification software partnership

NHS Digital announces patient de-identification software partnership

July 5 2018 NHS Digital will introduce new software for the de-identification of patient...

Over half of acute trusts are now using GP e-Referral Service

Over half of acute trusts are now using GP e-Referral Service

June 14 2018 More than 50% of acute hospital trusts in England have switched off paper referrals...

NEWS app for sepsis scoring available

NEWS app for sepsis scoring available

June 4 2018 An app has been re-launched to help clinicians staff across NHS Wales calculate an...

NHS launches National Data Opt-Out facility

NHS launches National Data Opt-Out facility

May 31 2018 NHS patients can formally opt out of having their data used for research or planning...

ePACT to be decommissioned on June 8 as ePACT2 takes over

ePACT to be decommissioned on June 8 as ePACT2 takes over

May 29 2018 NHS Business Services Authority will decommission ePACT with effect from June 8, as...

  • NHS Digital announces patient de-identification software partnership

    NHS Digital announces patient de-identification software partnership

    Thursday, 05 July 2018 16:48
  • Over half of acute trusts are now using GP e-Referral Service

    Over half of acute trusts are now using GP e-Referral Service

    Thursday, 14 June 2018 14:29
  • NEWS app for sepsis scoring available

    NEWS app for sepsis scoring available

    Monday, 04 June 2018 09:58
  • NHS launches National Data Opt-Out facility

    NHS launches National Data Opt-Out facility

    Thursday, 31 May 2018 09:01
  • ePACT to be decommissioned on June 8 as ePACT2 takes over

    ePACT to be decommissioned on June 8 as ePACT2 takes over

    Tuesday, 29 May 2018 12:48

a medical professional at computer cbAugust 15 2017

People handling patient records must have a valid reason to access the information in them, the Information Commissioner’s Office has warned.

 The reminder follows a Magistrates’ Court ordering a health care assistant to pay £1,715 after unlawfully accessing patient records without a business purpose. The hospital worker was given a fine and ordered to pay costs “after pleading guilty to offences of unlawfully obtaining and unlawfully disclosing personal data.”

Among the 29 patient records accessed by the health care assistant were those of “family members, colleagues and others where no connection with the defendant is known, between December 2014 and May 2016.

“Some of the information was subsequently shared with others. That was not only a breach of patient confidentiality but also against the Data Protection Act,” the ICO said this week.

It is one of several prosecutions the ICO has brought over the past few months. Head of Enforcement Steve Eckersley said: “Once again we see an NHS employee getting themselves in serious trouble by letting their personal curiosity get the better of them.

“Patients are entitled to have their privacy protected and those who work with sensitive personal data need to know that they can’t just access it or share it with others when they feel like it. The law is clear and the consequences of breaking it can be severe.”

The ICO pointed out that a new law, the General Data Protection Regulation (GDPR) will replace the Data Protection Act 1998 with effect from May 25 2018.

“The ICO can take action to change the behaviour of organisations and individuals that collect, use and keep personal information. This includes criminal prosecution, non-criminal enforcement and audit. The ICO has the power to impose a monetary penalty on a data controller of up to £500,000,” it said.

Anyone who processes personal information must comply with eight principles of the Data Protection Act, which make sure that personal information is:

  • fairly and lawfully processed;
  • processed for limited purposes;
  • adequate, relevant and not excessive;
  • accurate and up to date;
  • not kept for longer than is necessary;
  • processed in line with the individual’s rights;
  • secure; and
  • not transferred to other countries without adequate protection.

The government has confirmed that the UK’s decision to leave the EU will not affect the commencement of the GDPR.

Links:
ICO announcement          
ICO case summary            

Management News

July 27 2018 Adolescent boys will be offered the human papilloma virus (HPV) vaccine to protect them from cancer, the Department of Health and Social Care has announced.
July 20 2018 Doctors are being reminded to ensure that any patient or other records which may be relevant to the UK Infected Blood Inquiry are not destroyed. Earlier this month, the Inquiry’s Chair, Sir...