Can the Government be trusted on e-security?

Can we trust the Government to keep our electronic data safe? Clearly, the latest scandal to hit the department of Revenue and Customs, where 25 million records were downloaded then lost in the post, shows the low level of security they are working towards.

The Government has been under fire since it was revealed the two discs went astray, but they are simply blaming low level civil servants and not questioning the “systemic” failures that were clearly present. It has transpired that a warning was sent about security issues from a National Audit Office official 16 days before this incident, but this was ignored.

Imagine the situation of downloading patient records for 25 million people on to a CD that then goes missing. In light of this, I do not think work can continue on the patient electronic record until an independent enquiry into security for the spine has carried-out and published.

Doctors have been voicing concerns about access to sensitive materials which will be hosted on a central spine for some time now. Maybe as a result of this, the Department of Health will take the concerns of these clinicians on the safety of patient data more seriously.

A breech in health security will not only result in the fall of the Government but also destroy the trust that patient's have in doctors to keep their confidential information safe.

Comments [12]

John Lalor

Posted: 24/11/2007 16:52:49

It was entirely predictable, I spent time predicting it and always opposed the centralisation and widespread distribution of Medical records.

Have you changed your opinion, Luke because you steadfastly supported big government controlling everyone's medical records.........

Lets avoid a 'breach in health security' by avoiding any more centralisation.

Too radical, I suppose!

Brian Mansfield

Posted: 25/11/2007 16:37:36

HMRC may have done us all a favour all we need now is a good audit commission review of the cost/benefit of connecting for health and with any luck the whole edifice will come tumbling down

Rupen Kulkarni

Posted: 25/11/2007 18:24:03

e-security is a myth. Ask any techie. Its time to shelve this and get on with actual improvements.

Luke Koupparis

Posted: 25/11/2007 21:59:46

John, you are correct. I have not totally u-turned here but I do think that we cannot risk our patient data. I am also concerned about areas such as EMIS web in light of this and need to reconsider whether our practice will embark on this.

Tim Southwood

Posted: 25/11/2007 22:50:26

Dont forget its not just the Inland revenue with missing DATA but also the missing Standardlife Discs too !!! I know for a fact that there are persons who regularly hack into the Nhs Net for a bit of fun .I certainly don't want my personal data on line with the track record of the government .

John Lalor

Posted: 26/11/2007 18:35:09

Thanks for that Luke. It is quite offensive that IT techies have MORE access to the computers in surgeries than many GPs.

We might mess up all that complicated stuff! They can download onto usb pens whatever they like.

Lets get behind confidentiality in consultations. I am not opposed to giving patients their medical records to keep for themselves if they want......

Thomas Mawdsley

Posted: 28/11/2007 14:34:34

Despite my initial approval of the idea of a central NHS register, I have become more and more concerned about the nature of confidentiality.In my youth, very many years ago, I worked for an Orthopaedic Surgeon, who never incorporated the cause of injury in the records, although he retained a copy of his own private notes. This was to ensure that Insurance Companies were entirely on the history from the claimant and his/her (though usually his) medical adviser alone for their information, not just anyone in the hospital who thought they might find something useful. This was a completely private system of medical care, and confidentiality was a very serious matter. Though not quite so Luddite,I am still appalled at the amount of information we put on to our records and then share with number-crunchers in both local and central administration. Who benefits? Me? You? The patient? or more likely the nebulous greater good!

John Lalor

Posted: 28/11/2007 21:40:01

NO . No way, never, not at all.

nuff said

John Squire

Posted: 29/11/2007 16:43:36

Nobody can be trusted on e-security except onmedica

Mary Hawking

Posted: 02/12/2007 16:07:12

While talking about records, techies and access...
Has anyone worked out ( or even better, knows) how confidentiality and security are managed in integrated shared systems such as CSC TPP claims to be?
NME (Nortt, Midlands, East) is planning to implement this (according to both Yorkshire & the Humer SHA and North Tyne PCT IM&T strategies, regardless of GP preferences.
What I haven't seen is anything addressing problems such as who is the Data Controller, who decides who can access records, whether access is limited to those with a Legitimate relationship, and what measures there are for ensuring that information is not missed e.g. abnormal blood results when the test was ordered by someone outside the practice.
If the PCT , TPP or CSC were the data controllers, do you think the GMC would approve?

Yahya Memon

Posted: 06/12/2007 13:42:28

needs cool head thinking to evolve procedures to safe guard such sensitive data
Abandoning the progress made so far is not an option

Luke Koupparis

Posted: 06/12/2007 22:40:08

Yahya, if it is a question of patient data and confidentiality then there is no question that it should be scrapped. We only have one chance to get this right.

To view comments and add your own you must be a registered user.

Click to log in or register

Previous posts

Other bloggers

Can the Government be trusted on e-security?

Tell a colleague

Bookmark with