Feeds

Computer boffin on NHS Spine: Get out while you can

Summary Care Record summarily slammed

Top 5 reasons to deploy VMware with Tegile

A leading computer scientist has sounded a warning over an NHS data collection plan, urging patients to opt out.

The Summary Care Record (SCR) scheme will make outlines of medical records available to hundreds of thousands of NHS staff in England. The idea is to provide doctors and nurses in England with easier access to information on patients registered with other doctors without having to call or fax their main medics.

But the approach is fraught with privacy pitfalls while offering questionable clinical benefits, according to Professor Ross Anderson of Cambridge University.

Anderson notes that a similar system was abused when it was introduced in Scotland by a rogue medic who snooped into the medical records of health records of prime minister Gordon Brown and SNP leader Alex Salmond. The doctor concerned was spared prosecution for hacking because of his own medical problems.

The SCR scheme is billed as a means for medical staff to have easier access to information on whether patients are allergic to drugs such as penicillin, but even this limited ambition is liable to fail. "It won’t be available abroad (or even in Scotland) so if you are allergic to penicillin you’d better keep on wearing your dogtag," Anderson argues.

The roll-out of summary care record (“The Spine”) in London has been accompanied by efforts to educate patients about opting out of the scheme via posters and leaflets in general surgeries. By default, patients will be enrolled in the scheme.

Anderson welcomed this action by doctors' organisations while criticising Labour plans to talk up the supposed benefits of the scheme, which he views as one move towards the bigger threat of a database state. Both the main opposition parties, Conservatives and LibDem, oppose the scheme.

A Department of Health spokesman sent us the following:

Patients have at least twelve weeks to decide if they want to have a Summary Care Record and, together with GPs, have had several sources of information on how the records work and the opt-out process made available to them. All patients have the right to opt out and they can also change their minds at any time.

To date, over six million patients have been sent standardised public information packs about Summary Care Records through regional Public Information Programmes. GPs can also direct patients with further enquiries to the dedicated NHS Care Records Service Information Line and the NHS Care Records Service website http://www.nhscarerecords.nhs.uk/Standardised information packs for GPs are also available on the Connecting for Health website.

The patient and GP packs are being supplemented with local awareness and engagement activities such as drop-in sessions and local media coverage. Emerging benefits in Out of Hours and End of Life care in early adopter areas are increasingly winning the support of clinicians.

As regards timescales, this will largely depend on PCT readiness. Roll-out of Summary Care Records is gathering pace. As of 19th February 2010, 1,190,418 Summary Care Records had been created and over 6,000,000 patients had been written to as part of a Public Information Programme.

The opt-out rate remains consistently below 1%.

Approximately 80% of GP practices now have a compliant SCR GP system. The NHS Informatics Planning 2010/11 states that PCTs, as commissioners, should agree a timeline with their SHA for the creation of SCRs at all SCR-compliant GP practices in the financial year 2010/11. It should be stressed that Summary Care Records will not be created immediately after the 12-week period in which patients have to make a decision, but over the timeframe outlined above.

®

Internet Security Threat Report 2014

More from The Register

next story
'Kim Kardashian snaps naked selfies with a BLACKBERRY'. *Twitterati gasps*
More alleged private, nude celeb pics appear online
Home Depot ignored staff warnings of security fail laundry list
'Just use cash', former security staffer warns friends
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Snowden, Dotcom, throw bombs into NZ election campaign
Claim of tapped undersea cable refuted by Kiwi PM as Kim claims extradition plot
Freenode IRC users told to change passwords after securo-breach
Miscreants probably got in, you guys know the drill by now
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
BitTorrent's peer-to-peer chat app Bleep goes live as public alpha
A good day for privacy as invisble.im also reveals its approach to untraceable chats
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.