NHS still rubbish at caring for data
ICO warns, again. Surely that'll work this time
The Information Commissioner's Office has again warned the NHS that it is not doing enough to safeguard patients' data.
This week's featured failures come from Stoke-on-Trent and Basingstoke and North Hampshire. NHS Stoke lost 2,000 paper physiotherapy files, and is not sure if they were destroyed or simply filed in the wrong place.
Basingstoke managed to lose an Excel spreadsheet containing 917 pathology results - emailed from an insecure address. The sheet was not password-protected and the receiving department had no need for such a large quantity of medical records.
Both organisations have promised to try harder in future, and their chief executives have signed letters to that effect.
Mick Gorril, head of enforcement at the ICO, said: “Everyone makes mistakes, but regrettably there are far too many within the NHS.
"Health bodies must implement the appropriate procedures when storing and transferring patients’ sensitive personal information."
A quarter of all data breaches which are reported to the ICO come from the NHS. ®
Heads on sticks...
The only thing that will ever work.
The only thing you're never going to see happen. Count on it.
And that goes for a whole range of problems within the NHS, not just IT.
It happens every day
I was in York hospital last week. On a trolley, in a public area was an unsupervised NHS laptop. I have no idea what was on it, but it wouldn't have been difficult to steal.
What a shambles.
And what teeth has the Information Commissioner got? Even if he could impose huge fines, there wouldn't be much point, as it's all public money. The only thing that will concentrate minds is some senior heads on sticks, IMO.
I also suspect that the problem is far worse than stated. My partner's childhood medical records have mysteriously gone AWOL, but we haven't told the ICO about it, because it will just make more work, and nothing will happen...