Feeds

Welsh NHS fined £70k for patient psych file leak blunder

Email address typo leads to ICO spank first

Security for virtualized datacentres

The UK's Information Commissioner's Office (ICO) has slapped its first fine on the NHS after a mental health patient's file was leaked in an email gaffe.

The ICO handed the Aneurin Bevan Health Board in Wales a bill for £70,000 for sending the sensitive information to the wrong person.

A consultant from the NHS organisation emailed a letter containing a detailed psychological report of a patient to a secretary for formatting. But the doctor used two different spellings for the patient's name, which resulted in the file being sent to the wrong person who had the name with the different spelling.

The ICO, which gained powers to hand out stiff fines about 18 months ago, doesn't always resort to what it calls civil monetary penalties when it's told or finds out about a breach of data protection law - but it fines bodies when it thinks that the right precautions haven't been taken.

In this case, the office's probe found that neither of the staff members had been given adequate training, and there weren't enough checks in place to stop private information falling into the hands of the wrong people.

"The health service holds some of the most sensitive information available. The damage and distress caused by the loss of a patient’s medical record is obvious, therefore it is vital that organisations across this sector make sure their data protection practices are adequate," the ICO's top enforcer Stephen Eckersley said in a canned statement.

"We are pleased that the Aneuvin Bevan Health Board has now committed to taking action to address the problems highlighted by our investigation; however organisations across the health service must stand up and take notice of this decision if they want to avoid future enforcement action from the ICO," he warned. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
Microsoft pulls another dodgy patch
Redmond makes a hash of hashing add-on
FYI: OS X Yosemite's Spotlight tells Apple EVERYTHING you're looking for
It's on by default – didn't you read the small print?
'LulzSec leader Aush0k' found to be naughty boy not worthy of jail
15 months home detention leaves egg on feds' faces as they grab for more power
Forget passwords, let's use SELFIES, says Obama's cyber tsar
Michael Daniel wants to kill passwords dead
FBI boss: We don't want a backdoor, we want the front door to phones
Claims it's what the Founding Fathers would have wanted – catching killers and pedos
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.