Feeds

NHS preps spammy mailshots advertising 'BIGGEST medical data grab in HISTORY'

Want to escape Big Brother health databases? Just read your junk mail

Top three mobile application threats

GPs will no longer carry the sole burden of telling patients that their medical records will be shared across the NHS, after it was confirmed today that millions of households in England will receive a leaflet explaining the controversial plan.

NHS England has splurged £1m on what one critic described as a junk mail drop, which is expected to happen in January 2014.

It comes after national health bosses originally said in the summer that they would not spend any money on publicising Health Secretary Jeremy Hunt's so-called care.data proposals.

Instead, the onus had been pushed on to GP surgeries to inform patients of the planned data-sharing initiative.

Under the scheme, the Health and Social Care Information Centre (HSCIC) is having to laboriously collect patient info from GP practices and then link it with hospital data it already stores.

Earlier this year, Hunt promised The Register that the 750,000 patients who had previously declined to have their info stored in the much-ridiculed Summary Care Records would be "respected" under his new care.data plan.

But those individuals are now being told to talk to their GPs about opting out.

Meanwhile, the leaflets – which will cost each household in England about eight pence – are expected to "clearly set out how peoples' information will be used and their right to object if they have concerns," the NHS said.

The health service's director of patients and information Tim Kelsey added:

The system is designed to be extremely secure, with a suite of safeguards to protect confidentiality. But we know not everyone will feel comfortable and we want to make sure they know they have the right to say ‘no’. Patient confidentiality is non-negotiable.

Some critics of the scheme have warned that data mishaps and security blunders could lead to patient records ending up in the wrong hands, while others have questioned how private companies involved with the system might make money from the data, even if assurances are in place about anonymised storing methods.

This point was not lost on the chair of the HSCIC, Kingsley Manning, who said that "public support and understanding" was key to care.data being a success.

However, the NHS has been slammed for how it plans to tell patients about the scheme, with one critic telling El Reg that it is "junk mail consent for the biggest medical data grab in history."

Hampshire-based GP Neil Bhatia said that the HSCIC was now trying to obtain implied consent from folk living in England by only mailing the householder rather than named individuals.

He added that many people who get such post through their letterboxes simply ignore it, or chuck it away.

Worse still, Royal Mail states that people who have opted out of receiving "unaddressed mail" will only receive mailshots from government bodies under "exceptional circumstances".

Bhatia, speaking from experience, claimed it was simply wrong to use such a method to try to inform patients of the latest NHS data-sharing plans.

Remember the Hampshire Health Record? The massive medical database that was the precursor to the Summary Care Record.

Between January and March 2005, 750,000 leaflets were delivered by Royal Mail to households within Hampshire and the Isle of Wight outlining the HHR. This was supposedly to provide comprehensive informed consent to the entire population of Hampshire and the Isle of Wight and was based on an implied consent model - i.e. an opt-out model. Just like care.data.

The Department of Health later admitted - after its failure to raise awareness of its plans in Hampshire - that mailshots were not an effective way of telling patients in England about changes to how their data is stored.

In south west Hampshire alone, Bhatia told us that patients records are now being processed on three big databases - the SCR, the HHR and care.data. It remains up to those individuals to opt out from having their information stored.

"Opt-out, assuming you are aware of the databases, understand them and realise how to opt out," he said. "Unfair for patients - in every sense of the word." ®

3 Big data security analytics techniques

More from The Register

next story
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
Edward Snowden on his Putin TV appearance: 'Why all the criticism?'
Denies Q&A cameo was meant to slam US, big-up Russia
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Judge halts spread of zombie Nortel patents to Texas in Google trial
Epic Rockstar patent war to be waged in California
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.