For example, a geriatrician requesting access to paediatric systems or records. This could include looking at more information than necessary on a patient or service user, or knowingly requesting (and obtaining) access to information that is not relevant to your role. This could include an email containing information about a patient being sent to the wrong email address. For example, deliberately changing a medication dosage from milligrams (mg) to grams (g). This could include a staff member (or hacker) maliciously changes something in a patient or service user record. This could include, for example, an unencrypted memory stick containing health and care data is lost. A personal data breach means an accidental or deliberate breach of security which leads to: The loss or unlawful destruction of data There may be occasions when things go wrong. This means ensuring it is only accessed by those that need it, providing only information required for that purpose, and ensuring you have consent or another legal basis to share the information. You are required by law to protect the personal or confidential patient information you use when providing care. There are several safeguards in place to ensure that data is used across the health and care system in a safe, secure and legal way. Information security is the responsibility of each individual local health and care organisation, from GP practices to hospital trusts.Įnsuring health and care data is protected and used safely is a priority for the NHS. If you are dissatisfied with the outcome of your complaint, you can contact the Information Commissioner’s Office and raise the issue with them. If you discover a potential data breach, you can contact the organisation who you think has caused the breach and make a complaint through its complaints process. Alternatively, they may put information on their website. Your health and care organisation may contact you directly, for example, by sending you an email or letter. Your health and care organisation will also inform the Information Commissioner’s Office (ICO), for example, if your personal information was lost in a public place. If there is a breach to the security of your information and there is a high risk to your rights and freedoms, you should be informed by your health and care organisation. If this happens, steps will be taken to ensure that it doesn’t happen again, that the risks to you and your care are minimised, and everyone learns from the mistake. However, accidents may occasionally happen and your records may have been used in ways that they shouldn’t have, shared inappropriately, or have been destroyed without authorisation. This includes electronic and paper records. Health and care organisations hold data about you and are required by law to keep this information secure from loss, inappropriate disclosure or access.
0 kommentar(er)
