Security & the NHS

[meles meles]

We're sure that Mr Plod & The Powers That Be will take this into consideration when they next think about compulsory flagging of shooters' medical records. Won't they ?

"NHS misplaced half a million patient documents"

http://www.bbc.co.uk/news/health-39101489

[daman]

At a recent visit to my GP I glanced at the screen as he was typing up a prescription. Under a section on the screen titled "Active Problems" it listed "Firearms Certificate Holder".

I asked why it was a 'problem' and was told "that's just how they set up the system."

My GP himself doesn't see it as a problem, but every time he looks at his screen the system tells him that it is!

[RDC]

I've found a substantial number of detailed patient records in 3 derelict hospitals now. Even made it onto the front page of the Yorkshire Evening Post once and the cheeky gits sent me a pdf of it after nicking my photos.

I have always contacted the local NHS trust to let them know what they may have forgotten.

[safetyfirst]

Someone once emailed me a complete set of medial records for all patients in a whole NHS trust.

Unencrypted.

Twice.

Even after I raised it with the CEO of my clients company the first time.

No health data is safe anywhere.

To be honest very little of the worlds data is safe in any meaningful way.

[WelshShooter]

How do you email the entire NHS records?! My attachment limitation is 28Mb or so, how many emails did they send?!

[Chuck]

Not sure why this is article here....


Anyway: Daman:

At a recent visit to my GP I glanced at the screen as he was typing up a prescription. Under a section on the screen titled "Active Problems" it listed "Firearms Certificate Holder".

I asked why it was a 'problem' and was told "that's just how they set up the system."

My GP himself doesn't see it as a problem, but every time he looks at his screen the system tells him that it is!

Well actually his reply is utter bollox and "THEY" should be the subject of a complaint to the Information Commissioner straight away.

Under Data Protection law there is a LEGAL duty to see that info held is ACCURATE, which clearly this is NOT! "It's for the computer" and "that's just how they set up the system." is not acceptable for the purpose of obtaining or holding information. Get complaining.

[safetyfirst]

A compressed SQL database of 280,000 patients is a tiny amount of data!

[meles meles]

Not sure why this is article here....

Because, Chuck, our would-be lords and masters are desirous to have every shooter in the UK flagged up at their doctor's as a potential health hazard. Besides all the ethical connotations of this, there is also a security issue. The records would be openly accessible to several tens of thousands of doctors and their staff, not all of whom are entirely law abiding, and then if the NHS also continues to leak like a colander who knows who might gain access to a list of names / addresses of firearms holders...

[Andy632]

One of the Glasgow Airport attackers (2007) was a Doctor!!

Police identified the two men as Bilal Abdullah, a British-born, Muslim doctor of Iraqi descent working at the Royal Alexandra Hospital and Kafeel Ahmed, also known as Khalid Ahmed, an engineer and the driver, who was treated for fatal burns at the same hospital

[meles meles]

We rests our case, oomans...