By David Meyer, 5 February 2007 09:00
NEWS
NHS Connecting for Health (CfH) has admitted smartcards were shared between staff at a Warwickshire hospital but denied that this compromised the confidentiality of patient data.
Reports emerged recently that smartcards - used by clinical staff to access patient records on the overhauled NHS IT network - were being shared between A&E clinicians at South Warwickshire General Hospitals NHS Trust. This activity, which had been sanctioned by the Trust board, was caused by clinicians trying to avoid lengthy login times.
A spokesman for the British Medical Association's GP IT subcommittee, told Computer Weekly at the time that this approval "[drove] a coach and horses through the so-called privacy in the new systems".
Late last week, CfH - the NHS department administering the IT overhaul (the National Programme for IT, or NPfIT) - issued a statement claiming there was "no question of the confidentiality of patient data having been compromised" at the Trust, as the staff authorised by the board to share smartcards "were all clinical staff, bound by their professional codes of confidentiality, operating in a secure non-public part of the hospital".
The statement added: "The Trust is aware of the need to revert to the normal policy framework for the use of smartcards and, as these early issues relating to the speed of the application are resolved, it is hoped this will happen in the near future."
Previous statements from CfH had suggested the sharing of smartcards would be treated as misconduct, requiring disciplinary procedures. However, according to this latest statement, "responsibility for the security of patient information ultimately lies with individual Trusts, hospitals and NHS organisations".
David Meyer writes for ZDNet UK
Comments
There are 2 comments. Join the discussion
1. anonymous
Sure no compromise in patient data, just no real idea as to who made the change to the patient record.... Can you say hello to Dr Shipman?
Sure no compromise in patient data, just a large percentage of the overall solution cost down the plug hole. Of the order of a Billion pounds.
Why bother to buy 3 million smart cards, install infrastructure to make them, install infrastructure to validate user access to applications. Install extra network bandwidth on your 18,000 end points to handle the traffic ?
Morons .....
2. anonymous
Unlike a large Hospital on the outskirts of Bristol where XRays have been put on the network but staff who need to access them can't because they have not been issued with the required access permissions and passwords.
Nice one!