Hundreds of records breached in Hull
- 16 November 2009
More than 350 patients in Hull have had their electronic medical records accessed by a member of NHS Hull’s staff who should not have had access to them.
A primary care trust employee, who was authorised to use collated and anonymous patient data for research, but not permitted to access individual patient records, accessed a total of 358 across 20 GP practices.
A statement from the PCT says: “NHS Hull can confirm that a former employee has been found to have accessed a number of patient records without authorisation.
“The former employee was found to have inappropriately accessed electronic medical records between May 2008 and June 2009.”
The PCT says that all patients involved have been notified in writing and given a point of contact for more information and support. It also says it is “appalled” by the former employee’s actions.
Kath Tanfield, director of performance, governance and informatics for NHS Hull, said: “We take patient confidentiality very seriously and are disturbed to find that patient confidentiality rules have been breached in such a manner.
“It is shocking to us that an individual who take on a public service role and who agrees to abide by strict agreements should go on to abuse their position and violate patients’ rights and privacy.”
The trust would not reveal what system the member of staff was using when they accessed the records but said that the employee used a Smartcard to access the records.
Tanfield added: “Patients and the public rightly expect all health service employees protect and respect their personal information.
"They have every right to be outraged by this individual’s actions, and as the organisation who employed this person, we tool feel appalled and let down their behaviour.”
A police investigation is now underway and NHS Hull is also conducting its own review.