Our PCT had got used to the idea that we sent in claims with the EMIS
rather than the NHS number as the NHS number is an identifier, not a
pseudonymiser. Now we have got a cluster managing these things they
once again want us to put the NHS number on all claims for
immunisations etc. They have produced two arguments: They might need
the data one day if there is a fraud investigation, and, it doesn't
matter anyway, because as they are all bound by confidentiality
agreements it doesn't matter that they see confidential information.
I was under the impression that identifiable information should only
be used for direct patient care, and that "in case it comes in useful
sometime" was not an acceptable reason for holding identifiable
information.
Should I stand and fight?
Cheers, Geoff
--
EMIS National User Group: promoting intelligent use of IT
www.emisnug.org.uk
|