>comes in stopping the implementation of the 24 hour access to the EPR.
Indeed, let's not get it set up in the first place. The BMA
>are already wavering. NHSnet has lots of uses for us, one of th4em is NOT
to let our patients records be available 24hrs a day with
>appropriate access rights.
Adrian said I was unfair in critisizing the BMA's track record opposing what
are IMO inappropriate, unencrypted, unsigned data flows being mooted across
NHSnet (or any other net for that matter).
I know the Ross Anderson work was good, I know the New strategy says it will
abide by Caldicott, but there is an ominous lack of alarm across the
profession about the risks of electronic data sloshing around in "PCG data
buckets" and NHS data flows.
I was surprised to learn (perhaps I am naive) that our local Trust assembles
a database on all hospital activity, OPA's, OPs, start end dates, and that
because of the needs of fundholding reconcilliation, this is patient
identifiable data. I understand that the data is "shared" with region and
health authority. Our HA proposes to make this convenient "data bucket"
available for drill down queries by the PCG's.
I am still chasing facts to find out what data is collected, and who has
control, and who decides on where it goes. I presume that as this electronic
data is input at the Trust, again presumably from my referral and the hosp
Dr notes, that confidentiality of this is the clinical responsibility of the
hospital ?
Believe me I'm no Luddite, but there was plenty in the New Strategy about
electronic data flows, and little about limiting access. This *really*
worries me? Am I wrong to be so?
Paul Galloway
>
>Trefor
>
>Dr Trefor Roscoe
>Beighton Health Centre
>Queens Road, Beighton,
>SHEFFIELD
>
>GP Tutor Informatics - N Trent
>Member of the BHIA
>http://www.medical-legal.co.uk
>
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|