Two observations - first, I wouldn't assume that a closed mailing list is
secure, and I personally wouldn't be happy about sending information
containing patient identifiers over the Internet without encryption - all
the arguments that apply to security on NHSnet would apply to a mailing
list, only more so! I suspect the GMC/MDU would develop an interest in any
event.
Second, with regard to verification, even at one quarter the traffic level
current on GP-UK, the job of moderating the list and dealing with mail
bounces would be pretty tough, even for a group of individuals.
As an interesting aside, with hackers beginning to probe for open internet
connections with increasingly sophisticated tools, anyone who stores patient
data on their home machine without a firewall is at risk of breaching
confidentiality.
A
> -----Original Message-----
> From: [log in to unmask]
> [mailto:[log in to unmask]]On Behalf Of Chris Salter
> Sent: 05 December 1998 02:42
> To: [log in to unmask]
> Subject: Re: Help gp-uk
> One other consideration. I am not sure that all confidentiality issues
> are resolved by a GP only mailing list. It could be argued that
> broadcasting information covered by patient doctor confidentiality to
> xxx GP's on a mailing list, is a breach of that confidentiality.
>
> A compromise solution might be a secure mailing list whose subscribers
> were limited to a named panel of GP advisors. Requests for advice would
> therefore only be circulated to members of the panel. Thus any GP making
> use of the panel would know in advance the names of GP's who would have
> access to any confidential information. Incoming requests could be
> posted to the list by the person who verifies the request is from a
> doctor, by making the list open for posting by non-subscribers via a
> moderator, the verifier and moderator being the same person.
>
> Chris
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|