All
 
During all the fuss about care.data one of the GP practices I support have received a fax from FaxYourGP.com.
 
The fax contained the name, date of birth and address of 2 people who wish to be opted-out (actually I believe the correct phrase is to dissent) from their data being uploaded to care.data. When the practice looked for the 2 patients, 1 is a patient but the other is not on their records so appears to be a patient elsewhere. The practice consider this a data breach.
 
I have some misgivings about FaxYourGP faxing the information to the wrong surgery and the practice will have to spend time contacting them to say "not at this practice". I suppose I shouldn't be surprised when their website states:
 
  • We will fax your opt out letter, including your name, date of birth, postal address and email address to the fax number of your GP surgery, as listed on the official NHS website. Be aware we've not checked the accuracy of these fax numbers, since there are nearly 9,000 of them. (I added the bold)
    •  
    I think the practice should write back them pointing out the error and asking them to inform the patient and investigate.
     
    Would anybody suggest any further course of action?
     
    Chris

    All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

    Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

    All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]

    Any queries about sending or receiving messages please send to the list owner [log in to unmask]

    (Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)