JISCMail - DATA-PROTECTION Archives

But isn't confidentiality supposed to be based on "need to know"?  It's
not the same as absolute secrecy.

I always tell people - and I hope I don't get shot down over this - that
the key thing is to make sure that everyone involved in the situation
knows where the boundary lies.  'The information you give me will be
confidential.  This means that I will only share it with people who are
involved in providing your care/treatment/advice, and they also have a
duty not to share it with anyone else.'

I seem to remember a case ages ago where a student disclosed a
disability to a tutor but asked for no one else to be informed.  The
eventual outcome was that because the tutor represented the institution,
the institution was now aware of the disability and had a legal duty to
consider reasonable adjustments - which could only be done if the
relevant people elsewhere in the institution were given the information,
regardless of the preferences of the student.

Best wishes,

Paul

Paul Ticher
22 Stoughton Drive North, Leicester LE5 5UB
0116 273 8191

On 09/08/2018 10:55, Peter Dinsdale wrote:
> I can certainly see that the information was provided in circumstances imparting a duty of confidentiality, and that the information has the necessary quality of confidence. The bit I'm struggling with is the concept that using the information for the provision of care is a breach of confidence. My understanding is that it's not that consent is required to process confidential information, is that the information cannot be disclosed without consent/public interest/legal duty. Or am I wrong?
>
> I guess it then comes down to what constitutes a disclosure. Does the duty of confidentiality confine the information to the single individual to whom it was originally imparted? If that's the case, then passing it onto colleagues who are a part of the care giving process would be a disclosure, and consent would be the most likely circumstance in which to justify that disclosure. Is that how it works? I've never worked in health, so have never had to deal with that kind of situation.
>
> Thanks,
> Peter
>
>
> Peter Dinsdale
> Data Protection Consultant
>
> Perfect Image /
> T: 0191 238 0111
> www.perfect-image.co.uk
>
> Follow us on Twitter http://twitter.com/perfectimage
>
> -----Original Message-----
> From: This list is for those interested in Data Protection issues <[log in to unmask]> On Behalf Of Phil Bradshaw
> Sent: 09 August 2018 10:26
> To: [log in to unmask]
> Subject: Re: [data-protection] Misuse of private information by public authorities? (Friday question?)
>
> As Donald suggests we need a virtual Chinese wall between GDPR and confidentiality.
>
> Bottom line is we DO need consent to process confidential data for social work unless there is a basis to override. That consent can however be implied from the consensual engagement in the process. If the client actually objects to the keeping and use of data then the service cannot be provided.
>
> You can easily adapt the following example which I use in training (summarised so not 100% accurate).
>
> I go to my GP with an embarrassing condition. I ask him not to make a record of it but just advise me as my next door neighbour is his receptionist.
>
> With appropriate explanations he should decline. He must keep a  record if he is to advise /treat me. Statutory duty. He cannot keep a record if I object on confidentiality grounds - no basis to override confidentiality. If he cannot persuade me then he cannot treat / advise me. If I say nothing he does not need to ASK for my consent to keep a record for confidentiality purposes - that is implied from my seeking treatment.
>
> If it's a notifiable disease all bets are off - his duties are sufficient to override confidentiality.
>
> In all the above this is nothing to do with GDPR legal basis which is never consent.
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>       All archives of messages are stored permanently and are
>        available to the world wide web community at large at
>        http://www.jiscmail.ac.uk/lists/data-protection.html
>       If you wish to leave this list please send the command
>         leave data-protection to [log in to unmask] All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html
>   Any queries about sending or receiving messages please send to the list owner
>                [log in to unmask]
>    Full help Desk - please email [log in to unmask] describing your needs
>          To receive these emails in HTML format send the command:
>           SET data-protection HTML to [log in to unmask]
>     (all commands go to [log in to unmask] not the list please)
>      ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> ______________________________________________________________________
> This email has been scanned by the Symantec Email Security.cloud service.
> For more information please visit http://www.symanteccloud.com ______________________________________________________________________
>
> ________________________________
>
> Save paper, please think twice before printing this email.
>
> Equinox House | Cobalt 3.2 | Cobalt Business Park | Silver Fox Way | North Tyneside | Newcastle upon Tyne | NE27 0QJ
> T. 0191 238 0111 | F. 0191 238 0127 | Service Desk Direct Line. 0191 238 0121
> Perfect Image Ltd. Registered in England & Wales. Company Registration Number: 2650067
> Registered Office: Equinox House, Cobalt 3.2, Cobalt Business Park, Silver Fox Way, North Tyneside, Newcastle upon Tyne, NE27 0QJ
>
> This e-mail is confidential and intended solely for the use of the individual to whom it is addressed. Any views or opinions presented are solely those of the author and do not represent those of Perfect Image Ltd. If you are not the intended recipient, please notify us at [log in to unmask] and be advised that you have received this mail in error and that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited.
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>       All archives of messages are stored permanently and are
>        available to the world wide web community at large at
>        http://www.jiscmail.ac.uk/lists/data-protection.html
>       If you wish to leave this list please send the command
>         leave data-protection to [log in to unmask]
> All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html
>   Any queries about sending or receiving messages please send to the list owner
>                [log in to unmask]
>    Full help Desk - please email [log in to unmask] describing your needs
>          To receive these emails in HTML format send the command:
>           SET data-protection HTML to [log in to unmask]
>     (all commands go to [log in to unmask] not the list please)
>      ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^


^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
     All archives of messages are stored permanently and are
      available to the world wide web community at large at
      http://www.jiscmail.ac.uk/lists/data-protection.html
     If you wish to leave this list please send the command
       leave data-protection to [log in to unmask]
All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html
 Any queries about sending or receiving messages please send to the list owner
              [log in to unmask]
  Full help Desk - please email [log in to unmask] describing your needs
        To receive these emails in HTML format send the command:
         SET data-protection HTML to [log in to unmask]
   (all commands go to [log in to unmask] not the list please)
    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^