Thursday, August 22, 2013
This Is A Really Messy Outcome That Seems To Have Happened When People Were Opted-In To A Shared EHR.
The following appeared a little while ago.
Sara Tenneson faces paying hefty legal costs after she tried to have confidential information removed from her file
The retired garden historian's experience is a cautionary one for NHS patients who think they control what's on their medical records.
In a pilot scheme NHS England recently began quietly uploading patient records from 100 GP surgeries, although the information commissioner warned the health service "there is still a lot of work to be undertaken to ensure that all of the obligations of the Data Protection Act will be met before national roll-out ... can begin."
Some are disturbed by the strategy to go "digital by default". Andrew Miller, chair of the Commons science and technology committee, wrote to Cabinet Office minister Francis Maude with concerns that "as public services go online, the government may not keep up with advances in technology and that inadequacies in government software may lead to security vulnerabilities".
The NHS is of particular concern as patient data is supposed to be anonymised. Martyn Thomas, vice-president of the Royal Academy of Engineering and chair of the IT policy panel of the Institution of Engineering and Technology, told the committee that personally identifiable data in medical records could be matched against other datasets. "That has been demonstrated time and time again. Therefore, the notion of useful anonymised personal data is an oxymoron."
Phil Booth, co-ordinator at patient privacy group medConfidential, said that though the changes are "momentous", not enough has been done to explain what they mean for patients. "A few breezily-worded leaflets in your GP's waiting room isn't proper notification for the systematic hoovering up of confidential information from 50 million peoples' medical records. So much for choice and consent – patients are deliberately being kept in the dark."Challenging the medical establishment's ownership of her patient record left Sara Tenneson without access to a regular GP. Her plight is at the heart of a tussle between bureaucrats and the public, with ministers publishing draft guidance for citizens to be able to remove "data whenever (they) want".
Her ordeal began in September 2011, when Tenneson's GP wrote a referral letter to a hospital consultant about her treatment which included information on a traumatic episode imparted to her previous GP in 1995, but which she was unaware was still on her medical record.
Fortunately, having sight of the letter before it was sent, and extremely shocked that it had been included, she asked the practice to remove it, as it had ''no relevance.'' The information was removed, and a revised letter was sent.
More of the saga here:
This is a very, very sad saga which it is important for all of us with an interest in Australian e-Health are aware of.
Clearly if you are going to have an opt-in approach, which we might just see from a desperate Government if the PCEHR is not being used a year from now, you need to ensure everything that goes to the record is seen and approved by the patient. It is as simple as that!
Posted by Dr David G More MB PhD at Thursday, August 22, 2013