The NHS has yet again been found in breach of the Data Protection Act (DPA) after personal data of 87 patients was lost.
A medical student on placement at the University Hospital of South Manchester NHS Foundation Trust copied data onto a personal, unencrypted memory stick for research purposes.
HS bodies have a duty to make sure their staff both permanent and temporary understand their responsibilities on day one in the job.
It was then lost in December last year. The hopsital had assumed the student had received the appropriate training and so decided not to refresh them on their data protection practices, the Information Commissioner's Office (ICO) discovered.
"Medics handle some of the most sensitive personal information possible and it is vital that they understand the need to keep it secure at all times, especially when they are completing placements at several health organisations," said Sally Anne Poole, acting head of enforcement at the ICO.
"NHS bodies have a duty to make sure their staff both permanent and temporary understand their responsibilities on day one in the job."
The hospital has moved to ensure students are aware of its data protection policy.
Another undertaking has been signed by the London Ambulance Service, which breached the DPA after a personal laptop containing data relating to 2,664 patients was stolen from a contractor's home.
The NHS has repeatedly been caught out by the ICO, yet the data protection watchdog has been reluctant to issue a fine, possibly because of the nature of the body's work.
The last fine handed out by the ICO was in June, when Surrey County Council was hit with a 120,000 penalty. The local authority misdirected emails containing sensitive data on three separate occasions.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
NHS leaders are keen to adopt new digital tools, but IT can't solve problems on its ownA survey of healthcare decision-makers finds they believe IoT devices and electronic health recording could help them reach more patients quicker
-
How a paperless approach cut wasted staff hours at Bradford Teaching Hospitals TrustCase study Through DrDoctor’s digital portal for patient appointments and advice, the Rheumatology team at Bradford Teaching Hospitals NHS Foundation Trust has dramatically cut
-
Healthcare’s next chapterwhitepaper Revolutionizing how you care with EPR experts you can trust
-
How digital experience management helped an NHS trust improve productivityCase study Princess Alexandra Hospital NHS Trust used digital experience management to cut device failure and restore time to clinicians
-
Will the NHS Federated Data Platform transform UK healthcare?In-depth Plans to create a data platform in partnership with the private sector could revolutionize NHS treatment, but concerns over data privacy and security are festering
-
NHS IT issues costing doctors more than 13 million hours annuallyNews Doctors warn that ageing IT infrastructure is impacting patient care and clinical outcomes
-
Automation is helping the NHS clear its patient backlog, but not as quickly as expectedAnalysis The healthcare service's big bet on robotic process automation is making 'impactful' but slow progress
-
DHSC sets out ambitious targets for NHS App by 2023, beyondNews Ongoing NHS digitisation efforts will form backbone of the new system
