Another two major NHS security snafus were revealed this week, with two trusts caught out losing a tonne of patient data.
In the case of Eastern and Coastal Kent Primary Trust, 1.6 million individuals' data went missing, including addresses, dates of birth, NHS numbers and GP practice codes.
The information was held on a CD, which was sent to a landfill site inside a filing cabinet, during a move of office premises.
To lose 1.6 million patients' details in such a way still strays beyond carelessness.
Attempts were made to retrieve the CD, but by that point it was too late.
The Information Commissioner's Office (ICO) discovered the Trust's employees involved in the move were not up to speed on data governance training.
The ICO said it had found no evidence the data had been compromised or used for malicious intent.
"While there is no evidence to suggest that any of the data was accessed, this case highlights that clear policies and procedures should be put in place to support staff when handling personal information as part of an office move. These policies should be communicated to all relevant staff," a spokesperson said.
"We are pleased that Eastern and Coastal Primary Care Trust has now taken action to make sure that the personal information they handle is kept secure."
ICO's comments may not appease those shocked by the amount of data lost.
"To lose 1.6 million patients' details in such a way still strays beyond carelessness and firmly into negligence," said Chris McIntosh, chief executive (CO) of network security company ViaSat UK.
"Whether the CD is lost forever or ends up in the right or wrong hands may still be unknown, but the stark fact is that the personal details of over 2.5 per cent of the UK's population have been lost and could possibly end up used for identity theft."
Meanwhile, Royal Liverpool and Broadgreen University Hospitals NHS Trust lost data of 49 patients in two separate incidents earlier this year, it emerged yesterday.
In one case, a member of the public returned a document containing names and clinical data. Five months later a medical bag containing data of 27 patients was stolen from a member of staff's car.
-
Should AI PCs be part of your next hardware refresh?AI PCs are fast becoming a business staple and a surefire way to future-proof your business
-
Westcon-Comstor and Vectra AI launch brace of new channel initiativesNews Westcon-Comstor and Vectra AI have announced the launch of two new channel growth initiatives focused on the managed security service provider (MSSP) space and AWS Marketplace.
-
Generative AI training in the crosshairs as ICO set to examine legality of personal data useNews Generative AI training methods have become a contentious issue in recent months amid data privacy concerns and a slew of lawsuits against major industry players
-
The CEO's guide to generative AI: Be a creator, not a consumerWhitepaper Innovate your business model with modern IT architecture, and the principles of trustworthy AI
-
Building a strong business case for GRC automationwhitepaper Successfully implement an innovative governance, risk & compliance management platform
-
Saving the NHS with tech: 5G healthcare and virtual wardsCase study Can technology cure Britain’s ailing healthcare service? Our three-part series examines how technology can lift Britain’s healthcare system out of its current crisis
-
Saving the NHS with tech: Making blood deliveries by droneCase Study Can technology cure Britain’s ailing healthcare service? Our three-part series examines how technology can lift Britain’s healthcare system out of its current crisis
-
Sundar Pichai: AI keeps me up at nightNews The Google chief warned that recent AI developments will have a profound impact on society
-
ChatGPT privacy flaw exposes users’ chatbot interactionsNews OpenAI has not expanded on the flaw in detail, nor indicated its reach
-
Nvidia rolls out AI platform across NHS hospitalsNews The platform ensures that patient data never leaves the hospital trust when an AI algorithm analyses medical records
