Posted Tuesday 16th October 2007 12:56 GMT
"This [reprimand] didn't happen because of the notoriety of the patient"
The truth is, the reprimand did happen because of the notoriety of the patient, because without the notoriety the information wouldn't have been leaked to the press, and therefore nobody would have been suspected of leaking it, therefore been reprimanded.
Any other instance of snooping wouldn't have led to the investigation as there would have been no suspicion, therefore no notoriety means no reprimand.
To put it another way, they have absolutely no idea who is snooping into what they shouldn't unless the press get wind of something and the hospital must then be held accountable, or hold someone else accountable.
What a lovely logical paradox for a Tuesday afternoon.
Posted Tuesday 16th October 2007 14:10 GMT
Compliance with HIPAA (the US regulation covering patient confidentiality) obviously varies between medical centers, but these breaches are not only discovered when stuff hits the press. A well designed program includes random and not so random, audits of access to medical records.
These employees got off lightly, where I work they would have been fired not suspended.
Posted Tuesday 16th October 2007 14:10 GMT
Perhaps someone should point this story out to the UK Government who seem to think that thousands of NHS staff can be trusted with access to all *our* medical information...
Posted Tuesday 16th October 2007 14:49 GMT
Much like borrowing a book from a library every reader of your medical file is known and recorded, I'm not worried.
Posted Tuesday 16th October 2007 16:00 GMT
Don't forget the thousands of people in India, who's first language is unlikely to be english, who will be transcribing the paper records, written in classical doctors handwriting, into the new computer system.
I'm sure all of these people working for less than the uk's minimum wage will per perfectly fine handling our medical data and will, in no way, be tempted to sell the data to anyone who fancies it.
Sign up, sign up for The Register's weekly IT security newsletter - click here
Back to the article
