Love it or Hate it Norman Pottinger Information Governance Manager Admin and Introductions Fire alarms Please turn off or silence mobile phones There will be a break for coffee No handouts but I will send the slides to Sam if you want a copy ID: 594002
Download Presentation The PPT/PDF document "Information Governance," is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
Information Governance,Love it or Hate it!
Norman PottingerInformation Governance ManagerSlide2
Admin and Introductions
Fire alarmsPlease turn off or silence mobile phonesThere will be a break for coffee
No hand-outs but I will send the slides to Sam if you want a copySlide3
Objectives
To support the IG on-line training toolGive you some more “local” guidanceHelp you to understand wider implications of Information Governance
Keep you and your employers out of jail!Answer (if I can) your questionsSlide4
Quiz
On your own or in pairs, or groups – your choiceJust take ten minutes to do thisWe will discuss your answers at the end of the sessionSlide5
What is Information governance?
All and anything to do with informationData Protection ActFreedom of Information
Caldicott (1 and 2)Human RightsRecords ManagementInformation SecurityData QualitySlide6
Data Protection Act 1998
European Legislation8 principlesCovers Personal Data and Sensitive DataTest!
Define Personal DataDefine Sensitive DataGives rights to individuals (Data Subjects)Responsibility is personalSlide7
First Principle
“Personal Data shall be processed fairly and lawfully”Fair processing noticesNo surprises
Access to personal data must be restricted and appropriateSlide8
If you get it wrong
A member of staff working in a GP practice illegally looked at the records of more than a thousand patients. As a result he was fined for a breach of the Data Protection Act.
Total fine over £1000The Information Commissioner has fined an ex GP's receptionist for accessing a patients notes. The receptionist from a practice in Hampshire looked up details of her ex husbands new wife on a number of occasions.Total fine over £1100NHS England (formally the NHS Commissioning Board) are having to pay a
£200,000 fine because NHS Surrey (whose services have moved to NHS England) failed to ensure that PCs they arranged to be "cleaned" by a third party were being sold on still containing patient identifiable information.An ex-employee of University Hospitals of Leicester NHS Trust has been convicted of computer misuse after inappropriately accessing patient records. They received a six-month custodial sentence.Slide9
Caldicott 1 and 2
Caldicott review 1997Reviewed use of and access to patient recordsEstablished the role of the Caldicott GuardianOriginal 6
principlesCaldicott “2” 2013Clarified the H&SCA 2012 in relation to PCDTasked NHS England and the HSCIC with providing more guidance and clarity26 recommendations – all accepted by the department of HealthAdded a 7th principleSlide10
Caldicott Principles
Justify the purposeDon’t use patient confidential data (PCD) unless it is absolutely necessaryUse the minimum that is necessaryAccess to PCD should be on a strict need to know basis
Everyone with access to PCD should be aware of their responsibilitiesComply with the LawThe duty to share information can be as important as the duty to protect patient confidentialitySlide11
Information Security
Principle 7 of the Data Protection ActAppropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.Slide12
Information Security
Password ControlsPoliciesLocked cabinets“Hidden” VDU screens
Secure e-mailSlide13
Passwords
Passwords are like underpants.They should be changed regularly,
they are best kept hidden, and they shouldn’t be shared.Slide14
Good or bad
onedirection1directiontbbbitw
tN1bbitwNj89219*nel(m,LKHSlide15
To save or not to save?Slide16
Data Disclosure
Could be a criminal offenceEasily DoneNormally done by accidentSlide17Slide18Slide19Slide20Slide21Slide22
Secure e-mail
@anyhospital.nhs.uk@nhs.net@hotmail.com
@gp-d82973.nhs.ukSlide23
Summary Care Record
Populate a central register of all patientsSummary only (although enhanced data may be uploaded later)Available to all clinicians
Primary use of data (for direct patient care)Patients can opt-outSlide24
Care.Data (HSCIC)
NOW DELAYED UNTIL OCTOBER 2014Populate a central record of all patients
Contains full patient records (read coded items)Data is anonymised or pseudonymised within the HSCICLinks primary care to secondary care dataCollection of data is given legal basis under the H&SCAData is for secondary use (i.e. not direct patient care)
GPs and Patients DO NOT have a legal right to opt outSlide25
Quiz
Let’s review the answersSlide26
Any Questions?