Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.
The Information Commissioners Office (ICO) has specifically reminded NHS staff not to access patient medical records without proper reason and / or proper authority. Illegally accessing, obtaining and/or disclosing patient medical records without permission is not only a violation of patient data protection rights, but also exposes the wrongdoer and the NHS to legal action and costly fines.
This latest ICO warning was prompted by a recent case where a former health care assistant accessed medical records belonging to several patients without a valid reason. Over a period of a year and a half, Brioney Woolfe reportedly accessed patient files belonging to 29 individuals, including her family members, colleagues and other patients.
Her wrongdoing was further exacerbated by the fact she reportedly disclosed some of the sensitive information. Woolfe’s illegal behaviour was discovered when a patient filed a complaint against her.
Colchester Magistrates’ Court found Woolfe liable for breaching Data Protection laws during her employment at Colchester Hospital University NHS Foundation Trust. She was fined £400 for illegally obtaining personal information as well as £650 for disclosing some of that sensitive information as well. On top of the £1,050 fine, Woolfe was also ordered to pay costs of £665.
The ICO’s warning serves as an important reminder to NHS staff of the seriousness of breaching data protection rules. Woolfe probably thought nothing of ‘having a look‘ at some patient records, but it ended up costing her £1,715, and her job. Prospective employers will likely be put off by her actions, perhaps deeming her as someone that can’t be trusted.
This scenario is one of many that have occurred over the last few years…
The NHS are constantly making headlines for all sorts of data breaches, with most of them being administrative errors or employees who failed to take data protection seriously. Steve Eckersley, Head of Enforcement at the ICO, is understandably frustrated by repetitive breaches:
“Once again we see an NHS employee getting themselves in serious trouble by letting their personal curiosity get the better of them… Patients are entitled to have their privacy protected and those who work with sensitive personal data need to know they can’t just access it or share it with others when they feel like it. The law is clear and the consequences of breaking it can be severe.”
People who have or can access medical records need to recognise the sensitive nature of the information and respect a patient’s right to privacy. Whilst it may apparently be interesting, for some, to see who has what ailments, this information is privileged.
For the victims, knowing someone has accessed your sensitive information can be deeply distressing. Victims often feel anxious and distressed, fearing that someone out there knows something private about them and can share it to the world whenever they please. Their mistrust to others can have great impact on their lives; never knowing who they can trust, and constantly worrying if it might happen again.
Since October 2016, the ICO has seen eight individuals prosecuted and sanctioned for illegally accessing medical records. Seven were employed by the NHS at the time of the breach, all of whom are no longer employed at the hospital/ healthcare centre they committed the breach at.
The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020
Fill out our quick call back form below and we'll contact you when you're ready to talk to us.