Presentation is loading. Please wait.

Presentation is loading. Please wait.

The safety and privacy effects of NHS IT Ross Anderson Cambridge University and Foundation for Information Policy Research.

Published byAndrew McCann Modified over 10 years ago

Similar presentations

Presentation on theme: "The safety and privacy effects of NHS IT Ross Anderson Cambridge University and Foundation for Information Policy Research."— Presentation transcript:

1 The safety and privacy effects of NHS IT Ross Anderson Cambridge University and Foundation for Information Policy Research

2 EMIS NUG 21 Sep 2006 The Story so Far … 1910 – struggle over who owns medical records led to Lloyd George envelope 1910 – struggle over who owns medical records led to Lloyd George envelope 1992 – IM&T strategy a single electronic health record available to all throughout the NHS 1992 – IM&T strategy a single electronic health record available to all throughout the NHS BMA resistance 95–6 once we realised what this meant; Security in Clinical Information Systems BMA resistance 95–6 once we realised what this meant; Security in Clinical Information Systems Calman sets up the Caldicott Committee to postpone the issue past the 1997 election Calman sets up the Caldicott Committee to postpone the issue past the 1997 election Caldicott documents many illegal information flows; HSCA s60 allows SS to legalise them Caldicott documents many illegal information flows; HSCA s60 allows SS to legalise them

3 EMIS NUG 21 Sep 2006 The Story so Far (2) Pretexting cost Hewlett-Packard chair her job Pretexting cost Hewlett-Packard chair her job Look back at January 1996 – Anderson RJ, Clinical System Security - Interim Guidelines BMJ 312.7023 pp 109-111 Look back at January 1996 – Anderson RJ, Clinical System Security - Interim Guidelines BMJ 312.7023 pp 109-111 N Yorks HA pilot – staff trained by Alan Hassey to log info requests, get them signed off, and call back to a number you can check independently N Yorks HA pilot – staff trained by Alan Hassey to log info requests, get them signed off, and call back to a number you can check independently We detected 30 false-pretext calls per week! We detected 30 false-pretext calls per week! We asked DoH to roll this protocol out nationwide – instead, NYHA were told to stop it! We asked DoH to roll this protocol out nationwide – instead, NYHA were told to stop it!

4 EMIS NUG 21 Sep 2006 The Story so Far (3) Blair moment in 2002 – Tony wants Blair moment in 2002 – Tony wants The 1990s vision of the big central database is dusted off – NPfIT, CfH,… The 1990s vision of the big central database is dusted off – NPfIT, CfH,… Government really believes this is working and they now plan to roll out the same architecture to childcare, elder care, … Government really believes this is working and they now plan to roll out the same architecture to childcare, elder care, … What are the implications for clinical safety and privacy? What are the implications for clinical safety and privacy?

5 EMIS NUG 21 Sep 2006 Issues of Scale You can have functionality, or security, or scale. With good engineering you can have any two of these You can have functionality, or security, or scale. With good engineering you can have any two of these We can live with the risks of a receptionist having access to the 6000 records in a practice – but if 20,000 receptionists have access to 60,000,000 records? We can live with the risks of a receptionist having access to the 6000 records in a practice – but if 20,000 receptionists have access to 60,000,000 records? Secondary Uses Service will run unprotected for years – with a pious hope of eventual pseudonymisation Secondary Uses Service will run unprotected for years – with a pious hope of eventual pseudonymisation Blair philosophy is now that data will be accessible (MISC 31, Information Sharing Vision) Blair philosophy is now that data will be accessible (MISC 31, Information Sharing Vision) Misuse will be punished – pretexters will be liable for prison, though not careless HA staff (DCA CP 9/06) Misuse will be punished – pretexters will be liable for prison, though not careless HA staff (DCA CP 9/06)

6 EMIS NUG 21 Sep 2006 Centralisation and Safety First hospital to be rolled out was the Nuffield Orthopaedic NHS Trust in Oxford First hospital to be rolled out was the Nuffield Orthopaedic NHS Trust in Oxford Old system – X-ray goes from radiology to theatre as a physical object Old system – X-ray goes from radiology to theatre as a physical object New system – its an electronic object sitting on a remote server New system – its an electronic object sitting on a remote server Power failure at server – no operations Power failure at server – no operations Since then, a comms failure in NW Since then, a comms failure in NW The Internet is now a safety-critical system! The Internet is now a safety-critical system!

7 EMIS NUG 21 Sep 2006 Helen Wilkinsons case Helen is a practice manager in High Wycombe Helen is a practice manager in High Wycombe Wrongly listed as a patient of an alcohol treatment centre Wrongly listed as a patient of an alcohol treatment centre She demanded the data be corrected or removed - officials wouldnt / couldnt She demanded the data be corrected or removed - officials wouldnt / couldnt Caroline Flint promised Parliament it had been done Caroline Flint promised Parliament it had been done It hasnt – and the story continues… It hasnt – and the story continues…

8 EMIS NUG 21 Sep 2006 Extending NPfIT to Kids Every Child Matters white paper (2003) Every Child Matters white paper (2003) Children Act 2004 provided powers Children Act 2004 provided powers Information to be shared between schools, police, social workers, probation, doctors… Information to be shared between schools, police, social workers, probation, doctors… The SCR is ISA – the Information Sharing and Assessment system – which points to all services interested in your child The SCR is ISA – the Information Sharing and Assessment system – which points to all services interested in your child So schoolteachers will know if a child is known to social workers / police So schoolteachers will know if a child is known to social workers / police IC study by FIPR (due for release real soon …) IC study by FIPR (due for release real soon …)

9 EMIS NUG 21 Sep 2006 Data quality issues…

10 EMIS NUG 21 Sep 2006 Political Aspects UK law and practice are increasingly at odds with European law and with the practice in Germany, France etc UK law and practice are increasingly at odds with European law and with the practice in Germany, France etc Comment by one observer: UK is on a collision course with Europe Comment by one observer: UK is on a collision course with Europe Eventually something will have to give. Will it be Britains EU membership, the German constitution, or what? Eventually something will have to give. Will it be Britains EU membership, the German constitution, or what?

11 EMIS NUG 21 Sep 2006 Conclusions The approach to personal data management that mutated from the IM&T strategy into the ICRS Spec into NPfIT is undergoing metastasis The approach to personal data management that mutated from the IM&T strategy into the ICRS Spec into NPfIT is undergoing metastasis Secondaries are now growing vigorously in child welfare, with more planned for elder care etc Secondaries are now growing vigorously in child welfare, with more planned for elder care etc If safety and privacy problems cant be tackled honestly in medicine, what hope have the social workers got? If safety and privacy problems cant be tackled honestly in medicine, what hope have the social workers got? Maybe the best hope is a European law case Maybe the best hope is a European law case

Download ppt "The safety and privacy effects of NHS IT Ross Anderson Cambridge University and Foundation for Information Policy Research."

Similar presentations

HIPAA and Joint Commission Requirements Compared and Contrasted

HIPAA and Joint Commission Requirements Compared and Contrasted
Quality Benchmarking and Dialog Dr. Christof Veit, Hamburg The Structured Dialog National Quality Benchmarking in Germany Annual Research Meeting 2006.

Quality Benchmarking and Dialog Dr. Christof Veit, Hamburg The Structured Dialog National Quality Benchmarking in Germany Annual Research Meeting 2006.
Commission for Health Improvement CHI: The national perspective Emilie Roberts Development Manager 10 December 2003.

Commission for Health Improvement CHI: The national perspective Emilie Roberts Development Manager 10 December 2003.
Booking & Choice Colin Innes Executive Lead Choose and Book.

Booking & Choice Colin Innes Executive Lead Choose and Book.
Conclusions from e-Health

Conclusions from e-Health
Ciara Evans Inclusion Europe.. Inclusion Europe Inclusion Europe is a non-profit organisation. We campaign for the rights and interests of people with.

Ciara Evans Inclusion Europe.. Inclusion Europe Inclusion Europe is a non-profit organisation. We campaign for the rights and interests of people with.
DOTS/ DOTS PLUS IMPLEMENTATION AND INTEGRATION Vaira Leimane State Centre of Tuberculosis and Lung Diseases of Latvia Paris, October, 28.

DOTS/ DOTS PLUS IMPLEMENTATION AND INTEGRATION Vaira Leimane State Centre of Tuberculosis and Lung Diseases of Latvia Paris, October, 28.
MYTH vs. REALITY Top 10 myths about underage drinking Prepared February 2006 for the Maine Office of Substance Abuse by MESAP: Maines Environmental Substance.

MYTH vs. REALITY Top 10 myths about underage drinking Prepared February 2006 for the Maine Office of Substance Abuse by MESAP: Maines Environmental Substance.
Safer IT Systems for the NHS Dr. Maureen Baker CBE DM FRCGP Special Clinical Adviser NPSA Clinical Safety Officer CfH.

Safer IT Systems for the NHS Dr. Maureen Baker CBE DM FRCGP Special Clinical Adviser NPSA Clinical Safety Officer CfH.
Medical information systems Ian Brown. Key questions What are the benefits and costs of medical information systems? How do design decisions affect patient.

Medical information systems Ian Brown. Key questions What are the benefits and costs of medical information systems? How do design decisions affect patient.
The evolution of Electronic Patient Records in the NHS, 1988-2003 Matthew Jones Judge Institute of Management University of Cambridge.

The evolution of Electronic Patient Records in the NHS, Matthew Jones Judge Institute of Management University of Cambridge.
Security and Confidentiality in Integrated Care Records Peter Singleton Senior Associate, Judge Institute Research Fellow, UCL.

Security and Confidentiality in Integrated Care Records Peter Singleton Senior Associate, Judge Institute Research Fellow, UCL.
Tuesday, 22 April 2014 The Foundation Trust Experiment and UCLH Presentation to Civitas 22nd October 2007.

Tuesday, 22 April 2014 The Foundation Trust Experiment and UCLH Presentation to Civitas 22nd October 2007.
CAF and Lead Professional in Derby Justine Gibling CAF/LP Project Manager.

CAF and Lead Professional in Derby Justine Gibling CAF/LP Project Manager.
Sheffield Perinatal Mental Health Service

Sheffield Perinatal Mental Health Service
Online Course Module 5 Patients Right to Accounting of Disclosures START Click to begin…

Online Course Module 5 Patients Right to Accounting of Disclosures START Click to begin…
Safer Systems for a Safer NHS Dr. Maureen Baker CBE DM FRCGP Clinical Director for Patient Safety NHS Connecting for Health.

Safer Systems for a Safer NHS Dr. Maureen Baker CBE DM FRCGP Clinical Director for Patient Safety NHS Connecting for Health.
Secondary Use of General Practice Patient Data Dr Ralph Sullivan National Clinical Lead for Primary Care.

Secondary Use of General Practice Patient Data Dr Ralph Sullivan National Clinical Lead for Primary Care.
WRSU Customer Service The Beauty of Change. Privacy and Confidentiality.

WRSU Customer Service The Beauty of Change. Privacy and Confidentiality.
The Empowered Patient – involved in his / her care and medical record Dr Amir Hannan Full-time General Practitioner, Haughton Thornley Medical Centres,

The Empowered Patient – involved in his / her care and medical record Dr Amir Hannan Full-time General Practitioner, Haughton Thornley Medical Centres,

Similar presentations

Ads by Google