Former Health Worker fined £1,715 for obtaining and disclosing personal data


A former health care assistant has been ordered to pay a total of £1,715 in fines and costs after pleading guilty to offences of unlawfully obtaining and disclosing personal data.

The Information Commissioner(ICO) said that the assistant had accessed the medical records of 29 people without a business purpose to do so. Some of the information was subsequently shared with others.

That was a breach of patient confidentiality and an unlawful act under the Data Protection Act. The ICO points out that those who work with personal data need to know that they can’t just access it or share it with others when they feel like it and the employer’s policy should make that clear.

We often make the point on our #DataProtection training courses that this law is not vacuum packed from other laws such as the Human Rights Act.


All personal information can lead to intrusions and interferences with people’s private lives. That can be distressing and damaging for individuals. It can give those who are in control of data a power over people in a potentially dangerous way for society and democracy. Even more so if there aren’t proper protections in place.  It’s vital that data protection laws are underpinned by a respect for fundamental human rights.

That’s because the storage and use of personal information should be at the service of people. To ensure this happens, data protection laws should consider people’s right to a private life, which is protected by Article 8 of the Human Rights Convention. They also need to comply with more specific rules set out in the EU (European Union) Charter of Fundamental Rights, which protects personal data.

Article 8 requires public bodies to respect the private life of an individual and any information held about them. They must be able to justify storing or processing of any personal data.  To be justified, any interference must both follow the law and have a valid purpose (there’s an exhaustive list). It must also meet a pressing social need in a way that’s proportionate. In addition, the Human Rights Convention provides that governments have a duty to ensure that national laws provide adequate protection for personal data more generally.

In addition. as we have been publicising for several months now there’s significant change on the horizon for data protection and privacy. The EU is bringing forward big new laws in this area, including the new General Data Protection Regulation (#GDPR), which will become law across the EU from 25 May 2018.

The UK is responding to this and implementing it by bringing forward the UK’s own new data protection bill. This will introduce new rules on data access, data portability, and the right to be forgotten, among many other things.

This makes it the perfect time to revisit your organisations data protection policies, ensure they are up to date and then run refresher/update training for #management and staff.

Concrew Training offers high quality low cost solutions to help you ensure your polices are robust and cascaded effectively.  Read more about our popular one day workshop here

Comments

Post a Comment

Popular posts from this blog

Employee Rep Training - Great Feedback

Excellent, well delivered, good interaction, very interesting, delivery and knowledge excellent, very good, are just a few of the comments made by delegates on one of our employee rep training courses this week. Find out more about our employee rep course offer HERE >>>> #employeereps #employeerepresentation #unions #employeerepresentatives
Read more

Working with Volunteers - 10 Tips for Success

Image
WORKING WITH VOLUNTEERS - 10 TIPS for SUCCESS With the recent requests for volunteers to help in the fight against the #Corvid19 #Coronavirus and provide support to those in need locally, we thought it might be useful to highlight the insight and feedback we have gained through our #training courses and workshops on working with #volunteers. What made it a Good Experience for Volunteers? ·          Felt part of Workforce / Project ·          Not exploited – no discrimination ·          Matched my   skills to the opportunity ·          Valued –   felt welcomed from the start ·          Took account of my interests ·          Offered opportunities to further my interests ·          Good information / communications ·          Structured programme – not drifting What made it Bad Experience for Volunteers? ·          Lengthy time gap between applying and doing! ·          Formal processes were tedious and put people
Read more

Using Social Media at Work - Staff rights and responsibilities

Why you need a Policy NOW ! Two recent Employment Tribunal cases, one involving Face book and another one with Twitter have one clear message in common for modern employers – the urgent need to have clear up to date, precise policies and procedures in place about the use of Social Media at work. Both the cases profiled below could have been lost by the employer had they not previously taken proactive policy steps to keep up to date with an ever changing scene. Face Book The Face Book case arose from an unfair dismissal claim. The Employment Tribunal held that a pub manager was fairly dismissed for gross misconduct after she made inappropriate comments on Face book about two customers who had verbally abused and threatened her.   The Face Book chat took place while the employee was at work and did not reflect her upset or anger at the customers, but appeared to be a joke between friends.  However, a wider audience was able to look at her Face Book page, including r
Read more