Confidentiality Flashcards
Relevant laws
General Data Protection Regulation (2016)
Human Rights Act 1998 (Article 5, 8)
Common law duty of confidentiality
General Data Protection Regulation (2016)
- Regulation on data protection and privacy
- Important part of Human Rights Act (Article 5, 8)
- Covers personal information, including data about the physical or mental health or condition of a person.
- Enforced by the Information Commissioners Office (ICO)
ICO
Enforces data protection legislation and produces advice and guidance on it.
Importance of maintaining confidentiality
- Vital part of the relationship between a pharmacist/patient.
- Patients may be reluctant to share vital information if they believe it will not remain confidential.
- Damages public trust and confidence.
Duty of confidentiality
- Professional and legal duty to keep information confidential.
- Applies to patients of any age, and even after their death.
Confidential information
- Electronic and hard copy data
- Personal details
- Information about a person’s medication (prescribed and non-prescribed)
- Information about a person’s medical history, treatment or care that could identify them.
- Information does not have to be medical in nature.
Confidentiality doesn’t include
- Anonymous information − information from which individuals cannot reasonably be identified.
- Pseudonymised information
- Information that is already legitimately in the public domain.
Protecting information
- Take steps to protect information they receive, access, store, send or destroy.
- Ensure personal data is accurate/up to date.
- Access confidential information and records only as part of providing treatment and care for a person.
- Ensure all staff know are aware of their responsibility to maintain confidentiality and are taking necessary steps.
- Store hard copies of confidential information securely
- Don’t discuss confidential information in areas where others can hear.
Disclosing information with consent
- Patient should be informed of what information will be shared, why, who to and the consequences of disclosing/not disclosing.
When would disclosure without consent be appropriate?
- Disclosures required by law
- Disclosures made in the public interest
Disclosures made in the public interest
- a serious crime
- serious harm to a person receiving care
or to a third party, or - serious risk to public health
then we can override the Data Protection Act
Disclosures required by law
- Authority figure do not have automatic right
- Pharmacist must be satisfied that there is legitimate reason (e.g. public interest)
- Written letter requiring access to confidential info could be requested
- Don’t give them more information that they have asked.
- Seek advice from others if unsure
Who can you seek advice from if unsure to provide confidential information
Relevant body
- indemnity insurance provider
- other pharmacy organisation
- ICO
- independent legal adviser.
Disclosing infromation - records
- Who requested it
- Whether they obtained the consent of the person under their care, or their reasons for not doing so.
- Whethere consent was given/refused
- What was disclosed
- Steps taken to ensure disclosure was secure
- What the lawful authority or provision was under which the request and/or disclosure was made (justify why they made it).