Data Protection & Confidentiality

Question 1

What is the consequentialist argument for maintaining confidentiality?

Answer 1

1. Impact on patient (e.g. breach may upset them, affect trust + make them less likely to share info in future)
2. Impact on others generally (e.g. loss of public trust so less effective care for many)
3. Impact on specific others (e.g. harm of non-disclosure)

Question 2

What other reasons are there to maintain confidentiality?

Answer 2

1. Respect for autonomy: self-determination includes determining how info about oneself is used, how or whether its shared
2. Virtue ethics: promise-keeping + trustworthiness are virtues
3. Other duties: duty of care (data shared within healthcare team but not beyond) + patient-dr relationship

Question 3

We must make sure any personal information that we hold or control is effectively protected at all times against 3 things, what are they?

Answer 3

1. Improper access
2. Disclosure
3. Loss

Question 4

When can you share a information about a patient’s care?

Answer 4

CONSENT (implied or explicit)

Question 5

When is implied consent be sufficient?

Answer 5

1. Data being accessed to support a patient’s direct care
2. Info available to patients about how data will be used + how they can object
3. No reason to believe they would object
4. Satisfied that anyone you disclose info to will understand it is given to them in confidence, treating it accordingly

Question 6

When should you seek explicit consent before sharing a patients information?

Answer 6

If you suspect a patient would be surprised to learn about how you are accessing or disclosing their personal information

Question 7

What are some examples of uses of information not directly relevant to a person’s medical care when you should seek consent?

Answer 7

Research
Certain types of audit (e.g. financial or local clinical)
Public health
Education
Health service planning

Question 8

When can you disclose personal information for secondary purposes without gaining consent?

Answer 8

1. Required by law
2. Approved through a statutory process that sets aside common law of confidentiality
3. Justified in public interest
4. Not appropriate/practicable to obtain consent

BUT consent should always be sought where possible

Question 9

____ information will normally be sufficient for secondary purposes.

Answer 9

Anonymised - only disclose identifiable info if there is a legal basis for breaching confidentiality

Question 10

When is data considered anonymised?

Answer 10

1. Does not directly identify any individual

2. Unlikely to allow any individual to be identified through combination with other data

Question 11

What must be considered when anonymising information?

Answer 11

Different types of data will have different levels of re-identification risk e.g. small vs large dataset - bare in mind context and who you are showing data too

Question 12

What is pseudonymised data?

Answer 12

There will be a way of linking the data back to original records using a unique patient identifier - data management and de-identification process by which personally identifiable info fields within a data record are replaced by 1 or more artificial identifiers (pseudonyms) i.e. CODED info

Question 13

What can you do as a researcher to avoid breaching confidentiality?

Answer 13

Get patients to contact you directly so they volunteer their information voluntarily - cannot then tell clinician who has agreed to be involved in trial w/o consent

Question 14

When deciding whether the public interest in disclosing information outweighs patient’s and public interest in keep it confidential, you must consider:

Answer 14

1. Potential harm/distress to patient arising from disclosure
2. Potential harm to trust in Drs generally
3. Potential harm to others if info is not disclosed
4. Potential benefits to individual/society arising from info disclosure
5. Nature of info to be disclosed + views expressed by patient
6. Whether harms can be avoided or benefits gained w/o breaching patient’s privacy or with min intrusion

Question 15

Who has to approve the disclosure of identifiable information in research cases?

Answer 15

Research Ethics Committee (REC)

Question 16

Give a few examples of notifiable diseases that must be disclosed.

Answer 16

Acute meningitis
Anthrax
Botulism
Cholera
Food poisoning
Malaria
Plague
Rabies
TB
Whooping cough

Question 17

Who should report notifiable diseases and to who?

Answer 17

1. Duty microbiology to hospital infection control
2. Diagnosing clinician to local health protection team, then to PHE via a form (notify urgent cases by phone within 24hrs)

Question 18

Why do notifiable diseases have to be disclosed?

Answer 18

1. Legislation - Public Heath (Infectious Diseases) Act 1988

2. PHE regulations - Health Protections Regulations (2010)

Question 19

What does the GMC guidance state are the secondary purposes for disclosing patient information?

Answer 19

1. Report concerns about patients to DVLA/DVA
2. Records for financial/administrative purposes
3. Report gunshot/knife wounds
4. Info about serious communicable diseases
5. Info for insurance, employment + similar purposes
6. Info for education + training purposes
7. Respond to criticism in press

Question 20

What is the General Data Protection Regulation (GDPR)?

Answer 20

Data protection framework that applies in all EU member states described as most important change in data privacy regulation in 20 years - GMC guidance on confidentiality now been updated to reflect it

Question 21

What 2 laws should generally be considered together?

Answer 21

1. The new Data Protection Act (2018) that was enacted to supplement some sections of the GDPR
2. GDPR itself

Question 22

What are the 6 key principles of the General Data Protection Regulation (GDPR)?

Answer 22

Data must be:

1. Processed fairly, lawfully + in a transparent manner in relation to data subject
2. Collected for specified, explicit + legitimate purposes + not further processed for other purposes that are incompatible
3. Adequate, relevant + limited to what is necessary in relation to purpose of data processing
4. Accurate + kept up to data
5. Kept in form that permits ID of data subjects for no longer than necessary for purpose
6. Processed in way that ensures appropriate security of data including protection against unauthorised/unlawful processing + against accidental loss, destruction or damage using technical/organisational measures

Question 23

How can health records be accessed?

Answer 23

1. GDPR: allows access for all living individuals - NHS trusts have 1 month to respond to request
2. Access to Health Records Act 1990: allows access to health records of deceased people

Question 24

Who may access health records?

Answer 24

• Patients
• Person with parental responsibility of child (if not contrary to competent child’s wishes)
• Power of attorney if patient lacks capacity
• Executor of will/dependents for deceased patient’s records
• IMHAs or IMCAs
• Police by court order
• Solicitors with data subjects consent

Question 25

Does a request to access health records have to be granted?

Answer 25

No

Question 26

When should access to health records be declined?

Answer 26

• When access is likely to cause serious harm to physical/mental health or condition of data subject or any other person
• When data would reveal identity of another person (does not apply to health professionals involved in care of data subject unless disclosure would cause THEM serious harm)

Question 27

What policy must be follow as Warwick Medical School students?

Answer 27

1. Be aware of obligations with regard to University policy on data protection + corresponding policies in NHS trusts they are working in
2. We owe duty of confidence to patients too
3. Follow protecting patient sensitive info on Moodle or Community handbook