NHS trusts lose 10,000 patient records every year

Published: 31-Aug-2018
Digital

Think tank report calls for an end to handwritten patient notes amid evidence that paper records are being routinely misplaced

The NHS has misplaced almost 10,000 patient records in the last year, according to new research from the think tank, Parliament Street.

The report, entitled NHS Data Security: Protecting Patient Records examines the number of patient records that have been misplaced by NHS trusts over the past 12 months.

And the report discovered that, overall, 9,132 patient records from 68 hospitals had been reported missing or lost.

With sales of health records on the dark web and identity fraud on the rise, the need to protect the privacy of patients while moving towards secure digital systems is both urgent and essential

Topping the list, at 3,179 records missing or stolen, was the University Hospitals Birmingham NHS Foundation Trust; followed closely by Bolton NHS Foundation Trust at 2,163 records misplaced.

The third largest was University Hospitals Bristol NHS Foundation Trust with 1,105 records lost.

Wrightington, Wigan and Leigh NHS Foundation Trust reported 426 lost or stolen documents, despite using an electronic database system; and the Royal Devon and Exeter NHS Foundation Trust reported 425 documents lost or stolen and stated they only used paper case notes.

The report also found that 94% of trusts still use handwritten notes for patient record keeping, despite often having electronic record system software in place.

The information was gathered though the Freedom of Information Act (FOI) to request data into lost or stolen patient records and the use of handwritten notes.

Key recommendations from the report state that NHS trusts should work to abolish handwritten notes in hospitals to prevent loss of personal documents and to introduce a patient identity protocol in order for patients to have up-to-date information on their medical records.

Commenting on the findings, Barry Scott, chief technology officer at access management solutions provider, Centrify, said: “These incidents underline the need to improve security procedures around the management of health records within the NHS.

“With sales of health records on the dark web and identity fraud on the rise, the need to protect the privacy of patients while moving towards secure digital systems is both urgent and essential.

Without proper funding, processes and technology in place, it would be impossible for any organisation, let alone the NHS, to be in the position to secure their systems and the valuable information within

“Achieving this means ensuring only accredited doctors, nurses and staff can access private information, and providing encryption and identity access management solutions to keep cyber criminals locked out.”

But Andy Richmond, UK vice president at Varonis, told BBH: “The recommendations to put an end to handwritten patient records and introduce an online patient data portal are good and necessary moves from a modernisation standpoint, but they will not help in preparing for future cyber attacks. In fact, these new systems could introduce new vulnerabilities if not properly secured.

“The issue of lost and misplaced data is not unique to the NHS, or even to the healthcare sector. Data growth has skyrocketed and organisations have been caught off guard. Many times they do not know what their data servers hold, be that sensitive information on patients and courses of treatment, or personal identifying information such as an address and mobile number.

“Without proper funding, processes and technology in place, it would be impossible for any organisation, let alone the NHS, to be in the position to secure their systems and the valuable information within.

“Organisations are often overexposed and under-protected. The biggest issue in many cases is global file access, meaning that files are open to every employee within an organisation.

“In a recent report, we found that 41% of companies had at least 1,000 sensitive files open to all employees. These files are likely to be encrypted in a ransomware attack.”

  • Companies:
  • University Hospitals Bristol NHS Foundation Trust
  • Wrightington Wigan and Leigh NHS Foundation Trust
  • Royal Devon and Exeter NHS Foundation Trust
  • Varonis
  • Centrify
See more

You may also like

Digital

HSL supports Wigan radiology team through rollout of at-home reporting workstations

Read more
Pandemic approach is extended to enable more-flexible reporting practises

Trending Articles

  1. Health Tech Solutions launches in the UK Established in 2010 in India, the healthcare provider now aims to bring its healthcare model that includes at-home healthcare services to the UK
  2. SPARK TSL acquires Sentean Group to bring hospitals "state of the art apps for clinicians and patients" SPARK TSL has acquired Dutch Sentean Group with a complementary background in hospital entertainment and communication
  3. Queen Victoria Hospital selects Altera Digital Health as EPR provider Queen Victoria Hospital NHS Foundation Trust has purchased Altera Sunrise EPR, to meet NHS England’s target for trusts to have an electronic patient record by March 2026
  4. Orchestrating the new world of AI in healthcare Orion Health’s UK and Ireland Customer Conference 2023 focused on the future potential and immediate, practical application of AI to healthcare – and gave delegates a first look at the Orchestral health intelligence platform that will support integrated care systems and trusts that want to get started
  5. Nuance announces availability of Ambient Clinical Intelligence AI-powered ambient solution already improving physician productivity, patient throughput, and 88% higher physician satisfaction scores

Upcoming event

HEFMA Leadership Forum

8–10 May 2024 | Conference, exhibition and awards | Telford, UK See all

You may also like

Digital

HSL supports Wigan radiology team through rollout of at-home reporting workstations

Pandemic approach is extended to enable more-flexible reporting practises
Finance

Bristol & Weston NHS consortium embraces the cloud to transform procurement operations

One of the UK’s largest NHS purchasing consortiums will deploy SAP Ariba as part of its move to digital procurement, helping generate over £16m savings over five years
Digital

Why mobilised data is the most-valuable tool in healthcare

Dr Martin Farrier, chief clinical information officer at Wrightington, Wigan and Leigh Teaching Hospitals NHS Foundation Trust, reveals why data is the most-valuable tool in healthcare and will become just as important, if not more so, than hospital buildings
Digital

Northern Care Alliance NHS Foundation Trust to deploy laboratory information system from CliniSys

WinPath Enterprise will support harmonised working practices at pathology services across Greater Manchester
Digital

Wrightington, Wigan and Leigh NHS implements unified communications service

Legacy telephony service is repleased with modern IP solution
Digital

Partnership puts patients in the driving seat

Kinetik Wellbeing and Monitor My Health join forces to provide home blood tests kits for patients in Devon and Exeter
Digital

NHS trust deploys Qlik Cloud to improve data sharing and patient outcomes

Wrightington, Wigan and Leigh Teaching Hospitals NHS Foundation Trust introduces Qlik Cloud data analytics to facilitate a more-holistic and cohesive approach to care across the region
Subscribe now