Patient data misuse and the health professional regulators
August 2009 advice to the Secretary of State
The confidentiality and security of patients’ data is a core value for health professionals and this is reflected in the regulators’ codes and standards. Some regulators issue guidance to help registrants manage patients’ information in particular situations they may encounter in the course of their practice. Wider legal duties govern health professionals’ use of patients’ data, and professionals can also refer to guidance provided by other organisations and the NHS. These sources are cross-referenced in regulators’ standards and codes. In our report we found that the standards are satisfactory, but recommend that when regulators provide new guidance to registrants it is essential that this reflects both the public’s expectations around their data security, as well as any new risks that emerge from innovative use of information technology.