Tony Collins writes:
NHS Shared Business Services – a joint venture between the Department of Health and Steria – does not have to publish any detail on what NHS information is viewed in India or what data fields can be viewed.
Steria employs 5,000 in India some of whom work on NHS records. It says that its India-based staff do not view any sensitive information, and it makes the valid point that NHS trusts
have had a high number of data breaches as mentioned by the Information Commissioner in 2010.That said, Computerworld UK has learned that there is no fully independent check on what NHS information is viewable or processed in India. Though NHS SBS has checks that are completed and verified on its behalf, it’s difficult to police any data breaches in India.
Read more on Computerworld UK