The Information Commissioner’s Office (ICO) has issued Northumbria Healthcare NHS Foundation Trust with an undertaking committing the trust to improving the way it handles patients’ information.
The action comes after the trust mistakenly sent five faxes containing information relating to the care of several patients to a member of the public. The faxes should have been sent to a social care team working at the trust but the wrong number was dialled.
After the first incident occurred in March 2014, the trust took action to make sure its fax machines were only able to send information to pre-programmed numbers belonging to organisations working in the health service. However, these measures were not adopted across all wards and four further faxes were sent to the same member of the public again two months later.
The ICO’s investigation found that the trust failed to inform all wards about the original data breach and the actions that they should take to stop this mistake occurring again. The trust also initially made no effort to recover the documents once they were alerted to the problem.
SOURCE: Information Commissioner’s Office