This issue points towards an important point of conflict in data storage methods, as many members of the public are still unsure as to whether new data storage methods, in particular Cloud or Virtual Storage, are safe places for private details.
Many patients oppose the idea of a single central database for fear of data loss, corruption, and unauthorised access to private details. However, technology experts argue that moving the NHS towards new data storage horizons can only mark a step forward in terms of security. This is especially true if we consider the almost disastrous cases in which several NHS trusts were fined for leaving hard drives full of patient information vulnerable.
Figures obtained earlier this year by the Scottish Liberal Democrats revealed that in the last five years, the private details of more than 800 patients had been lost by Scottish health boards. In 2013, NHS Surrey was fined £200,000 for selling second-hand computers - whose hard drives still contained the medical records of thousands of children - on eBay. The year before, Brighton and Sussex University Hospitals NHS Trust was fined £325,000 for a similar mistake: failing to ensure that hard drives containing patient information were wiped before used computers were given to a contractor.
Indeed, despite The Daily Mail’s recent claims that medical insurers will be able to “track you down within two hours” under the proposed centralised system, having Trusts keep patient data on their own hard drives has been proven, it seems, to be much more hazardous.
“The planned changes actually mark an important step forward for the NHS,” argues Tom Underhill, Director of cloud computing experts Net Solutions Europe. “Using a centralised database and encouraging trusts to convert to Cloud hosting means that patient data is likely to become easier to secure, rather than easier to lose or leak.”
“Trusts using a hybrid cloud service can have bespoke environments built to mirror their existing processes,” Tom continues, “everything from email and staff management to the recording of patient details can be made as smooth, efficient, and secure as possible, and the risks of downtime can become much less of a concern.”
“Even if attitudes towards private data don’t improve, the system itself can be designed to make it incredibly unlikely for leaks to occur. Generally, lapses in security are down to human error and the design of a cloud system can mitigate risk from individual mistakes. Any private cloud solution requires stringent password protection to access it in the first place, and even then staff will only have permission to view the files relevant to their individual access levels. Designed and implemented correctly, improved security and resilience is one of the major benefits of the cloud.”
“The most important message to members of the public is that storing data in a private cloud can be significantly more secure than storing it on a hard drive or mobile device - provided the implementation is right. As long as the built environments are top-end in terms of security and suitability for individual trusts, and the NHS provides patients with the right information first, moving private records to the cloud could be an excellent choice for the health service.”