My “friend” looked at my medical record.. Question for anyone who works in a NHS hospital

[AdviceNeeded3282]

As the title says. A friend of mine who works as an admin in the back office of a hospital has access to patient medical records/information. One night out she openly admitted that she has looked through people’s medical records?!?! (My guess is it’s all computerised). I was gob smacked to say the least. She found it funny/said it was interesting then realised I was angry. She openly admitted she has looked at all of our (close friends) records. My guess she has looked at my DH’s and anyone she is friends with? Anyhow about 2 years ago I went to my GP as I was suffering with depression which I told NO ONE about. This was at my doctors, not my hospital. Are all the systems linked ???? I do not want her knowing my private business like this. Before you say you should report her, I am not going down that road.

OP has already been on the thread saying she is definately going to report.

"I will report her anonymously" yes! Good for you op!

She's behaved appallingly AND ILLEGALLY.

I'd be ditching the "friend" too, nasty gossipy piece of work!

"how would they proove anything?" The systems are set up so that there's an electronic trail of who's looked at what. Her employers will know whose medical records she had legitimate reasons to look at and those she didn't she will get in trouble for.

And she's discussing that she's seen info on sexual assault?! For the love of god get this insensitive bitch reported ASAP!!

"If she is blatantly boasting about accessing records what’s to stop her discussing what she’s found." She's already doing that!

Who was there when she mentioned this? Because tbh it sounds like she was letting someone know she knew about their assault! That is utterly vile behaviour!

I'd be concerned she's using the info against people!

At the very least you could send a paper letter stating her name and the names of the people (including yours) who's records she claimed to illegally view. The hospital can then investigate using the methods myself and others have stated are available to her employers. Or an anon phone call.

I'm glad to hear that tech is now starting to be used that can flag such breaches without a report or audit being necessary. Hopefully these will be implemented everywhere ASAP.

Encrypting names could lead to medical issues. Few people would correctly remember a ref number but we remember our names. This is why eg on drug rounds patients are asked or tags checked to reconcile name, dob etc

@AdviceNeeded3282 your GP and hospital records are not usually linked so I doubt that she will have been able to see the details of GP visits.

I hope this helps! And sorry that your friend has done something so shitty.

@DaisyS2013 I work in the NHS and frequently access patients (that I see) notes. On my system you can see GP notes as well as some other services too, so it’s incorrect to say it’s not usually linked, my system is.

I have to say this is disgraceful behaviour by an employee of the NHS. I would never dream of doing it.

Its a sackable offence, which would have been made clear to her on day1 of her employment.

You need to find out who is the Caldicott Guardian for the Trust she works at and write to them. You wont need to give your details - she will have left a digital footprint on every record she has looked at and it will be clear which records she had no right to look at.

As an NHS employee, it enrages me that someone could do this. Confidentiality should be a given and almost all of us take our responsibility really seriously.

I'm so glad that you are reporting this. Years ago when expecting my first child someone I worked with told me that he knew I was pregnant before I had told anyone else. His wife worked in the scan department. I never reported it at the time because I was naive but I felt violated. I wish I had reported her.

OP, I’m glad you have decided to report this. It’s a huge breach of privacy and confidentiality.

My friend worked in the local GP’s surgery as both a receptionist and an HCA, and you could only access records of patients if you were booking appointments or treating them. Accessing anyone else’s records resulted in instant dismissal.

I genuinely believe it’s more common than we think

If that’s true then it’s because of people like you who turn a blind eye.

You’re only worried about yourself. Fuck all the other people whose privacy she’s also violated and probably blabbed about. As long as your depression stays a secret that’s fine, right?

Just seen you’re reporting her. Well done.