Why a Vaccine is Putting Gps at Risk of Gdpr Breaches

The British Medical Association (BMA) has warned that more than 3,000 GP practices could be breaching the Data Protection Act by using a new child vaccination data system for sharing data with the Child Health Information Service (CHIS).


Image Credit

Other extraction services could also be putting GPs at risk of breaching the General Data Protection Regulation (GDPR), the BMA said, as it warned GPs not to use any new CHIS extraction systems until the problem is resolved.

Areas Affected

The BMA reported that local medical committees in the West Midlands were aware of changes being made to how childhood vaccination data was being transferred from a GP’s system to the CHIS. The BMA was also concerned that GP practices in London and the South West were also at risk.

The BMA has said the issue could be because the system does not adhere to the principle of data minimization, whereby only the minimum amount of data necessary should be retained.

As part of the new GP contract, GP practices will be able to access a data protection officer through their clinical commissioning group to ensure compliance with GDPR.


Image Credit

GDPR and the Data Protection Act, which both came into force on 25 May 2018, are designed to give individuals more control over personal data and information. The GDPR seven principles include data minimization, which requires organizations to only keep data that is necessary.

Pharmacies Must Ensure Compliance

GDPR and the Data Protection Act cover all organizations, including community pharmacies, which have set up the Community Pharmacy GDPR Working Party to ensure businesses comply with the new regulations.

Pharmacies deal with more personal data than they may realize, from patient data held on medicines stored in pharmacy freezers to prescriptions and medication data. Though you can ensure you have the best refrigeration equipment for your needs from suppliers, such as https://www.fridgefreezerdirect.co.uk/medical-refrigeration/pharmacy-freezers, you will also need to ensure that the products kept within the pharmacy fridge or freezer are fully compliant with GDPR and the Data Protection Act.

The National Pharmacy Association has a range of resources to help community pharmacists comply with the new regulations.

GDPR and the Data Protection Act are relevant to all industries and organizations, both large and small. It therefore crucial that you understand how the regulations will impact on your business.

Comments are closed.