Security is of paramount importance to the Spine. BT has created a safe repository for confidential clinical data which is far more secure than a paper-based records system.
There are strict safeguards in place to protect the security and confidentiality of every patient's health care information, and we meet an extensive set of Spine security requirements. It uses the highest national and international security measures to protect patient confidentiality. There are rigorous access controls, to ensure patient information is only available to those who need it.
Only clinical users with a legitimate relationship with the patient may see their clinical information, and every single transaction can be traced.
BT also carries out regular penetration testing to ensure that the security of the Spine is maintained.
The use of Smartcards
Access to patient records is controlled by the use of Smartcards. These use chip and pin technology, and have to be inserted into a card reader that is physically attached to a computer before the user is allowed access to all or part of a patient's record. Once they have accessed the system, the information they are able to see will depend on their role in the NHS organisation. Health care professionals must have a legitimate relationship with a patient (ie. be providing a patient with care) before they are able to access a particular patient's clinical information. Smartcards are only issued after stringent identity checks are completed.