Sandyford Clinic Glasgow blunder makes public details of transgender patients

A HEALTH board is ­apologising to scores of people after a data breach led to the personal details of transgender patients being circulated. Source Herald

NHS Greater Glasgow and Clyde alerted the Information Commissioner and launched their own investigation after a member of staff sent an email about a forthcoming event without hiding the addresses of all the recipients.

It meant the addresses of 86 people, understood to be transgender patients at the Sandyford Clinic in Glasgow, were visible, with some containing details such as names and dates of birth.

A spokeswoman for the health board said the breach, which happened on Monday, was a result of human error.

She added: “The member of staff sending this email made the unfortunate error of attaching all the email addresses of the patients in the one email.

“Patient confidentiality is of the highest priority and we are extremely concerned that this breach has occurred as a result of human error.

“We have already made the Information Commissioner aware of this issue and have been guided by him.”

Dr Pauline McGough, consultant in Sexual and Reproductive Health at NHS Greater Glasgow and Clyde, added: “We are urgently taking the appropriate steps to contact the individuals concerned and will apologise unreservedly to them for any distress this may have caused.

“We will investigate this issue fully and take appropriate steps to ensure this does not happen again”.

Facebook Comments

One Response to Sandyford Clinic Glasgow blunder makes public details of transgender patients

  1. Jessica November 4, 2014 at 1:09 am

    The email system needs to be tied to a database with patients email addresses (with necessary security). Then set it up that no more than one patient email address may appear in the “To” or “Cc” field at a time with the “Bcc” field being exempt from this rule. Problem solved.