1. HILIS4.git
  2. templates
  3. site
  4. terms_and_conditions.tt
 RSS Git Download  Clone
Raw Blame History 
	<h2>Access to system</h2>
	
	<p>All users must accept the agreement which comes with this guidance. Employees
	may use the [% settings.app_abbr %] data system only if they are issued with an
    authorised password. Unauthorised sharing of passwords is prohibited. The system
    administrator maintains a list of authorised users, and <b>all</b> login attempts,
    successful and otherwise are recorded.</p> 
	
	<h2>How information from the system should be used</h2>
	
	<p>The Leeds Hospitals Trust is registered under the Data Protection Act to use
	the information for the health care of individuals and for administration only.
	Employees must not disclose information to organisations or individuals for any
	other reason.</p>
	<h2>Disclosures of information</h2>
	
	<p>The medical data of patients must only be disclosed for the purposes of health
	care or administration. The consent of the patient is required for anything else.
	Consent is required for research.</p>
	
	<h2>Enquiries about patient data</h2>
	
	<p>Check the identity of the enquirer and make sure the person is entitled to
	the information. Enquiries from outside the Trust, such as from relatives or from
	other organisations, need particular attention.</p>
	
	<p>Employees are unlikely to be criticised for refusing to disclose information
	when there is a genuine doubt. On the other hand a hasty, illegal disclosure
	could result in disciplinary action.</p>
	
	<p>If you are unsure about whether to disclose information then seek advice.
	Ask your line manager or contact the <a href="mailto:hmds.lth@nhs.net">
	system administrator</a>. A good rule of thumb is to disclose information 
	on a 'need to know' basis only.</p>
	
	<h2>Access to the Internet</h2>
	
	<p>If you have access to the Internet, you should have already signed an Internet
	Access Agreement with your local hospital. Restrictions on how you may use data
	applies equally to electronic data and to printed data. Sending computerised or
	printed health records without consent to some countries outside Europe contravenes
	Data Protection law.</p>
	
	<h2>Security measures</h2>
	
	<p>It is the duty of all staff handling computerised patient data to protect it.
	Security measures such as keeping the office locked and not leaving screens
	switched on and unattended must be employed. Unintentional disclosures would
	still be a breach of the Data Protection Act. Superfluous computer printouts of
	personal medical data must be destroyed and not used as scribbling pads.</p>  
	
	<h2>Further information &amp; advice</h2>
	
	<p>Further information or advice on Data Protection matters can be obtained by
	contacting the Trust's Data Protection Officer on 0113 392 6936. IT Security
	matters will be dealt with by the IT Help Desk on 0113 392 6655.</p>

	<hr />

	<p><a href="#top"><img src="/images/top_page.gif" alt="top" border="0" /></a></p>