Europe's news in English

COPY LINK

HEALTH

German probe finds millions of medical records freely available online

Millions of records belonging to patients worldwide, including X-Rays, mammograms and MRI scans, were long freely accessible online without basic security measures, German authorities said Tuesday after a media investigation.

Published: 17 September 2019 16:50 CEST

German probe finds millions of medical records freely available online

Millions of patients records were found to be freely accessible online. Photo: DPA

ProPublica and Bavarian public television BR reported that some 16 million records were available “unprotected on the internet and available to anyone with basic computer expertise”, protected by neither a password nor encryption.

It is unclear how much of the data has now been safely sealed away by the various hospitals and other health care providers affected in dozens of countries.

“Several thousand patient records were accessible,” confirmed Germany's Federal Office for IT Security (BSI), referring only to some 13,000 of the country's citizens affected.

“The patient data could be accessed as the simplest IT security measures, like access control using usernames and passwords, or encryption, were not implemented.”

However, the government agency “has no information that patient data were in fact copied for criminal purposes.”

As well as scan and radiology data, patients' names, birth dates and social security numbers were freely readable.

BR and ProPublica reported at least 187 servers in the US and five in Germany were among the vulnerable computers, although there were similar security gaps in almost 50 countries including Brazil, Turkey and India.

The BSI said it had informed “partner organisations” in 46 countries about the problem.

Member comments

Log in here to leave a comment.

Become a Member to leave a comment.

When can doctors in Denmark refuse to continue treating patients?

Although doctors in Denmark have the right to decide not to continue treating a patient – requiring them to find a new GP – the circumstances in which this can happen are limited, and must be approved by health authorities.

The frequency in which the circumstances arise is also low. A doctor decided to no longer receive a patient on 375 occasions in 2016, according to the medical professionals’ journal Ugeskrift for Læger. The following year, newspaper Jyllands-Posten reported the figure at 458.

There are two main categories of circumstances in which a doctor can choose to take this step. The first is in instances of violent or threatening behaviour from the patient towards the doctor.

The second (and most common) is when the doctor considers the relationship to have deteriorated to the extent that confidence has broken down, according to Ugeskrift for Læger.

It should be noted that patients are not bound by any restrictions in this regard, and can decide to change their GP without having to give any justification.

A patient also has the right to appeal against a doctor’s decision to ask them to find a new GP. This is done by appealing to the local health authority, called a Region in the Danish health system.

In such cases, a board at the regional health authority will assess the claim and if it finds in favour of the patient may order the doctor to attempt to repair the relationship.

Doctors cannot end a relationship with a patient purely because a patient has made a complaint about them to health authorities. This is because patients should have the option of making complaints without fear of consequences for their future treatment.

However, if this is accompanied by the conclusion on the doctor’s part that there is no longer confidence in them on the part of the patient, they can remove the patient from their list.

The right to no longer see patients in the circumstances detailed above is provided by doctors’ collective bargaining agreements, the working conditions agreed on between trade unions and employer confederations under the Danish labour market system.

SHOW COMMENTS

Url copied to clipboard!