Dr Wollaston

- Hansard -

Copy Link

-

That is absolutely correct and I will come to those points later in my remarks. The public did not expect to see their records uploaded to insurance companies, specifically where that resulted in higher premiums for many people.

We have a virtuous circle of improving access to data for our universities and creating high-quality jobs within the industry. If we can attract research to this country, and it is carried out among the UK population, the results from that research will be more relevant to the British population. Also, less research will be carried out in circumstances that are ethically questionable or with oversight that may not be up to the standards we expect in this country, or that sometimes exploits people in developing countries and where we cannot be sure of the accuracy and reporting of that research.

This is a virtuous circle, but I am afraid it has unfortunately been broken by the oversight and some of the arrangements that have taken place in NHS England and the Health and Social Care Information Centre. It is frankly beyond me that nobody has assumed responsibility for destroying the trust in what should have been the most exciting advance that would have benefited countless hundreds of thousands of people, not only now but in the future.

On the six-month delay, I call on the Minister to set out clearly how we will campaign to inform the public of the benefits of the proposal, but also of the risks. We have seen a rather patronising approach that has assumed the public will not notice or care about those small risks, but they are there and we must set out clearly what they are and how they will be addressed and minimised. There is much more we can do to minimise those small risks.

Of course we need transparency about past errors; the performance of NHS England and the Health and Social Care Information Centre in the Health Committee was disappointing. I am glad that on its website, NHS England has now clarified that Sir Nick Partridge, former chief executive of the Terrence Higgins Trust, will conduct an audit of all previous data releases by the NHS information centre—the predecessor body. We are also expecting the release on 2 April of all the data released by the current body. I understand that that will set out the legal basis for those releases, but also their purpose, and that goes to the heart of my amendment.

We must have clear penalties for breach, not only in the provisions in the Bill, but across the whole NHS and social care sector. The Minister will know that in practice, if somebody wants to snoop on someone’s personal medical data, there are far easier ways to do it. He will also know that the penalties are derisory. In a well-publicised case in December 2013, a finance manager at a general practice had been deliberately snooping on the records of thousands of patients within the practice, and focusing—rather disturbingly—on one young woman he had gone to school with and her family. Those were repeated breaches of her and her family’s privacy in a really toxic way. That individual was fined only £996. The public need to be clear that there will be severe penalties not only for individuals who deliberately breach privacy, but for companies. A fine of £996 for an insurance company or a large body is laughable.