NZ New Zealand Ministry of Health Mar 2017 Technical Error (Q11982)
From Open Risk Manual
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English | NZ New Zealand Ministry of Health Mar 2017 Technical Error |
A data breach risk event |
Statements
e88712c0-d56c-11e7-af4f-6b5d4514198e
March 2017
0 references
A new patient information system used by general practitioners had to be disabled yesterday because of a risk of data breach. ``The ministry understands that patient demographic data has been transported from GP practices in an unencrypted form to an online Medtech hub. ``The sort of information that was transported without encryption includes the name, date of birth and gender of a patient. ``In light of the potential risk, the ministry has requested Medtech to temporarily disable the services that transports the information to its hub until Medtech issues a fix, which is expected later this week, the ministry said. An authorised administrator at a PHO had reported he could see data in an unencrypted form. ``Once alerted to the problem Medtech immediately secured the links and started wo (English)