Summary Care Record Opt Out Now


The Labour government is desperately hoping to transfer everyone’s medical records to yet another centrally-held, government-controlled database, making patients’ medical records potentially viewable to anyone working within the NHS. Your GP records would ultimately be no longer held at the surgery, and the Department of Health would become the data-controller for your medical records, instead of your GP.

Those who do not wish to have their details on the £11 billion computer system are supposed to be able to opt out by informing health authorities. But doctors have accused the Government of rushing the project through, meaning that patients have had their details uploaded to the database before they have had a chance to object.

Today I have opted out of this database.

In January 2008 a poll by the British Medical Association revealed that nine out of ten doctors have no confidence in the government’s ability to safeguard patients’ data online or felt that they were in a position to assure patients that their data would be safe.

The unbelievable data protection breaches that were realised towards the end of 2007 illustrate the very real dangers of choosing to upload personal data to huge centralised government databases. These breaches included the loss of 25 million child benefit records and 15,000 pension policy records by Revenue and Customs, personal financial details of 40,000 housing benefit claimants by the Department of Work and Pensions, personal details of 6,000 people and details of 3 million candidates for the driving theory test by the DVLA.

In 2008 there was the further loss of unencrypted personal, medical and financial details of 600,000 applicants for the Armed Forces by the MoD as well the loss of four discs containing personal and confidential details of magistrates court cases by the Ministry of Justice.

In April 2007, The Department of Health (DoH) made the personal details – including religious beliefs and sexual orientation – of medical students applying for their first posts as doctors available to view on a public and unsecured website. The Information Commissioner’s Office declared the DoH in breach of the Data Protection Act over this appalling action.

In May 2007, the Foreign and Commonwealth Office (FCO) was responsible for personal data of people applying for visas to enter the UK being visible to others visiting the application website. The Information Commissioner’s Office declared the FCO in breach of the Data Protection Act over this appalling action.

In January 2008 the Ministry of Defence (MoD) admitted to losing unencrypted personal, medical and financial details of 600,000 applicants for the Armed Forces. Also in January 2008, the Ministry of Justice admitted that four computer discs containing personal and confidential details of magistrates court cases went missing in the post.

In February 2008 the Home Office admitted that it had lost, for more than a year, a computer disc containing details of 4,000 DNA profiles of suspected foreign criminals.

Official figures revealed through parliamentary answers, show that in the last year all government departments reported at least 208 laptops, and a number of PCs, stolen – many holding sensitive (and probably unencrypted) information. Since 1997 nearly 1,600 government computers containing sensitive information have been stolen.

Multiple NHS trusts have also admitted to losing sensitive details of hundreds of thousands of patients, adults and children, as well as personal details of their own NHS staff. More than 4000 NHS computer “smartcards”, used to give access to confidential patient records on the NHS Database, have been reported as lost or stolen.

There seems to be no end to the amount of personal, medical and financial data this Government is able to lose.

On the 3rd January 2008 the Justice Select Committee produced a damning report into the way that the Government mishandles private data in the wake of the HMRC child benefit records scandal. To quote the report:

“The roll call of banks, retailers, Government departments, public bodies and other organisations which have admitted serious security lapses is frankly horrifying.”

“We are extremely concerned to hear from the Information Commissioner that there are more cases involving the loss of personal data which have not yet fully come to light. The warning which he issued in the summer about the dangers of mishandling personal data and the extensive security lapses in a wide range of organisations has been proved correct.”

“There are, however, substantial risks associated with large databases which contain personal data and which are open to large numbers of licensed users.”

“There is evidence of a widespread problem within Government relating to establishing systems for data protection and operating them adequately.”

Many people believe that the government will abuse such uploaded data, for example to sell to pharmaceutical firms, big business and insurance companies; and with good reason – the DVLA alone has sold 5.3 million driver records to private companies since 2002.

Your data will be available, without your consent and in an identifiable way, to thousands of non-clinical health administrators under what is known as “Secondary Use Services”.

There is every reason to believe that the government intends linking the NHS Database to its other huge databases – such as the Child Records Database, the DVLA databases, Revenue & Customs databases and, most worryingly, the National Identity Register (ID Cards) and the DNA Database.

Many believe that these databases, including the NHS Database, represent fundamental attacks on our basic right to privacy. I do! In the words of the Information Commissioner himself, the UK is “in danger of sleepwalking into a surveillance society”. Britain has more CCTV cameras than any country in the world. We have the biggest DNA Database in the world. We have become one of the most bugged, surveyed and monitored countries on Earth.

This government wants patient’s medical records to be uploaded by default, unless the patient actively objects – an “opt out” mechanism: that is, if you do and say nothing, your notes will be uploaded. The British Medical Association, as well as many GPs, believes that patient should be asked for their explicit consent prior to any

More than eight out of ten doctors in the BMA’s poll said that they would not want their own personal information stored on the NHS Database.

GPs cannot upload data from patients who have “opted out”. You DO NOT need to make an appointment with a GP to opt out. Just list your names on the opt-out form (available here OptoutForm) and hand it to your GP reception. You can email the opt out form to your GP as well.

You have a choice. You do not have to allow your medical records to be uploaded to the NHS Database. You do not have to give reasons for opting out. You do not have to justify your right to privacy.

Opting out will IN NO WAY affect the medical care and treatment that you receive from your GP Practice, or affect the ability for your GP to refer you to a specialist for further care, should this be necessary. You remain fully (and legally) entitled to all the NHS care that you require, either from a GP, hospital A&E department or a hospital specialist.

You have nothing to lose by opting out now. You can opt in to the NHS Database at any time in the future.


Thanks to Dr Neil Bhatia Caldicott Guardian for the Oaklands Practice. Most of the content of this post was from his downloadable document. EveryPatientShouldOptOut

For detailed information regarding opting out, you can visit the following web sites:

3 thoughts on “Summary Care Record Opt Out Now

  1. I have to say I was surprised to find out, when reading the post, that no central database exists. I always assumed that basic information would be held on a central database, so that if I needed urgent treatment while in, say, Exeter, they’d have access to important medical information.

    I find it interesting that you express your grave concern about ID cards, then you say that Britain has “become one of the most bugged, surveyed and monitored countries on Earth”. If ID cards are the epitome of government control, then surely the UK is one of the least controlled countries in Western Europe, since all Britain’s neighbours, except Ireland, have them. My friends are amazed when I tell them that ID cards don’t exist in the UK. “How do you identify yourselves?”, they ask.

  2. Ah, but it is not just that there will be a database, it is what will be on it and who will have access to it. It will be my full life-long health and medical history. The data will be available, without my consent and in an identifiable way, to thousands of non-clinical health administrators under what is known as “Secondary Use Services”.

Leave a Reply

Your email address will not be published. Required fields are marked *