Breaches of Confidentiality. If any party becomes aware of a material breach or any violation of its obligation to protect the confidentiality and security of consumers’ protected health information, the party must immediately take reasonable steps to cure the breach or end the violation, and must report, the breach or violation to its respective privacy officer. The alleged breach or violation will be investigated and an appropriate action issued.
Breaches of Confidentiality. If the Recipient becomes aware of a suspected or actual breach of this clause by the Recipient or an Additional Disclosee, the Recipient must:
(a) immediately notify the Discloser of that suspected or actual breach; and
(b) take reasonable steps and do all things necessary as directed by the Discloser, at its own expense, that are required to prevent or stop the suspected or actual breach.
Breaches of Confidentiality. 9.1 Any breach of confidentiality other than those outlined in 3.3 is a serious matter and may lead to disciplinary action including dismissal. Staff must be aware of the consequences of breaches in confidentiality and take suitable precautions against accidental disclosure. This duty of confidentiality is incorporated into the terms and conditions of employment of Camden and Islington Mental Health Services NHS Trust, the London Borough of Camden Social Services, the London Borough of Islington Social Services, and Camden and Islington Health Authority.
9.2 Where a service user indicates that they have a relative, friend, neighbour or similar working for the organisation, special arrangements should be made. The appropriate professional should identify the person concerned on the file and assess the risk of their accessing the file.
9.3 Where a service user is or has been a member of staff of one of the organisations, sensitive arrangements should be made to protect that individual’s right to confidentiality.
Breaches of Confidentiality. (Statement defining how breaches of confidentiality by any agencies party to the agreement will be monitored and dealt with.) All activity on the Dorset Care Record is logged in an audit trail, and the individual user is responsible for justifying why they looked at a specific record. Any data breaches will be investigated under the Dorset Information Sharing Charter (DISC) Data Breach Management guidance. The Information Governance lead of the organisation detecting the breach should be informed and they will inform the DCR Project Manager, who will advise other IG leads throughout the partnership as appropriate to the breach. Where this involves the whole partnership, the chair of the Dorset Information Governance group will lead the response. Inappropriate access by own staff: Any organisation either suspecting or identifying inappropriate use by their own staff will conduct their own investigation. If this identifies that information from another organisation has been viewed or used inappropriately, the original organisation will contact the relevant IG Lead; Inappropriate access by external users: Any organisation either suspecting or identifying inappropriate use by users outside of their employees will raise the issue as soon as possible with the IG Lead for the organisation responsible for those users; Any incident related to the use of personal/sensitive data within health and/or social care will be checked against the 'Serious Incidents Requiring Investigation' (SIRI), as produced by NHS Digital and reported based on the Department of Health (DH) and Information Commissioner’s Office (ICO) agreed solution for reporting personal/confidential data breaches.. Where multiple organisations are involved, they will agree reporting between themselves as the incident does not need to be reported multiple times. It is essential that all Information Governance Serious Incidents Requiring Investigation (IG SIRIs) which occur in Health, Public Health and Adult Social Care services are reported appropriately and handled effectively. Any disciplinary action will be an internal matter for the partner(s) concerned.
Breaches of Confidentiality. If Agency 1 becomes aware of a material breach or any violation of its obligation to protect the confidentiality and security of consumers’ protected health information, Agency 1 must immediately take reasonable steps to cure the breach or end the violation, and must report the breach or violation to the AGENCY 2 Privacy Officer. The alleged breach or violation will be investigated and an appropriate sanction issued. AGENCY 2 reserves the right to terminate this Agreement if it determines that the Agency 1 has violated a material term of the Agreement.
Breaches of Confidentiality. 4.1 Breaches of data protection legislation will be dealt with by each partners established information security procedures and formal disciplinary procedures.
4.2 Details of confidentiality and data incidents will be notified to the point of contact of the other partner identified in section 1 of the Data List by the other partner immediately.
Breaches of Confidentiality. All activity on the Dorset Care Record is logged in an audit trail, and the individual user is responsible for justifying why they looked at a specific record. Any data breaches will be investigated under the Dorset Information Sharing Charter (DISC) Data Breach Management guidance. Under Article 33 of GDPR, breaches that must be reported to the Information Commissioner’s Office (ICO) are defined as a breach of security that leads to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed. These breaches should be reported to the ICO without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay. The Data Protection Officer(DPO) lead of the organisation detecting the breach should be informed and they will inform the DCR Privacy Officer, who will advise other IG leads throughout the partnership as appropriate to the breach. Where this involves the whole partnership, the chair of the Pan Dorset Information Governance group will lead the response. • Inappropriate access by own staff: Any organisation either suspecting or identifying inappropriate use by their own staff will conduct their own investigation. If this identifies that information from another organisation has been viewed or used inappropriately, the original organisation will contact the relevant IG Lead. • Inappropriate access by external users: Any organisation either suspecting or identifying inappropriate use by users outside of their employees will raise the issue as soon as possible with the DPO Lead for the organisation responsible for those users.
Breaches of Confidentiality. Revised: Anyone who becomes aware of a breach of security protocol without breach of confidentiality shall report this to CPHP or LPHA ORP or their designee LPHA ORP or designee, or to the CPHP ORP;
(Section 4 B 1) Breaches of Confidentiality (Section 4 B 2) Breaches of Confidentiality
Breaches of Confidentiality. If a Party becomes aware of a suspected or actual breach of this clause 13 by that Party or its Permitted Recipients, the Party will immediately notify the other Party.
Breaches of Confidentiality. Breaches of confidentiality by any agency party to this agreement will be monitored by the Local Authority. Any breaches of confidentiality must be reported to the Data Controller of the LA immediately upon discovery. Signatories of this Agreement will make arrangements for a full investigation of any breach with the assistance of an independent agency if required. Outcomes and lessons learned will be appropriately shared with partner organisations.