The Australian Digital Health Agency (ADHA), the agency responsible for oversight of My Health Record, this week revealed a handful of occurrences where the security of the contentious medical records system was compromised.
The ADHA's annual report [PDF] revealed there were 38 matters reported to the Office of the Australian Information Commissioner (OAIC) during the year concerning potential unauthorised access, security, or integrity breaches.
37 of these matters were counted as breaches, and the ADHA said most were the result of administrative errors such as "intertwined" Medicare records or processing errors when creating records for infants.
Three involved the unauthorised access to an individual's My Health Record.
Breaking down four of the breaches the ADHA took to the OAIC, it said one of the unauthorised access incidents was the result of the incorrect parent being assigned to a child.
With children, a Parental Authorised Representative is assigned to act on their behalf.
See also: Rushed My Health Record changes still missing the point
Two of the four breaches reported to the privacy commissioner resulted from suspected fraud against the Medicare program. Incorrect records that appeared in the My Health Record of the affected individual were also viewed without authority by the individual undertaking the suspected fraudulent activity, the ADHA wrote.
The last of the incidents reported to the OAIC was later determined to not be a breach, as it was later confirmed that the access -- performed by a Services Australia officer who was acting as a delegate of t ..
Support the originator by clicking the read the rest link below.
