Items of spend over £25,000
Details of suppliers payments for individual invoices exceeding £25,000 are shown here. Their details are updated monthly.
Serious incidents involving personal data are very rare. All such incidents are thoroughly investigated. Details of Serious incidents for 2014/15 are outlined below.
There was one Serious Incidents during 2014/15 that required reporting to the Department of Health and the Information Commissioner's Office.
Date of incident (month) |
Nature of incident |
Nature of data involved |
Number of data subjects potentially affected |
Notification steps |
September 2014 |
Patient handover sheet left unattended in an unlocked room in the hospital – found by a member of the public |
Name; clinical information; patient identifier |
31 | All patients notified by the specialty consultant / patients also provided with details of the outcome of the Trust investigation |
Full investigation undertaken. Reviewed the management of the room the handover sheets were left in. The room had been used for clinical handover meetings. Key pad lock fitted to secure the room. Review responsibilities and usage regarding the room – poster for ‘rules of usage’ developed and displayed. The Information Commissioner’s Office (the data protection regulator) assessed the incident, was satisfied with the Trust’s response and management and concluded that no further action was necessary. |
Category |
Breach Type |
Total |
A |
Corruption or inability to recover electronic data |
0 |
B |
Disclosed in Error |
12 |
C |
Lost in Transit |
1 |
D |
Lost or stolen hardware |
0 |
E |
Lost or stolen paperwork |
1 |
F |
Non-secure Disposal – hardware |
0 |
G |
Non-secure Disposal – paperwork |
2 |
H |
Uploaded to website in error |
1 |
I |
Technical security failing (including hacking) |
0 |
J |
Unauthorised access/disclosure |
1 |
K |
Other |
0 |