As an information governance officer, the privacy concerns are real, but the law requires that data is used for secondary purposes with patients consent, which patients can opt out of, save for a few legal carve outs which mean opt outs don't apply. GDPR and Caldicott principles don't prevent this from happening but provide frameworks to ensure responsible use of patient data which puts patients in control of their data. I prefer another cliche, data makes the world go round.
As an information governance officer, the privacy concerns are real, but the law requires that data is used for secondary purposes with patients consent, which patients can opt out of, save for a few legal carve outs which mean opt outs don't apply. GDPR and Caldicott principles don't prevent this from happening but provide frameworks to ensure responsible use of patient data which puts patients in control of their data. I prefer another cliche, data makes the world go round.
Good article