Left Hand Fines Right Hand After Human Interface Tragedy

 Corporate Computing, Life in General  No Responses »
Jan 132012
 

I read that the Information Commissioner has proposed to fine Brighton and Sussex University Hospitals NHS Trust £375,000 for a breach of patient confidentiality whereby hard drives containing patient data were sold on eBay. Digging a little further into the story, it seems that the NHS Trust hired a contractor to remove the drives, delete their contents and then dispose of them. The contractor sold the drives on, but didn’t do the deletion.

This is actually quite normal. Asset disposal companies take care of the owner’s legal obligations in disposing of kit, and they then offset the management charges by selling the kit on for whatever they can get. Obviously, the disposal company must correctly discharge its data cleansing duty, but the practice of an external contractor removing the kit and then selling it is completely standard, and returns the asset’s value to the owner.

The problem is that the patient data was not erased. And that’s why the Information Commissioner’s Office (ICO) has got involved.

But the ICO’s response, of fining the NHS Trust, is completely wrong.

Firstly, any government organisation fining any other government organisation is like me moving a £10 note from the front to the back of my wallet. It’s still money in the system. Except that it doesn’t cost me anything to move notes around in my wallet. There are loads and loads of people in the NHS and ICO who will be involved in the levying, paying and processing of the fine. These people will contribute nothing at all to the country by carrying out this transaction.

Secondly, NHS Trusts need all the money they can get. Reducing the money supply to an organisation that is already hard-up will only have the effect of increasing the pressure on staff, and therefore the likelihood of similar mistakes being made again.

Thirdly, this data breach is a human error. Somebody didn’t do their job properly. Was it negligence? It certainly appears that way. I’m not really a witch-hunt kind of guy, but why is the employing organisation being fined? It does not create a link between the punishment and the perpetrator of the crime/error. What should be done in this case is a period of non-criminal community service. The error affects the general public, so the perpetrator of that error should make reparations to the general public.

Fourthly, it doesn’t even appear as if this error was made by an employee of the Brighton and Sussex University Hospitals NHS Trust, so why are they being fined? Surely the error was made by the disposals company that tried to sell the unwiped hard drives. They are the ones who should be being fined. (Although, B&SUH should really have had a flow-down clause in its contract with the disposals company so that they could pass the liability on)

These points expose my real feeling of disgruntlement. Certainly, a privacy breach occurred, and a lesson needs to be learned. But that lesson has to be targeted and appropriate. The people involved need to be aware of the implications of their failure to correctly discharge their duty, and – where appropriate – must carry out some form of penitent action to make up for that mistake.

One government department stealing money from another teaches nobody anything, except for teaching the public at large that the whole system is FUBAR.

Something so obvious Sky has missed it

 Technology, Television  No Responses »
Oct 122011
 

Over recent months I’ve been pursuing the goal of a fully-connected home entertainment system. In the living room, the TV, amplifier, Blu Ray player, PlayStation and Sky box are all connected to the house network, and from there they can connect to the internet and to other devices in the house. Upstairs is a connected TV, and a Sky box. In the garage a box smaller than a toaster holds in excess of 100 DVDs and 1,000 CDs, ready to serve them up to any consuming device that wants them.

The Sky box has a network connection, which it uses to augment its “Anytime” service to provide a sort of video on demand. VoD is one of those things that you don’t really think about until you use it. Services such as BBC’s iPlayer, Channel 4’s 4OD and others provide near-instant access to shows that you forgot to record.

My parents have gone a different way. They too have TVs all over the house, but they rely on over-the-air TV, which they record onto a mass of DVD-RWs using a veritable phalanx of DVD recorders. This gives them one crucial advantage over our fully-connected system: They do not have to watch a show on the device that recorded it.

This is more useful than you may initially think. For us, if we record a show on the Sky+ box in the living room, we have to play it back in the living room. If we record it in the bedroom, in the bedroom we must watch. This does not offer the flexibility we need, and is frequently inconvenient. My parents on the other hand, can just whip the disc out, move it to their playback area of choice, sit down and watch.

Why can I not do this with the Sky system? Sure, there are ways to ‘blow’ your Sky signal into another room, but they’re not official, rely on the lower-quality RF signal path, and cause havoc for the person who’s in that other room trying to watch the TV. And that’s before you start worrying about replaying the remote signals from the room you’re in to the room with the Sky box you’re watching.

Why can the two Sky boxes not function as local network peers? It’s not hard to configure a discovery protocol so that they can find each other. They can handshake, and then pass programmes between each other. Record on one box, then stream that recording over the network to another box.

I don’t see a problem with it. Technically it’s a cinch, and there are already all sorts of protocols (such as DLNA) ready-brewed for such activities, including the detection, handshake and streaming transport. I can’t see a licensing issue, since the shows would be recorded and consumed within the same house.

I can only think that Sky has failed to see the awesomeness of such a feature, or hasn’t bothered itself to do the coding.

For shame, Sky!

All I want from iOS 5 is…

 Technology  2 Responses »
Oct 122011
 

With iOS 5 due tomorrow, I just want two things.

Autocorrect replace words default setting: Off

Autocorrect is generally pretty good, but quite often it “corrects” something I typed intentionally. And it’s a faff to un-correct it. It should behave like Microsoft Word (I know: the impishness of suggesting an Apple product be more like a Microsoft product!), just highlighting the words it thinks are wrong, for user action.

Option 1: Sort out Bluetooth Device Connection

I leave Bluetooth switched on. My iPhone is paired with my car. Approximately 40% of the time that I get in my car, my iPhone does not connect the car’s hands-free functionality automatically. There’s no rhyme or reason to it. Why isn’t it working properly Apple? Note, my Windows Mobile phone ALWAYS connected to the car. Just saying…

Option 2: Un-Bury the Bluetooth menus.

So, I’m in the car, and the iPhone has not auto-connected the Bluetooth hands-free kit. What to do?

  1. Press standby switch on top of phone.
  2. Swipe to unlock
  3. Enter unlock code
  4. Navigate to Home screen
  5. Press “Settings”
  6. Scroll to “General”
  7. Press “General”
  8. Press “Bluetooth”

The phone will now give the Bluetooth module a kicking, whereupon it detects the car and connects.

EIGHT steps?

Sort it out Apple.

 

Please?

 Older Entries