Secondary Care

Revealed: NHS trusts not discouraging WhatsApp, Facebook Messenger and other consumer apps

A new research report from CommonTime has discovered the majority of NHS acute trusts have no policy to discourage consumer instant messaging tools.

The report highlighted that important steps to prevent staff sharing sensitive information via WhatsApp, Facebook Messenger and other consumer applications were not being taken following responses from 136 of England’s 151 acute trusts.

Nearly six in ten trusts (58%) said they had no policy in place to discourage consumer instant messaging. This is despite research earlier in the year that raised data protection concerns.

However 17 trusts said they had simply banned instant messaging applications altogether.

Rowan Pritchard-Jones, consultant burns and plastic surgeon and chief clinical information officer at St Helens and Knowsley Teaching Hospitals NHS Trust, commented on the latest findings: “As is usual, NHS staff have adopted technology, likely in the belief that they are doing the right thing to support patient care, in an increasingly pressurised environment. It is incumbent on digital leaders to embed in our evolving culture the need to protect patient confidentiality, deliver these conversations into the patient record, and support staff to have these interactions with the support of their organisations.”

Six trusts that responded listed consumer applications including WhatsApp and Apple’s iMessage as official channels, despite limitations in being able to trace how patient data is transmitted, and challenges around integrating information with NHS systems. Researchers said this raised concerns around compliance with the General Data Protection Regulation (GDPR), that came into force this year.

David Juby, head of IT and security at CommonTime, said: “When considering the usage of WhatsApp and other consumer messaging apps within a GDPR context, a health service data controller must consider if they are able to provide a copy of data if requested by a patient and that they able to erase personal data when requested.”

Steve Carvell, head of healthcare at CommonTime, said the latest freedom of information findings showed that many trusts needed to do more to support their staff. “It is encouraging to see pioneering trusts supporting their staff, some with instant messaging applications specifically designed to cater for healthcare workflow and that can help staff work more effectively in pressured environments when they are caring for patients.”

“But our latest research also shows that many other trusts still need to take action to provide staff with the tools they need to communicate effectively in delivering patient care. Staff need to be given guidance to help ensure organisations can comply with ever more stringent data protection regulations. And they need access to technologies that allow them to do their job. Where consumer messaging isn’t appropriate, trusts have a responsibility to provide alternative communication tools that are effective in supporting secure information flows in healthcare.”