- Details
-
Hits: 13063
Recientemente hemos tenido noticias de una denuncia contra dos trabajadores del Hospital Universitario Nuestra Señora de La Candelaria que no pertenecen al personal médico o de enfermería, por acceder repetidamente, sin permiso de una paciente, a la historia clínica electrónica de la misma.
La seguridad y la privacidad de los datos son cruciales en las historias clínicas y en cuanto a los permisos de acceso a las mismas, ya que los pacientes son los propietarios de sus propias historias, son ellos mismos quienes han de decidir quién puede ver su información sanitaria y cuándo.
Por tanto resulta inconcebible e intolerable que cosas como la denunciada puedan suceder en el Servicio Canario de la Salud cuando es éste el que ha de proteger las historias clínicas electrónicas de intrusos como los denunciados que no tienen la correspondiente autorización escrita por parte de la paciente.
Esta solicitó una auditoría a la dirección del hospital para conocer los accesos habidos a su historia. El resultado de dicha auditoría que nos fue facilitado por la paciente, no ofrece dudas sobre el seguimiento exhaustivo hecho por los intrusos en relación con los diversos aspectos de su proceso patológico.
Esta desprotección de los datos médicos de los pacientes, se manifiesta en otras situaciones de exposición de datos sensibles, de modo innecesario, a otros profesionales sanitarios como, por ejemplo, farmacéuticos y auxiliares de farmacia. Los procedimientos más vulnerables se deben cambiar, es el caso también del acceso individual al resumen de historia clínica electrónica que es poco respetuoso con la protección de datos, basta con que alguna persona conozca tu DNI y tu fecha de nacimiento para acceder, caso de adolescentes ... y sus padres, vecinos, del banco o compañías de seguros, etc....En cuanto al caso denunciado, exigimos que se depuren las responsabilidades correspondientes, tanto en lo que se refiere a los ejecutores materiales de la mencionada violación de los derechos de una paciente, como a los responsables administrativos y políticos de una tan lamentable gestión del control de acceso en las historias clínicas electrónicas del Servicio Canario de la Salud.
Asociación para la Defensa de la Sanidad Pública de Canarias
29 de octubre de 2012
PLG_DEBUG_TITLE
session.counter ⇒ 1
session.timer.start ⇒ 1743626868
session.timer.last ⇒ 1743626868
session.timer.now ⇒ 1743626868
session.client.browser ⇒ Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
registry ⇒ {}
id ⇒ 0
name ⇒
username ⇒
email ⇒
password ⇒
password_clear ⇒
usertype ⇒
block ⇒
sendEmail ⇒ 0
registerDate ⇒
lastvisitDate ⇒
activation ⇒
params ⇒
groups ⇒
guest ⇒ 1
lastResetTime ⇒
resetCount ⇒
aid ⇒ 0
4.94 MB (5,185,200 Bytes)
18 Registro Consultas
SELECT `data`
FROM `hdr5j_session`
WHERE `session_id` = 'mqb7vt2258n0lte3spa4jdavd1'SELECT `session_id`
FROM `hdr5j_session`
WHERE `session_id` = 'mqb7vt2258n0lte3spa4jdavd1'
LIMIT 0, 1INSERT INTO `hdr5j_session`
(`session_id`, `client_id`, `time`)
VALUES
('mqb7vt2258n0lte3spa4jdavd1', 0, '1743626868')SELECT b.id
FROM hdr5j_usergroups AS a
LEFT JOIN hdr5j_usergroups AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt
WHERE a.id = 1SELECT id, rules
FROM `hdr5j_viewlevels`SELECT `enabled`
FROM `hdr5j_extensions`
WHERE `element` = 'com_akeeba'
AND `type` = 'component'SELECT time
FROM hdr5j_vvisit_counter USE INDEX(time)
ORDER BY time DESC
LIMIT 1;UPDATE hdr5j_vvisit_counter
SET visits=visits+1, bots=bots+1
WHERE time=1743627000;SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component
FROM hdr5j_menu AS m
LEFT JOIN hdr5j_extensions AS e
ON m.component_id = e.extension_id
WHERE m.published = 1
AND m.parent_id > 0
AND m.client_id = 0
ORDER BY m.lftSELECT c.*,
CASE WHEN CHAR_LENGTH(c.alias) THEN CONCAT_WS(':', c.id, c.alias) ELSE c.id END as slug
FROM hdr5j_categories as c
LEFT JOIN hdr5j_categories AS s
ON (s.lft <= c.lft
AND s.rgt >= c.rgt) OR (s.lft > c.lft
AND s.rgt < c.rgt)
LEFT JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt
WHERE parent.extension = 'com_content'
AND parent.published != 1
GROUP BY cat.id) AS badcats
ON badcats.id = c.id
WHERE (c.extension='com_content' OR c.extension='system')
AND c.access IN (1,1)
AND c.published = 1
AND s.id=344
AND badcats.id is null
GROUP BY c.id, c.asset_id, c.access, c.alias, c.checked_out, c.checked_out_time,
c.created_time, c.created_user_id, c.description, c.extension, c.hits, c.language, c.level,
c.lft, c.metadata, c.metadesc, c.metakey, c.modified_time, c.note, c.params, c.parent_id,
c.path, c.published, c.rgt, c.title, c.modified_user_id
ORDER BY c.lftSELECT alias, catid
FROM hdr5j_content
WHERE id = 344SELECT a.rules
FROM hdr5j_assets AS a
WHERE (a.id = 1)
GROUP BY a.id, a.rules, a.lftSELECT b.rules
FROM hdr5j_assets AS a
LEFT JOIN hdr5j_assets AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt
WHERE (a.name = 'com_content' OR a.parent_id=0)
GROUP BY b.id, b.rules, b.lft
ORDER BY b.lftSELECT a.id, a.asset_id, a.title, a.alias, a.title_alias, a.introtext, a.fulltext,
CASE WHEN badcats.id is null THEN a.state ELSE 0 END AS state, a.mask, m.catid, a.created, a.created_by, a.created_by_alias,
CASE WHEN a.modified = 0 THEN a.created ELSE a.modified END as modified, a.modified_by, a.checked_out, a.checked_out_time, a.publish_up, a.publish_down, a.images, a.urls, a.attribs, a.version, a.parentid, a.ordering, a.metakey, a.metadesc, a.access, a.hits, a.metadata, a.featured, a.language, a.xreference,c.title AS category_title, c.alias AS category_alias, c.access AS category_access,u.name AS author,contact.id as contactid,parent.title as parent_title, parent.id as parent_id, parent.path as parent_route, parent.alias as parent_alias,ROUND(v.rating_sum / v.rating_count, 0) AS rating, v.rating_count as rating_count
FROM hdr5j_content AS a
LEFT JOIN hdr5j_multicategories AS m
on m.aid = a.id
LEFT JOIN hdr5j_categories AS c
on c.id = m.catid
LEFT JOIN hdr5j_users AS u
on u.id = a.created_by
LEFT JOIN (
SELECT contact.user_id, MAX(contact.id) AS id, contact.language
FROM hdr5j_contact_details AS contact
WHERE contact.published = 1
GROUP BY contact.user_id, contact.language) AS contact
ON contact.user_id = a.created_by
LEFT JOIN hdr5j_categories as parent
ON parent.id = c.parent_id
LEFT JOIN hdr5j_content_rating AS v
ON a.id = v.content_id
LEFT
OUTER JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt
WHERE parent.extension = 'com_content'
AND parent.published <= 0
GROUP BY cat.id) AS badcats
ON badcats.id = c.id
WHERE m.catid = 78
AND a.id = 344
AND (a.publish_up = '0000-00-00 00:00:00' OR a.publish_up <= '2025-04-02 20:47:48')
AND (a.publish_down = '0000-00-00 00:00:00' OR a.publish_down >= '2025-04-02 20:47:48')
AND (a.state = 1 OR a.state =2)SELECT c.*,
CASE WHEN CHAR_LENGTH(c.alias) THEN CONCAT_WS(':', c.id, c.alias) ELSE c.id END as slug
FROM hdr5j_categories as c
LEFT JOIN hdr5j_categories AS s
ON (s.lft <= c.lft
AND s.rgt >= c.rgt) OR (s.lft > c.lft
AND s.rgt < c.rgt)
LEFT JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt
WHERE parent.extension = 'com_content'
AND parent.published != 1
GROUP BY cat.id) AS badcats
ON badcats.id = c.id
WHERE (c.extension='com_content' OR c.extension='system')
AND c.access IN (1,1)
AND c.published = 1
AND s.id=78
AND badcats.id is null
GROUP BY c.id, c.asset_id, c.access, c.alias, c.checked_out, c.checked_out_time,
c.created_time, c.created_user_id, c.description, c.extension, c.hits, c.language, c.level,
c.lft, c.metadata, c.metadesc, c.metakey, c.modified_time, c.note, c.params, c.parent_id,
c.path, c.published, c.rgt, c.title, c.modified_user_id
ORDER BY c.lftUPDATE hdr5j_content
SET hits = hits + 1
WHERE id = 344SELECT c.*,
CASE WHEN CHAR_LENGTH(c.alias) THEN CONCAT_WS(":", c.id, c.alias) ELSE c.id END as slug
FROM hdr5j_categories as c
LEFT JOIN hdr5j_categories AS s
ON (s.lft <= c.lft
AND s.rgt >= c.rgt) OR (s.lft > c.lft
AND s.rgt < c.rgt)
LEFT JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt
WHERE parent.extension = 'com_content'
AND parent.published != 1
GROUP BY cat.id) AS badcats
ON badcats.id = c.id
WHERE (c.extension='com_content' OR c.extension='system')
AND c.access IN (1,1)
AND c.published = 1
AND s.id=78
AND badcats.id is null
GROUP BY c.id
ORDER BY c.lftUPDATE `hdr5j_session`
SET `data` = '__default|a:7:{s:15:\"session.counter\";i:1;s:19:\"session.timer.start\";i:1743626868;s:18:\"session.timer.last\";i:1743626868;s:17:\"session.timer.now\";i:1743626868;s:22:\"session.client.browser\";s:103:\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)\";s:8:\"registry\";O:9:\"JRegistry\":1:{s:7:\"\0*\0data\";O:8:\"stdClass\":0:{}}s:4:\"user\";O:5:\"JUser\":25:{s:9:\"\0*\0isRoot\";b:0;s:2:\"id\";i:0;s:4:\"name\";N;s:8:\"username\";N;s:5:\"email\";N;s:8:\"password\";N;s:14:\"password_clear\";s:0:\"\";s:8:\"usertype\";N;s:5:\"block\";N;s:9:\"sendEmail\";i:0;s:12:\"registerDate\";N;s:13:\"lastvisitDate\";N;s:10:\"activation\";N;s:6:\"params\";N;s:6:\"groups\";a:0:{}s:5:\"guest\";i:1;s:13:\"lastResetTime\";N;s:10:\"resetCount\";N;s:10:\"\0*\0_params\";O:9:\"JRegistry\":1:{s:7:\"\0*\0data\";O:8:\"stdClass\":0:{}}s:14:\"\0*\0_authGroups\";a:1:{i:0;i:1;}s:14:\"\0*\0_authLevels\";a:2:{i:0;i:1;i:1;i:1;}s:15:\"\0*\0_authActions\";N;s:12:\"\0*\0_errorMsg\";N;s:10:\"\0*\0_errors\";a:0:{}s:3:\"aid\";i:0;}}'
, `time` = '1743626868'
WHERE `session_id` = 'mqb7vt2258n0lte3spa4jdavd1'
DESCRIPCION Tipos de consulta Conectados 17, por orden de suceso
SELECCIONAR Tablas:
2 × SELECT c.*,
CASE WHEN CHAR_LENGTH(c.alias) THEN CONCAT_WS(':', c.id, c.alias) ELSE c.id END as slug
FROM hdr5j_categories as c
LEFT JOIN hdr5j_categories AS s
ON (s.lft <= c.lft
AND s.rgt >= c.rgt) OR (s.lft > c.lft
AND s.rgt < c.rgt)
LEFT JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt1 × SELECT alias, catid
FROM hdr5j_content1 × SELECT a.rules
FROM hdr5j_assets AS a1 × SELECT a.id, a.asset_id, a.title, a.alias, a.title_alias, a.introtext, a.fulltext,
CASE WHEN badcats.id is null THEN a.state ELSE 0 END AS state, a.mask, m.catid, a.created, a.created_by, a.created_by_alias,
CASE WHEN a.modified = 0 THEN a.created ELSE a.modified END as modified, a.modified_by, a.checked_out, a.checked_out_time, a.publish_up, a.publish_down, a.images, a.urls, a.attribs, a.version, a.parentid, a.ordering, a.metakey, a.metadesc, a.access, a.hits, a.metadata, a.featured, a.language, a.xreference,c.title AS category_title, c.alias AS category_alias, c.access AS category_access,u.name AS author,contact.id as contactid,parent.title as parent_title, parent.id as parent_id, parent.path as parent_route, parent.alias as parent_alias,ROUND(v.rating_sum / v.rating_count, 0) AS rating, v.rating_count as rating_count
FROM hdr5j_content AS a
LEFT JOIN hdr5j_multicategories AS m
on m.aid = a.id
LEFT JOIN hdr5j_categories AS c
on c.id = m.catid
LEFT JOIN hdr5j_users AS u
on u.id = a.created_by
LEFT JOIN ( SELECT contact.user_id, MAX(contact.id) AS id, contact.language
FROM hdr5j_contact_details AS contact1 × SELECT c.*,
CASE WHEN CHAR_LENGTH(c.alias) THEN CONCAT_WS(":", c.id, c.alias) ELSE c.id END as slug
FROM hdr5j_categories as c
LEFT JOIN hdr5j_categories AS s
ON (s.lft <= c.lft
AND s.rgt >= c.rgt) OR (s.lft > c.lft
AND s.rgt < c.rgt)
LEFT JOIN (SELECT cat.id as id
FROM hdr5j_categories AS cat JOIN hdr5j_categories AS parent
ON cat.lft BETWEEN parent.lft
AND parent.rgt1 × SELECT b.rules
FROM hdr5j_assets AS a
LEFT JOIN hdr5j_assets AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt1 × SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component
FROM hdr5j_menu AS m
LEFT JOIN hdr5j_extensions AS e
ON m.component_id = e.extension_id1 × SELECT b.id
FROM hdr5j_usergroups AS a
LEFT JOIN hdr5j_usergroups AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt1 × SELECT `session_id`
FROM `hdr5j_session`1 × SELECT id, rules
FROM `hdr5j_viewlevels1 × SELECT `enabled`
FROM `hdr5j_extensions`1 × SELECT time
FROM hdr5j_vvisit_counter USE INDEX(time)1 × SELECT `data`
FROM `hdr5j_session`
OTRAS Tablas:
1 × UPDATE `hdr5j_session`
SET `data` = '__default|a:7:{s:15:\"session.counter\";i:1;s:19:\"session.timer.start\";i:1743626868;s:18:\"session.timer.last\";i:1743626868;s:17:\"session.timer.now\";i:1743626868;s:22:\"session.client.browser\";s:103:\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)\";s:8:\"registry\";O:9:\"JRegistry\":1:{s:7:\"\0*\0data\";O:8:\"stdClass\":0:{}}s:4:\"user\";O:5:\"JUser\":25:{s:9:\"\0*\0isRoot\";b:0;s:2:\"id\";i:0;s:4:\"name\";N;s:8:\"username\";N;s:5:\"email\";N;s:8:\"password\";N;s:14:\"password_clear\";s:0:\"\";s:8:\"usertype\";N;s:5:\"block\";N;s:9:\"sendEmail\";i:0;s:12:\"registerDate\";N;s:13:\"lastvisitDate\";N;s:10:\"activation\";N;s:6:\"params\";N;s:6:\"groups\";a:0:{}s:5:\"guest\";i:1;s:13:\"lastResetTime\";N;s:10:\"resetCount\";N;s:10:\"\0*\0_params\";O:9:\"JRegistry\":1:{s:7:\"\0*\0data\";O:8:\"stdClass\":0:{}}s:14:\"\0*\0_authGroups\";a:1:{i:0;i:1;}s:14:\"\0*\0_authLevels\";a:2:{i:0;i:1;i:1;i:1;}s:15:\"\0*\0_authActions\";N;s:12:\"\0*\0_errorMsg\";N;s:10:\"\0*\0_errors\";a:0:{}s:3:\"aid\";i:0;}}' , `time` = '1743626868'1 × UPDATE hdr5j_content
SET hits = hits + 11 × UPDATE hdr5j_vvisit_counter
SET visits=visits+1, bots=bots+11 × INSERT INTO `hdr5j_session` (`session_id`, `client_id`, `time`)
VALUES ('mqb7vt2258n0lte3spa4jdavd1', 0, '1743626868'
