Exam Pass Notes

Use these notes to revise the practical points from the course. Most confidentiality failures in pharmacy arise from everyday slips rather than major cyberattacks.

Core things to remember

• Confidentiality includes spoken, printed, and electronic information: it covers conversations, paper notes, emails and digital records.
• Much pharmacy information is special category data: health information requires additional safeguards under data protection law.
• Only use information for a real work need: never access records out of curiosity, convenience or gossip.
• Use the minimum necessary: disclose only the information required for the task, whether speaking, printing, texting, emailing or delivering.
• Privacy must be protected actively: take steps to keep consultations private at the counter, during sensitive services, and when family or friends are present.
• Role-based access matters: do not share logins, do not borrow Smartcards, and do not access information beyond your authorisation or competence.
• Email, text, phone, delivery, and AI-prompt mistakes are common breach routes: verify identity, minimise the data sent, and use approved systems and SOPs.
• Secure records and destroy them properly: use confidential waste, maintain clear desks, and follow secure IT disposal procedures.
• If a breach happens: contain it, escalate it, log it and do not conceal it.

A simple memory aid

• Check who needs to know
• Keep it private
• Use only what is necessary
• Secure the record or message
• Report mistakes quickly