More on KentOnline
Confidential medical records have been fly tipped, lost, emailed to the public and even faxed to a vet.
Staff at several trusts have been dismissed for data protection breaches including accessing patients' records without permission, losing notes and sharing details with third parties.
Since 2011, Medway NHS Foundation Trust has recorded 10 breaches, two caused by staff typing in the wrong fax number.
On one occasion, patient information intended for a GP's surgery was faxed to a veterinary practice next door.
Typing the wrong email address also meant a confidential patient report was sent to a random member of the public, who was 'distressed' by the content.
Another time, patient information was dumped by fly tippers. This breach - which involved another unnamed Kent trust - sparked a criminal investigation and was reported to the Information Commissioner and Medway Council.
Sensitive data has gone missing entirely. During an office move, a consultant filled two black bin bags with the contents of their desk, both of which went missing after being left unattended.
The consultant faced disciplinary action for the breach.
Patient information has even been handed freely to a member of the public, who posed as the ex-partner of locum social worker.
This breach is being investigated by the trust and Medway Council.
Medway is not the only trust to breach data protection rules.
Two staff have resigned from Maidstone and Tunbridge Wells Hospital Trust after accidentally sharing patients' personal data, and another has been dismissed for accessing patient records without good reason.
A trust spokesman said: “We take the security of our patient data extremely seriously, thoroughly investigated each of these isolated incidents, and are confident that our systems are robust, safe and secure.
“These were caused by human error, were in no way deliberate, malicious or systemic in nature, and we constantly remind staff about the importance of data security through mandatory annual training.
“We want to reassure our patients that while even one breach is one too many in three years, we safely carry out millions of data transactions annually. Any lessons that needed to be learnt from this small number of incidents have been learnt and the appropriate actions have been taken.”
East Kent Hospital Trust had a total of 13 breaches - the most in the county - including eight instances of staff inappropriately accessing patients' records.
A trust spokesman said: “We have more than 1.2 million patient contacts a year and we have very strict rules to protect patients’ information.
“Confidentiality is part of every member of staff’s employment contract and staff are trained every year in data protection. We remind staff regularly of the importance of confidentiality through newsletters and posters.
“We also check access to patient records so we can make sure they are not being accessed inappropriately.”
Medway dubbed worst hospital in the country
The breaches have been revealed in a report published by Big Brother Watch, an organisation that aims to protect privacy.
The report is based on a Freedom of Information request to health services in England.
Dartford and Gravesham Hospital Trust failed to respond either to the initial information request or when approached by KentOnline.
Medway Hospital Trust was also contacted by KentOnline but did not respond.
Stories you might have missed
Crooked daughter hid mum's death to inherit estate
Firm leads charge in avoiding crossing fines
Rapist 'took advantage of woman’s frailty'