The Electronic Patient Dossier (EPD) has security holes. As a result, break-ins into the healthcare information systems or the National Healthcare Information Hub (Landelijk SchakelPunt, LSP) are not taken into account sufficiently.

Moreover, the authorization doctors give to their employees to access the EPD in their name can be easily abused to gain access to dossiers. These are the findings of the research by Guido van ‘t Noordende, computer scientist at the University of Amsterdam's Faculty of Science (FNWI). As a result of this first large-scale scientific study of the EPD security architecture, it has emerged that the security - and therefore confidentiality and privacy - of patient details in the EPD are not adequately safeguarded.

For further details in English about Van ‘t Noordende's research please see the links below.