In this section we discuss the threats to the security of personal health information that arise from computerisation and in particular from connecting together the many practice and hospital computers on which clinical records are currently stored. Firstly we review the security goals, then we consider what is likely to go wrong, and finally we set out our protection priorities.