Personal and sensitive data of 6,574 Blackpool NHS employees posted online
"Sensitive data for 6,574 employees (past and present) of Blackpool Teaching Hospitals NHS Foundation Trust has been inadvertently posted online."
Our Data Leak Lawyers have initiated investigations and anyone affected is free to contact us for help and advice.
The discovery of the breach
The breach was discovered by an employee who was trying to replicate the format of the excel document posted online. The employee inadvertently double clicked on a pivot table which opened up the associated data for the 'protected groups' and 'equality pay bands.'
The data was uploaded to the website on 4th March 2014 and the breach was discovered on 30th January 2015 - meaning the data was available for almost a year.
The data leaked was volunteered by staff as part of NHS duties for publishing metrics on equality and diversity. The data included:
- National Insurance numbers
- Dates of birth
- Religious beliefs
- Sexual orientation
Individually this data is subject to legislation that protects from unauthorised disclosure, but much of the data (as you can see) is extremely personal and very sensitive, and therefore highly confidential.
The extent of the breach
The breach affects 6,574 past and present employees for Blackpool NHS Trust.
The pivot data has been accessed 59 times and downloaded 20 times, with several of those who downloaded the data classed as "persons unknown." The alarming truth is that we may never know just how far and wide the data has been leaked; so the damage is done, which is a real concern for us.
£185,000.00 fine for a "serious" unauthorised disclosure
This is certainly one of the more serious cases of unauthorised disclosure we have seen here in the UK. The scale of the breach affects thousands of current and former NHS employees and involves highly sensitive information.
Investigations with the Information Commissioners Office (ICO) resulted in a fine of £185,000.00 after it found that the Trust had overlooked the need to have robust procedures in place for "no good reason."
It was discovered that staff handling the data had no idea that the information could still be accessed which stems from a fundamental lack of guidance at an organisational level.
Have you been affected?
Blackpool Teaching Hospitals NHS Foundation Trust has a legal obligation to inform you. They should therefore have already contacted you or be in the process of contacting you to advise if your information has been affected by the breach, and if so, what information was made accessible.
In a word from our team:
"It goes without saying, but this is a very serious breach. The nature of the information that's been made available is extremely sensitive.
This is a huge breach. We're concerned that the lack of organisational guidance and lack of proper systems to safeguard personal data seen in this case will arise again and again. We act for individuals and groups who have been affected by very similar leaks and it won't stop until more is done to protect our personal data.
This isn't the first time this has happened, and we doubt it will be the last."
Our lawyers help thousands of people claim the compensation they deserve - and we can help you too.
Our specialised Data Leak Lawyers are helping people claim for data leak compensation right now in singular actions and large group actions for organisational breaches like the one here.
Request a call back from our team
Fill out our quick call back form below and we'll contact you when you're ready to talk to us. All fields marked with a * are required.
Latest Blogs from The Data Leak Lawyers
"On a scale of 1 to 10 in terms of risks to consumers, this is a 10" - says fraud analyst, Avivah Litan on the Equifax data h...Nov 17, 2017
Equifax have faced heavy criticism for a series of failings around the data breach that exposed over 145 million people's per...Nov 16, 2017
A 'nosy' midwife has been sacked by the University Hospitals of Coventry and Warwickshire NHS Trust after she was discovered ...Nov 15, 2017
Confidential and secretive information for Heathrow Airport was reportedly found on a USB device some 13 miles from the site ...Nov 14, 2017
Australian appliance-rental company, Amazing Rentals, are in trouble with Australian authorities yet again for behaviour that...Nov 13, 2017
Security experts warn that all Wi-Fi networks are vulnerable to hacking after a Belgian researcher managed to break through a...Nov 10, 2017
Head of policy and engagement at the Information Commissioner's Office, Jo Pedder, points to useful guidance on the new EU Ge...Nov 09, 2017