Reading:
Blackpool NHS Fined £185,000 for serious Data Protection Breach
Share:

Data Leak Lawyers - Begin Your Data Breach Claim Today!

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

Blackpool NHS Fined £185,000 for serious Data Protection Breach

Personal and sensitive data of thousands of employees working for Blackpool Teaching Hospitals NHS Foundation Trust was inadvertently posted online.

The discovery was made on 30th January 2015 and reportedly affects more than 6,500 employees when a spreadsheet containing highly confidential information was published online back in March 2014.

The data included names, national insurance numbers, birth dates, religious beliefs, pay scales, disability statuses, ethnicity, and sexual orientation.

This is a serious breach of data protection and one of the worst we have ever seen here in the UK.

The information was volunteered by staff as part of equality and diversity metrics, but the data was of course supposed to be confidential. Spreadsheets were uploaded online, and a member of staff, who was looking to replicate the format of the tables, inadvertently double clicked on a pivot table which opened up the associated data to the ‘protected groups’ and ‘equality pay bands’ spreadsheet which were freely accessible.

Following investigations it has been revealed that the data has been accessed almost 60 times and downloaded 20 times with at least some of those who downloaded the data classed as “persons unknown.” There is therefore absolutely no way of knowing for sure who has the data now, and the result of this terrible and significant mistake is a serious and extensive leak of personal information.

A serious breach

This is a serious breach that affects 6,574 current and former employees and includes highly sensitive and confidential data made available to anyone with access to the internet.

We know from previous breaches we have been involved in that such personal data can be used for fraud, as well as the mere fact that a lot of the data is extremely sensitive. The repercussions of this leak are set to be huge and our lawyers have started investigations in response.

More must be done

This is not the first time we have had to investigate serious breaches in the public sector, and this breach itself is an alarming one. Investigations with the Information Commissioners Office (ICO) found that the team handling the data had no idea that the hidden information could still be accessed.  It was also found that training was not provided and there was no guidance in place to check whether hidden data could still be made available.

At the end of the day this breach has stemmed from a very simple error that has arisen from a lack of knowledge in the use of data on excel spreadsheets. Given the nature of the data that has been leaked, there is simply no excuse for this happening.

In a word from our team:

“We have the tools and guidance necessary to abide by legislation, yet time and time again organisations fail to adhere to their duties. These simple errors that end up being hugely costly need to be ironed out – these breaches are happening almost continually nowadays.”

Have you been affected?

You are entitled to claim for compensation as a victim of the Blackpool NHS breach so please contact us if you would like any advice.

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy
SRA
Contact
www.dataleaklawyers.co.uk is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon