Legal help for data breach compensation claims

NHS data breach hits 150,000 patients

Posted by Matthew on July 31, 2018 in the following categories: Claims Healthcare Latest and tagged with | |

massive nhs breach

An NHS data breach hit 150,000 after an IT glitch failed to record the wishes of patients who had opted-out of their medical data being used for research and auditing.

We’ve already accepted a number of cases for patients who have been affected by the huge NHS data breach. We are taking forward claims for data breach compensation for anyone who has received notification that they have been affected by the breach.

With 150,000 patients affected by the issue, this is a huge breach with the potential for GDPR implications to be imposed.

How the NHS data breach happened

The NHS data breach was caused by a coding error that resulted in the software used by GPs to record objections for patient data being used for research and auditing not being passed on to NHS England’s IT provider.

An error with the software at the heart of the breach, known as SystemOne, meant that patient objections to use of their personal and sensitive medical data was not referred. As a result, patients who had specifically opted out for their data being used in such a way have potentially had their data misused.

Given that medical records are often very personal and sensitive, there’s a very good reason as to why patients are allowed to opt-out of their data being used in such a way. Unfortunately, the coding error means the wishes of some patients who had opted-out has not been honoured.

What this means for patients hit by the NHS data breach

The NHS has confirmed that patients hit by the massive NHS data breach will be contacted by letter to inform them that they have been affected. A number of victims have already approached us for help having received notification that their opt-out decision has not been properly recorded as a result of the error.

Although the developer of the system, TPP, “apologises unreservedly” for what has happened, the medical data may already have been passed on against the specific wishes of the patients.

NHS data breaches are unfortunately common

NHS data breaches are unfortunately common, with the healthcare sector continually leading the way when it comes to number of breaches committed. The fact that the data breached in these scenarios is incredibly personal and sensitive medical data often means the impact of the breach for the victims can be serious.

With experiencing fighting for the rights of victims of well-known NHS data breaches, like the 56 Dean Street Clinic breach of 2015, and large-scale cyberattacks like the WannaCry attack of last year almost bringing the NHS to its knees, it’s clear to us that more still needs to be done to protect patients from falling victim to NHS data breaches.

One simple coding error can cost lives. We saw this with the recent NHS Breast Cancer Screening scandal where a coding error resulted in a large volume of women not receiving their invitation for life-saving breast cancer screening.

Victims of the NHS data breach can contact us for help

Victims of the NHS data breach are welcome to contact us for help by calling the team on 0800 634 75 75 or completing a form below.

We have already accepted a number of cases on a No Win, No Fee basis. If you have been affected, we may be able to help you.

Request a call back from our team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
All fields marked with a * are required.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy.
You have the right to object to the processing of your personal data.


2017 saw 2.7 BILLIION data records compromised
Is mobile phone data protection lagging behind?
%d bloggers like this: