Northern Ireland Historical Institutional Abuse Inquiry

ICO warns of email data breach risk as it issues two reprimands

Retrieved on: 
Wednesday, August 2, 2023
Review, Survivor, Freedom, Executive, Northern Ireland Historical Institutional Abuse Inquiry, Environmental Information Regulations 2004, EIR, Telephone, ICO, Information privacy, Privacy, Data wrangling, Carbon, Patient, HIA, PCC, Executive Office for United States Attorneys, Information, PECR, FOIA, Newsletter, Gender dysphoria, Telecommunications, Freedom of Information Act 2000, United Kingdom, Data Protection Act 1998, Privacy and Electronic Communications (EC Directive) Regulations 2003, Mail, Cryptocurrency

The Information Commissioner’s Office (ICO) has reprimanded two Northern Irish organisations for disclosing people’s information inappropriately via email.

Key Points: 
  • The Information Commissioner’s Office (ICO) has reprimanded two Northern Irish organisations for disclosing people’s information inappropriately via email.
  • Both the Patient and Client Council (PCC) and the Executive Office disclosed recipient details by using inappropriate group email options.
  • Although the body of the email did not contain personal information, the people who received the email could reasonably infer that the other recipients also had experience of gender dysphoria, given their inclusion in the email.
  • - To report a concern to the ICO telephone call our helpline on 0303 123 1113, or go to ico.org.uk/concerns.