Breach details
| What | Inappropriate disclosure of sensitive personal information. |
| How much | One record. |
| When | April 2011 |
| Why | An email containing sensitive personal information relating to an individual of concern to the police was distributed to 180 unintended recipients, due to mistaken forwarding of the email, following errors of communication in the “Potentially Dangerous Person Unit”. |
Regulatory action
| Regulator | ICO | Action | Monetary penalty of £ 80,000 |
| When | 15 February 2012 |
Why the regulator acted
| Breach of act | Sensitive email mistakenly forwarded to over 180 recipients. Inappropriate organisational and technical measures. |
| Known or should have known | Staff were aware of the sensitivity of their work by its very definition, yet an assistant officer had not received any data protection training. |
| Likely to cause damage or distress | Details could jeopardise the data subject’s livelihood. |
Links
| View PDF of the Cheshire East Council Monetary Penalty Notice (Breach Watch Archive) |
| View PDF of the Cheshire East Council Monetary Penalty Notice (Via ICO Website) |