Frequently asked questions

How Could A Medical Data Breach Happen?

A medical data breach can happen in various ways, including through human error or a cyber security incident. For instance:

Human error: This might occur if a physical copy of your medical records is left unattended on a reception desk, allowing an unauthorised individual to access sensitive information about your health and treatments. Another example is if your medical records are misplaced by your GP during an office relocation.

Cyber security incident: A breach can also happen if an organisation does not implement sufficient online security measures, leading to a ransomware attack where multiple patients' medical files are stolen.

Are Medical Data Breaches Common?

As experts in data breach compensation claims, we also conduct our own research to gauge the frequency of personal data breaches.

Recently, we investigated the incidence of data breaches within the NHS by submitting a Freedom of Information request to NHS Resolution.

What Should I Do If I Suffer A Medical Data Breach?

If a medical data breach occurs that could jeopardise your rights or freedoms, the organisation responsible must notify you without undue delay and report the breach to the Information Commissioner’s Office (ICO) within 72 hours.

If you suspect a breach has happened but the organisation has not confirmed it, you can file a complaint with them. If they do not respond within three months or if their response is inadequate, you may escalate your complaint to the ICO.

Documenting your communications with the organisation or the ICO can support a compensation claim. This includes obtaining confirmation of the breach or any correspondence that demonstrates the organisation's failings led to the breach.

How Can I Contact ?

Call us for confidential discussion on your case +44 20 3289 8477.