Islington Council has been fined £70,000 by the UK’s privacy watchdog for leaking sensitive data of residents, including information on their mental heath and their housing needs.
The data, which also noted if residents had been a victim of domestic abuse, was leaked after a freedom of information request was made through the What Do They Know (WDTK) website, which publishes responses for all to see online.
When Islington Council uploaded information in late June related to the work of the authorities’ Housing Performance Team, they also published sensitive data related to 2,375 residents in an Excel document.
The data remained on the site for over two weeks, even though the council had been told about the issue early on, until the mistake was spotted by a site admin, according to the Information Commissioner’s Office (ICO).
“This mistake not only placed sensitive personal information relating to residents at risk, but also the highlighted the lack of training and expertise within the council,” said ICO head of enforcement, Stephen Eckersley.
“Councils are trusted with sensitive personal information, and residents are right to expect it to be handled in a proper way. Unfortunately, in this case that did not happen, and Islington Council must now explain to residents how it will stop these mistakes being repeated.
The council has accepted the fine. An Islington Council spokesman added: “We remain extremely sorry for the upset and worry this disclosure may have caused to some people. The council carried out a thorough investigation when this disclosure came to light, and we have since put in place more rigorous checks.
“The person who released the data did not have sufficient knowledge of spreadsheets to recognise the error or to put it right.”
What do you know about Internet security? Find out with our quiz!
US widening lead over China on AI development, as UK places third in Stanford index…
Amazon to invest a further $4bn into AI start-up Anthropic, doubling its investment as it…
The demand for tech skills is surging, driving economic growth but revealing challenges. Financial costs,…
US Supreme Court tosses Meta's appeal over Cambridge Analytica-linked investor lawsuit, meaning case must proceed
Uber reportedly seeks $10m stake in Chinese autonomous driving firm Pony AI via US IPO,…
iPhone maker reportedly developing next-generation AI large language model for Siri for spring 2026 as…
View Comments
Fining a council is just sheer stupidity, effectively its fining the victims as they have to pay it via their taxes.
Any fine on a public body should be paid by those responsible for the wrong doing. If they can't be identified then it should fall on the CEO or equivalent as its their ultimate responsibility.