Ex-staffer sues UK's DWP, claims superior blabbed confidential medical info

Manchester man seeks £50k damages for alleged data leak

By Rebecca Hill

Posted in Policy, 26th January 2018 12:06 GMT

A Manchester man is suing his former employer, the UK's largest government department, claiming "highly private" information was divulged to his workmates.

Aftab Marchant is reportedly seeking £50,000 in damages from the Department for Work and Pensions (DWP) for distress and personal injury caused by what he describes as a breach of data protection and privacy laws.

Marchant, who worked in a DWP contact centre in Manchester, alleges that a superior sent an email containing sensitive medical information – which he had asked to remain private – to a colleague, with 10 others copied in.

According to the Manchester Evening News, Marchant only discovered the leak when returned to work from a period of annual leave and a colleague mentioned it to him.

Marchant's counsel, Nick McAleenan, a partner and data privacy law specialist at JMW Solicitors, told the paper: "This case concerns a serious breach of confidentiality and misuse of our client's private and very personal information.

"Our client was devastated that extremely private and confidential information relating to him and his family was disclosed without his consent."

The former staffer holds the DWP liable for the conduct of its employee, and is claiming for distress and anxiety caused by the leak, saying the "breach and its impact were an absolute nightmare".

He has also claimed that it is a breach of the Data Protection Act and privacy and confidentiality laws.

The Evening News reported that the Information Commissioner's Office has been told about the incident.

A DWP spokesperson said: "We cannot comment on an ongoing legal case. We take complaints seriously and have a rigorous process in place to handle them." ®

Sign up to our NewsletterGet IT in your inbox daily


More from The Register

UK.gov's Brexiteers warned not to push for divergence on data protection laws

As PM lacks specifics on UK’s desired ‘adequacy-plus’ deal

Uber hack: EU data protection bods launch taskforce

Justice commissioner slams biz for 'irresponsible' behaviour

Big tech wants the ICO on EU data protection board in Brexit fallout

Watchdog keeping voting rights 'huge gain' for marketing sector, say Facebook, Google et al

Austrian privacy chief handed leash to EU's data protection beast

Group warms up for greater powers once GDPR hits

Don't sweat Brexit, big biz told: Your shiny data protection sticker will remain intact

Survey reveals GDPR training and investment is on the rise

UK.gov: Snoop laws not 'significant' obstacle to EU data protection talks

Digi minister confident of adequacy decision post-Brexit

Dell EMC patches 3 zero-days in Data Protection Suite

Could combine to 'fully compromise' virtual appliance, researchers warn

Facebook smartmobe app's pre-ticked privacy settings violate German data protection law

Court favours consumer group in long-running dispute

EU's data protection bods join the party to investigate Uber breach

UK.gov told to sever ties with 'grubby, unethical' company

UK Data Protection Bill tweaked to protect security researchers

Re-identification of data will not be a crime, as long as you warn the authorities