Advertisement

King’s medical records not accessed in alleged Kate data breach at London Clinic

The King’s personal data was not compromised during the alleged data breach at the London Clinic, it is understood.

According to The Mirror, up to three people could have been involved in the alleged accessing of the Princess of Wales’s private medical records after Kate was discharged from hospital on January 29.

Charles, who is undergoing treatment for a form of cancer, also spent three nights at the London Clinic during the same month receiving medical care following treatment for an enlarged prostate .

The King and Kate were separately discharged from the clinic just hours apart on January 29.

The PA news agency understands that Charles’s medical records were not accessed in the alleged breach.

On Wednesday, the London Clinic vowed that “all appropriate investigatory, regulatory and disciplinary steps will be taken” over any breach.

Princess of Wales surgery
Attempts were made to access the Princess of Wales’s records, it is reported (Kirsty Wigglesworth/PA)

In a statement, chief executive of the London Clinic Al Russell said: “There is no place at our hospital for those who intentionally breach the trust of any of our patients or colleagues.”

The UK’s privacy watchdog, the Information Commissioner’s Office (ICO), is looking into the alleged royal data breach at the private hospital where Kate had abdominal surgery and is in the process of assessing the information.

According to The Mirror, an investigation was launched at the clinic, where Kate spent 13 nights in January, after staff tried to access Kate’s medical notes.

The princess was admitted to the private hospital for abdominal surgery on January 16.

Details of Kate’s condition have not been disclosed but Kensington Palace previously said it was not cancer-related and that the princess wished for her personal medical information to remain private.

Maria Caulfield
Maria Caulfield said police had been asked to look at the claims (Chris McAndrew/UK Parliament/PA)

Under the Data Protection Act 2018, it is an offence for a person to obtain, disclose or retain personal data without the consent of the data controller.

The ICO can carry out criminal investigations and prosecute individuals where it believes an offence may have been committed.

Usually, an assessment of the breach report will be carried out by its Criminal Investigation Team, who will decide whether to proceed in accordance with the Regulatory Action Policy.

This decision includes looking at whether there is sufficient evidence to support a prosecution and whether it is in the public interest to do so.

Kate has the option of bringing a private prosecution with a civil action, and also potentially claiming compensation.

The police have powers to investigate and they do bring prosecutions under the Data Protection Act, normally when other offences are prosecuted at the same time.

Health minister Maria Caulfield said police have “been asked to look at” whether staff at the clinic attempted to access the princess’s medical records.

She said there could be “hefty implications” for accessing the notes without permission, including prosecution or fines.

Ms Caulfield said her understanding was that police had been contacted, although a Metropolitan Police spokesman said he was not aware of any referral to the force.