Health board leaked personal data of likely HIV patients

NHS Highland has been reprimanded by the Information Commissioner’s Office (ICO) over a data breach in which the personal email addresses of HIV service users were visible to recipients of an email due to a misuse of carbon copy (CC). The healthcare provider was not fined but was urged to raise data protections standards. The misuse of CC is consistently in the top 10 non-cyber breaches.