A former healthcare worker made attempts to sell Princess Kate’s private medical records. The records were related to her abdominal surgery at a high-profile private clinic attended by the royal family, according to a statement from the Information Commissioners Office (ICO).
The individual was employed at the London Clinic when the data breach was initially discovered in March 2024. This occurred while Kate was secretly receiving treatment for cancer.
The ICO, the UK’s authority on privacy and data protection, shared the results of its criminal investigation. In an online statement, it said: “The ICO issued a formal caution to a former healthcare professional from London. This was due to an offence under section 170(5) of the Data Protection Act 2018.”
The ICO’s statement continued, “The conduct involved deliberate misuse of highly sensitive personal information. The information was offered for sale for financial gain, clearly breaching trust.”
The ICO evaluates the evidence and public interest in all criminal cases. In this case, they determined a formal caution was a suitable and proportionate response.
This is an ongoing story and will be updated as more information becomes available.