UK Government announce third data breach this month

The UK Government has again exposed a number of private emails when sending a press release relating to data protection laws.

The Department for Digital, Culture, Media and Sport (DCMS) exposed the emails of around 300 journalists on Wednesday afternoon following the news release of the UK introduction of porn age-checks coming into effect this year.

The DCMS was the Government department responsible for managing the introduction of the General Data Protection Regulation (GDPR) into UK law last May.

In the email seen by the BBC, the DCMS said the new laws would provide “robust data protection conditions”

And added that the: “Government has listened carefully to privacy concerns.”

However, the email had also included the email addresses of those journalists into the Carbon Copy (CC) section where the email addresses would have been visible to all recipients opposed to the Blind Carbon Copy (BCC) which would have prevented the breach.

A DCMS Spokesperson has commented on the incident stating:

“DCMS takes data privacy extremely seriously and we apologise to those affected.”

This comes as the third major data breach announcement from the UK Government this month with the Home Office announcing two separate breaches relating to the Windrush Compensation Programme.


PrivSec Conferences will bring together leading speakers and experts from privacy and security to deliver compelling content via solo presentations, panel discussions, debates, roundtables and workshops.

For more information on upcoming events, visit the website.

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.

Privacy Culture: Data Privacy and Information Security Consulting, Culture & Behaviour, Training, and GDPR maturity, covered. https://www.privacyculture.com/