The Information Commissioner’s Office (ICO) in the UK is currently investigating an alleged breach of Princess Kate Middleton’s medical records at the London Clinic. This investigation has brought attention to an earlier probe conducted by the Care Quality Commission (CQC) in 2021, which found that while patient records were securely stored at the prestigious hospital, medical professionals had easy access to them.
The CQC investigation was prompted by concerns about the safety and quality of services at the hospital, including reports of “never events” and serious incidents, as well as whistleblowers raising issues regarding staffing and culture.
The alleged breach occurred shortly after Kate Middleton’s discharge from the hospital in January, following abdominal surgery. Since then, she has kept a low profile, sparking speculation about her health on social media.
Three staff members have been questioned as part of the ongoing investigation, with Time Magazine reporting that accessing private medical records without permission from the data controller can be a criminal offense in the UK. In a similar case in 2023, the ICO prosecuted a medical secretary for accessing records without consent.
London Clinic’s CEO, Al Russell, stated that there is “no place” at their hospital for those who breach patient trust intentionally. He emphasized that they have systems in place to monitor patient information management and will take appropriate investigatory, regulatory, and disciplinary action in case of any breaches.
ITV reported that the records of King Charles III, who also received treatment at the London Clinic in January, were not affected by the breach.