A data breach involving Cornwall Council has come to light after personal details of complainants were inadvertently shared with a local councillor. Dulcie Tudor, an independent councillor for the Threemilestone and Chacewater area, publicly criticized the council’s handling of sensitive information.
Incident Overview
The breach occurred following a series of complaints against Cllr Tudor regarding comments she made during a council meeting in November. These comments pertained to the UK Supreme Court’s ruling in April 2025, which defined a woman based on biological sex. This ruling was part of a broader debate about the inclusion of transgender women in legal definitions and protections.
Details of the Breach
Cllr Tudor received ten complaints, but the council mistakenly shared the personal details of all complainants, including names, home addresses, email addresses, and phone numbers, despite four complainants opting to redact their names. The council’s process typically allows for complainant anonymity unless explicit consent is given to share their information.
Reactions and Consequences
Cllr Tudor expressed her concern over the breach, stating, “It’s crazy. I shouldn’t know that.” She highlighted that the information provided could potentially identify complainants as council officers or elected councillors. Following the incident, she took steps to inform the Information Commissioner’s Office (ICO) on behalf of the complainants.
Council’s Response
As of the latest updates, Cornwall Council has not clarified how the breach occurred or whether the complainants were notified about the incident. Cllr Tudor reported that the council claimed no wrongdoing occurred, asserting that the complainants’ personal information was redacted when sent to her. However, she pointed out that the information became visible when she opened the files.
The situation underscores the critical importance of data protection protocols, particularly in handling sensitive information related to complaints. The council’s failure to maintain confidentiality raises significant concerns about compliance with data protection regulations.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
