Barts Health NHS Trust has initiated legal proceedings, seeking a High Court injunction following a data breach involving its Oracle E-Business Suite (EBS) system. The trust identified unauthorized access to this critical system, which manages essential operational functions.

Unauthorized Access to Key Systems

The incident centered on Barts Health’s Oracle E-Business Suite, a comprehensive application suite responsible for critical administrative functions. These include the trust’s finance, procurement, and human resources operations. The unauthorized access resulted in the compromise of sensitive information stored within the system.

Following the discovery of the breach, Barts Health took immediate action to mitigate potential harm. The trust confirmed that the data compromised included information pertaining to both patients and staff. The decision to seek a High Court ban is aimed at preventing the individuals responsible for the breach from further sharing, publishing, or misusing the stolen data.

Trust Response and Regulatory Reporting

In line with established data protection protocols and regulatory mandates, Barts Health reported the data breach to the appropriate authorities. These notifications were made to the Information Commissioner’s Office (ICO), which serves as the UK’s independent authority for upholding information rights, and NHS Digital, the national information and technology partner for the health and social care system.

The High Court action underscores the seriousness with which Barts Health is addressing the unauthorized access and the potential implications for patient and staff data. The injunction seeks to provide legal protection against the further dissemination and misuse of the compromised information.