The Information Commissioner’s Office (ICO) said the council had breached the Data Protection Act when it sent a letter about the child to the biological mother, mistakenly including the address of the parents who had adopted the youngster. The mother then passed this information on to her parents as they wanted contact with their grandchild. They later wrote to the adoptive parents asking to visit.
According to reports, the employee who sent the letter believed checks had already taken place to establish whether the information was confidential.
The breach had occurred, the ICO concluded, because the council had no clear policy or process for checking such correspondence and had not provided its staff with sufficient training.
Halton Borough Council has since changed its policies.
Photo by Judy van der Velden via Flickr under a Creative Commons licence