Wed, 25 Jan, 2023 - 17:36

HSE employee seeks to compel DPC to investigate alleged work phone data breach

Fire prevention officer Eamon McShane, of Burtonport, Co Donegal, claims his personal email account and “Binance” account were hacked, with some €1,400 worth of cryptocurrency stolen
HSE employee seeks to compel DPC to investigate alleged work phone data breach

High Court reporters

A HSE employee wants the court to compel the Data Protection Commission (DPC) to investigate his complaint that personal data on his work mobile phone was accessed as part of the 2021 cyberattack on the health service's computer system.

Fire prevention officer Eamon McShane, of Burtonport, Co Donegal, claims his personal email account and “Binance” account were hacked, with some €1,400 worth of cryptocurrency stolen.

In High Court documents, Mr McShane alleges he discovered this hack about a month after the HSE’s systems suffered a system-wide ransomware attack in May 2021. He believes his work phone was the source of the hack and, thus, had been affected by the HSE attack.

His work phone contained work-related personal data, as well as personal data unrelated to work, such as his personal emails.

Mr McShane claims his complaint was dismissed last May by the DPC, which held that the HSE was not a “data controller” under the General Data Protection Regulation (GDPR). His attempt to appeal was also rejected.

He alleges the DPC erred in law by not finding the HSE was a data controller that processed his personal data. The decision, he says, was “unreasonable” and constitutes a breach of his right to respect for private and family rights.

He is asking the court to quash the DPC’s decision to dismiss his complaint and to compel it to investigate.

Mr Justice Charles Meenan was this week asked to give permission for the case to proceed through the High Court.

The judge said he struggled to find arguable grounds in the case, which came before him ex parte (only the plaintiff was represented). He ordered Mr McShane’s legal team to notify the DPC and HSE of the action and adjourned the application for leave.



More in this section

Graham Dwyer case 'How many more people have to die?' asks widower of woman hit by delivery van
Former football coach’s Belfast business venture announces 75 new jobs Former football coach’s Belfast business venture announces 75 new jobs
Targeted youth mental health support must stand apart from wellbeing help – Esri Targeted youth mental health support must stand apart from wellbeing help – Esri
High CourtHSEhackCryptocurrencyData Protection Commissionpersonal email
City stock - Leicester

Nando's eyes up potential sites for further expansion as profits rise to €7.7m

READ NOW

Sponsored Content

Turning risk into reward: Top business risks in 2026 Turning risk into reward: Top business risks in 2026
Top tips to protect Ireland's plant health Top tips to protect Ireland's plant health
River Boyne in County Meath, Ireland. Water matters: protecting Ireland’s most precious resource

Latest

EL car logoThe Echo logo
The Echo paper

DELIVERED TO YOUR HOME FOR FREE

FREE HOME DELIVERY SERVICE

The Echo paper
SIGN UP TODAY
Contact Us Cookie Policy Privacy Policy Terms and Conditions

© Examiner Echo Group Limited

Add Echolive.ie to your home screen - easy access to Cork news, views, sport and more