UK employee data breach notifications reach seven-year high amid hybrid work risks
Summary
Hide ▲
Show ▼
The UK Information Commissioner’s Office (ICO) received 3,872 employee data breach reports in 2025, the highest annual total in at least seven years, representing a 5% increase year-over-year and a 29% rise since 2019. Non-cyber breach incidents surged by 15% to 2,304, while cyber-related breaches declined by 6% to 1,568, highlighting persistent vulnerabilities tied to hybrid work environments. Sensitive employee information—including HR records, payroll data, disciplinary files, medical records, and identity documents—is increasingly exposed through physical and procedural failures rather than technical compromises. Employers face escalating liability risks as employees retain rights to claim stress or anxiety damages from accidental breaches, intensifying the need for coordinated HR-security governance and practical training aligned with hybrid work realities.
Timeline
-
31.03.2026 13:01 1 articles · 4h ago
Employee data breach notifications to ICO peak at seven-year high in 2025
The ICO received 3,872 employee data breach reports in 2025, the highest annual total since at least 2019. Non-cyber incidents rose 15% to 2,304, outpacing a 6% decline in cyber-related breaches to 1,568. The increase reflects persistent vulnerabilities in hybrid work environments, including physical data handling and procedural failures.
Show sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01
Information Snippets
-
The ICO recorded 3,872 employee data breach reports in 2025, marking the highest level since at least 2019 and a 5% increase from 2024.
First reported: 31.03.2026 13:011 source, 1 articleShow sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01
-
Non-cyber breach incidents rose 15% year-over-year to 2,304 in 2025, while cyber-related breaches fell 6% to 1,568.
First reported: 31.03.2026 13:011 source, 1 articleShow sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01
-
The 2025 breach total is 29% higher than the 3,010 reported incidents in 2019, the first year of ICO’s public breach statistics for this category.
First reported: 31.03.2026 13:011 source, 1 articleShow sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01
-
Common non-cyber breach vectors include lost or stolen devices, insecure handling of paperwork, misdirected communications, and improper disposal of printed documents.
First reported: 31.03.2026 13:011 source, 1 articleShow sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01
-
Hybrid work environments are cited as a primary driver for the shift toward non-cyber breaches due to unsecured data flows between home and office.
First reported: 31.03.2026 13:011 source, 1 articleShow sources
- Employee Data Breaches Surge to Seven-Year High — www.infosecurity-magazine.com — 31.03.2026 13:01