The UK’s National Health Service (NHS) Direct has mistakenly disclosed personal patient information by emailing data to unintended recipients, according to the organisation’s 2008–09 annual report.

The NHS advice service emailed names, addresses, NHS numbers, dates of birth and clinical data of about 100 patients to three unintended recipients working in the NHS in October 2008, reports.

The staff addressed the issue promptly and prevented the information from reaching the public domain.

The incident was reported to the Information Commissioner, NHS Direct said.