NHS Bournemouth and Poole patients' privacy breached
Thousands of patients have had their privacy breached after NHS Bournemouth and Poole gave their personal information to a private company.
The primary care trust passed on contact details of 3,700 people to Enhanced Care Service, which called and asked them to attend a health check.
However patients were not asked for their permission to share the data.
The Information Commissioner's Office (ICO) has said the trust breached the Data Protection Act.
A trust spokeswoman said they would be writing to the affected patients to apologise.
'Coach and horse'
She said: "We accept that we should have asked permission first before sending out their contact details."
Chris Skone-Roberts was among the patients whose contact details were shared.
He said: "The PCT have driven a coach and horse through the Data Protection Act.
"All they have got is a rap on the knuckles.
"I don't see why they should be able to break people's rights and get away with it."
The ICO said no further action would be taken against the trust.
"However details of the complaint have been kept on record and may be reopened if we receive any further complaints about the organisation in the future," a spokesman added.