Info Gov

Eleven members of staff have been dismissed by Nottingham University Hospitals NHS Trust for inappropriately accessing the medical records of the Nottingham attack victims.

The Trust today (21 May) confirmed that 11 members of staff have been dismissed, with actions being taken against another 14, as part of their investigation into the inappropriate access of the medical records of Ian Coates, Grace O'Malley- Kumar and Barnaby Webber.

The three victims were stabbed to death on 13 June 2023 by Valdo Calocane, who was diagnosed with paranoid schizophrenia in 2020.

Staff included in the investigations were doctors, nurses, registered medical professionals and admin and clerical colleagues.   

The Trust noted that follow-up activity will now take place with relevant independent regulators, such as the Nursing and Midwifery Council and General Medical Council. 

It added that it has informed the Information Commissioner’s Office (ICO) and Nottinghamshire Police.   

Dr Manjeet Shehmar, Medical Director at Nottingham University Hospitals NHS Trust, said: “The families of Ian, Grace and Barnaby have had to endure much pain and heartache, and I am truly sorry that the actions of some of our staff have added to that.  

"To access the medical records of our patients without a legitimate reason is totally unacceptable and we are doing all we can to identify where and how that has happened. I hope that the families, staff and our communities feel reassured by the outcomes so far, that we are taking this seriously and will continue to do so.  

“We know that the vast majority of our staff understand that appropriate access is a fundamental principle of our duty of care and know that it is essential that access to patient records is lawful, justified, and directly related to their role. By accessing records inappropriately, staff are damaging the valuable contributions made by those colleagues providing care for those patients. In those cases where it does  happen, I hope that this is a very clear reminder that we will take appropriate action.”

Further investigations are ongoing into inappropriate access, including into the files of surviving victims, including Wayne Birkett, Sharon Miller and Marcin Gawronski.

Dr Manjeet Shehmar will be giving evidence in May 2026 on the investigations at the Nottingham Inquiry - the ongoing public inquiry into the attacks in June 2023.

Lottie Winson

Also in this section

Jul 16, 2026

Scattered Spider pair jailed over TfL hack

Two members of the Scattered Spider hacking collective have each been jailed for five and a half years at Woolwich Crown Court on 16 July over a 2024 cyber attack on Transport for London that compromised the personal data of millions of customers and cost the transport authority £39 million.
Jul 15, 2026

Government introduces mandatory data breach reporting protocol

The Cabinet Office has published a Model Action Plan setting out a single cross-government framework that all departments and arms-length bodies must follow when responding to significant personal data breaches, introducing mandatory central reporting of such incidents for the first time.
Jun 29, 2026

"Five eyes" warn on accelerating cyber security threat from AI

The National Cyber Security has called on organisational leaders to treat cyber resilience as a core business and governance responsibility rather than a technical matter in the light of a report by the Five Eyes intelligence alliance on the "fundamental" impact of AI on the speed and scale of cyber threats.
Jun 15, 2026

Government AI hackathons uncover 407 vulnerabilities across nine departments, including critical remote code execution flaw

A pilot programme using frontier AI models to scan public-sector code repositories has identified 407 security findings across nine government organisations, including a critical vulnerability that could have allowed an external attacker to execute arbitrary code on a key digital service, the Department for Science, Innovation and Technology (DSIT) and the National Cyber Security Centre (NCSC)…

InfoGov Masthead Newsletter 800