BAILII is celebrating 24 years of free online access to the law! Would you consider making a contribution?
No donation is too small. If every visitor before 31 December gives just £1, it will have a significant impact on BAILII's ability to continue providing free access to the law.
Thank you very much for your support!
[Home] [Databases] [World Law] [Multidatabase Search] [Help] [Feedback] | ||
England and Wales High Court (King's Bench Division) Decisions |
||
You are here: BAILII >> Databases >> England and Wales High Court (King's Bench Division) Decisions >> A v B [2024] EWHC 1400 (KB) (14 June 2024) URL: http://www.bailii.org/ew/cases/EWHC/KB/2024/1400.html Cite as: [2024] EWHC 1400 (KB) |
[New search] [Printable PDF version] [Help]
KING'S BENCH DIVISION
Strand, London, WC2A 2LL Date of hearing: 18th March 2024 |
||
B e f o r e :
(Sitting in Retirement)
____________________
A |
Claimant |
|
- and - |
||
B |
Defendant |
____________________
Mr. Daniel Hubbard, of counsel, instructed by Lee & Thompson LLP, for the Claimant
The Defendant appeared in person
____________________
Crown Copyright ©
The Background
"3. DUTIES
[…]
3.2 During your employment, you shall:
[…]
(d) familiarise yourself with and comply with our Code of Conduct and the other policies described in the [A].People Handbook.
[…]
14. CONFIDENTIAL INFORMATION
14.1 You shall neither during your employment (except in the proper performance of your contractual duties) nor at any time after its termination directly or indirectly: (My emphasis).
(a) use for your own purposes or those of any other person, company, business entity or other organisation whatsoever; or
(b) disclose to any person, company, business entity or other organisation whatsoever, any trade secrets or confidential information (whether or not recorded) relating or belonging to [A] or any of its Associated Companies including but not limited to any such information relating to […] customers, customer lists or requirements, price lists or pricing structures, marketing and sales information, business plans or dealings, joint ventures, regulatory matters, commercial terms with business partners or customers, […] any document marked "Confidential" (or with a similar expression), or any information which you have been told is confidential or which you might reasonably expect [A] would regard as confidential, or any information which has been given to [A] or any Associated Company in confidence by customers, suppliers and other persons" ("Confidential Information").
14.2 You shall not at any time during the continuance of your employment with [A] make any copy or note of any information relating to any matter within the scope of the business, dealings or affairs of [A] or any Associated Companies except in the proper performance of your duties.
[…]
14.5 You shall use your best endeavours to prevent the misuse or unauthorised communication of any Confidential Information by any person, company or organisation and inform [A] immediately upon becoming aware or suspecting, that any such person, company or organisation knows, has, or has used any Confidential Information.
[…]
15. WORKPLACE PRIVACY
[…]
15.4 You shall take all necessary steps to safeguard the personal data of others which you handle in the course of your employment and will comply with rules set out in the [A].People Handbook.
[…]
19. TERMINATION OF EMPLOYMENT
[…]
19.7 On termination of your employment or at any time at [A]'s request, you must immediately:
[…]
(b) delete any information relating to [A] from any device or medium which is in your possession, custody or control which does not belong to [A]"
Handbook" (the "Handbook"), attesting that he had read and understood the policies within the Handbook and the policies and procedures relevant to his role and department.
19. In the section headed "Acceptable Use Policy for Systems and Communications" the
Handbook provided, inter alia, as follows:
"Data Security:
[…]
As part of the Data Lifecyle Policy and outlined in the [A]People Handbook, employees are not permitted to move [A]Bank data outside of the corporate environment. (My emphasis).
[…]
Email Security
[…] As part of the Data Lifecycle Policy and outlined in the [A]People Handbook, employees are not permitted to move [A]Bank data outside of the corporate environment. Sending emails containing Confidential [A]Bank information may result in a Security Incident, which is escalated to management. (My emphasis).
Rules for [A] email accounts
[…] Any [A]Bank information should not be sent to any personal email addresses."
[1] Excel Spreadsheet MCA1156 June 2023.csv.
This document is a monthly report for June 2023 in the form of an Excel spreadsheet which lists the names of 80 of the Claimant's BACS (i.e. Bankers Automated Clearing Services) customers and the type of service(s) which they use. The document also records the name of the designated individual at each of the Claimant's BACS customers, together with that individual's business email address, ContactID used to log-on to the payment service website and the security method by which the individual gains access to the payment service website and when he/she last accessed it.
[2] PDF MCA5002-June 2023.pdf
This document is an invoice from VL which hosts the payment service website to the Claimant raising charges to the Claimant. It lists each of the Claimant's customers together with their account numbers and sort codes and contains the type, date and amount of each BACS transaction of each such customer against that customer's account number and sort code.
[3] SUNS – Sort Codes – Bureau Numbers.xlsx
This document is an Excel spreadsheet which contains a list of the Claimant's customer Service User Numbers, a Service User Number being a unique number assigned by the Claimant to each of its BACS customers, the numbers having been provided to the Claimant by the BACS system. The document is a consolidated directory of users of the Claimant's BACS services including their sort codes.
confidential information (as determined by the Claimant's security systems, for example an account number or sort code) that is being sent to the specified domains. There are further rules that follow thereafter.
(a) the email alert subject line: "Rule detected - Attachments to gmail or hotmail etc 1Mb Plus";
(b) the notification of "Rule matched: "Attachment to gmail or Hotmail etc 1mb
Plus""; and
(c) "Policy Name: "Attachments to Gmail or Hotmail"".
"Dear [B],
[A] is aware that, following the termination of your employment today, you emailed to your gmail address several documents, all of which were confidential and some of which included personal data.
Your actions constitute a material breach of your Employment Contract as well as a breach of [A]'s Data Privacy Policy, the UK GDPR and your obligations to keep confidential the records of [A] to which you have access as an employee.
[A] takes this matter extremely seriously.
Please confirm by return that you have permanently deleted the email, and that you have not made any copies of it or retain any copies. Please refer to clause 19.7 of your Employment Contract.
Please contact me on [SB@[A] by return attesting to your permanent destruction of the Confidential Information wherever it may have been stored.
Unless you comply with these reasonable requests, [A] will treat your conduct as gross misconduct sufficient to justify immediate termination. This will mean that you will not receive any pay in lieu of notice and only the entitlements accrued up to and including today.
We look forward to hearing from you.
[SB]"
"….. I note with some bemusement you have accused me of breaching my employment contract after you terminated my contract some hours ago meaning the contract was null and void at the time it was terminated.
For purposes of clarification and for the avoidance of doubt, at the point my contract was terminated I was no longer an employee of [A] therefore no breach of contract occurred. Surely an HR partner would be aware of the very basics of HR?
Even if I did any of what you allege, emails would not open without the system password (which I have been locked out of) meaning that it would be utterly useless. … In addition for legal matters such as these the court procedure rules dictates for full disclosure therefore I have to reasonably wonder what it is that [A] have to hide and or are attempting to conceal?.....
I am shocked and appalled at the fact that you have threatened me with immediate termination retrospectively when my contract of employment was terminated hours ago. I also feel harassed, intimidated and fearful that you have threatened me with withholding the pay and holiday pay that I am legally entitled to, once again providing me with evidence of a criminal offence, gross misconduct and a serious hate crime given the harassment and victimisation I have clearly been subjected to. All for raising a grievance, going on (authorised) annual leave and then being terminated upon my return.
I strongly and kindly suggest you update your knowledge accordingly as clearly you lack the knowledge base sufficient to carry out your duties correctly….." (My emphasis).
The Defendant's Case
Repudiatory breach / Contract null and void
[1.1] That the circumstances of his dismissal were such that his employment contract was null and void at the time it was terminated and that at the point his contract was terminated he was no longer an employee of [A] therefore no breach of contract occurred; see the Defendant's letter of 14th July 2023 above. This could be taken as stating that the Defendant was no longer bound by the contractual terms relating to the duty of confidence.
[1.2] I reject this submission. I consider that this submission has no real prospect of success. At the time the Defendant sent the AC Email to his personal account, he was still in the employ of the Claimant. In any event, I consider that the contractual terms relating to the duty of confidentiality survive the termination of the contract; see Clause 14.1. I accept Mr. Hubbard's submission that there is no principle of law that a breach of contract brings an end to post contractual obligations of confidence. Furthermore, the duty of confidentiality at common law survives the termination of employment.
Email Password Protected
[2] That emails from the Claimant were password protected and would not open without the system password; see Defendant's letter of 14th July 2023 above. The evidence of BJW is that the AC Email and attachments were not password protected. The Defendant seemed to abandon this position in his Defence. At paragraph 62 of his Defence, the Defendant pleaded:
62) [Ms B][14] further fabricated that [B] alleged the files were sent password protected, despite this not being the case. [B] has been very clear in his written response that when he clicked on the email link it brought up the [A] portal which requires a password. That is entirely different to password protected files, a fact a solicitor would be aware of. [Ms B] admits that [B] said the email would be utterly useless to what is being alleged against him by [A] in this matter which is true. [B] has been consistent that it is only evidence for the employment matter. It is therefore of concern that both [Ms B] and [Ms A] provided wilfully false statements to the court, especially since solicitors are officers of the court who take an oath to uphold the law. (My emphasis).
Access via a link. Password needed
[3] That to access the documents he would have to click on a link in the email which would have brought up A's portal which could only be accessed with a password. The evidence of BJW is that the portal is irrelevant because the documents were not shared via a link in an email: they were sent as attachments to the email. BJW states that when he sent the test AC Email to his own personal email account, he was able to click on and open each of the attachments without any password.
Email or attachments evidence for future litigation
[4.1] That sending himself the email or attachments is excusable as it is evidence for the employment matter and would have to be disclosed anyway; see the Defendant's letter of 14th July 2023 (above). I note that in paragraph 59 of his statement dated 11th March 2024 (in support of the Defendant's application) the Defendant stated:
"59. Throughout the short pre-action process, the Claimant had threatened and intimated the Defendant into not keeping evidence of the original email. The Claimant demanded time and time again that the email and its files be deleted immediately and confirmation of this be provided. This raises concern that the Claimant was bullying the Defendant into deleting all of his evidence so they could frame him for something he has not done in order to reduce any award he may receive in the Employment Tribunal…." [15]
[4.2] I reject the Defendant's proposition that forwarding the AC Email and attachments was justified given litigation in the future. Such an argument has no real prospect of success. The prospect of litigation against an employer does not justify a breach of confidence: see: Brandeaux Advisers (UK) Ltd and others v Chadwick [2010] EWHC 3241 (QB). An employee must rely on litigation disclosure processes to obtain relevant documents.
Claimant's IT system automatically blocks attachments sent outside
[5] That the Claimant's IT system automatically blocked attachments to emails sent out to personal emails. This issue was raised for the first time in paragraph 44 of the Defence dated 7th August 2023 and in the Defendant's witness statement dated 7th August 2023.[16] However, the evidence of BJW is that the Claimant's information security systems do not prevent attachments from being sent to personal email accounts.[17] Instead, as stated above, the system creates an alert when this happens. As already stated, BJW forwarded the AC Email to his own gmail account and exhibited a full screenshot of the email as it appeared therein, which shows the presence of the attachments containing the confidential information. The Defendant seemed to abandon this aspect of his defence; see [6] below.
Defendant removes attachments prior to forwarding the AC Email
[6.1] That the Defendant removed the attachments prior to forwarding the email. In paragraph 68 of the "Defendant's Application to Strike Out and Discontinue" dated 11th March 2024, the Defendant pleaded, inter alia:
68. …. The Defendant has been consistent that he diligently removed the attachments prior to forwarding the email they were attached to thus the Defendant has done no substantial wrongdoing whatsoever no matter how much the Claimant makes up otherwise….
[6.2] Contrary to what is stated above, the Defendant has not been consistent in stating that he removed the attachments prior to forwarding the AC Email. This had never been stated previously.
[6.3] On the 14th March 2024, the Defendant's wife wrote a long email to the court (to one of the Masters' clerks) she stated, inter alia:
"…. I also refer the Claimant back to the screenshot of the recording on the 14/07/2023 in which the Claimant admits I was there. The Claimant is therefore aware I was there when [B] sent the email to himself and saw him remove the files. We have a very small house and I keep all the files with Chronologies up to date. If he had taken any files wouldn't I have seen files? Wouldn't any files appear on the email and the cloud? Where are the files?..." (My emphasis).
[6.4] In any event, against what the Defendant and his wife state, we have the screenshot
of the AC Email as sent by the Defendant (see A/78); the security alert; and the system log – each of which shows that there were attachments to the AC Email when the Defendant forwarded it to his personal account. As BJW states, there would be no alert if there were no attachments.
Defendant's screenshot
[7] The Defendant relies on a screenshot showing how the AC Email appears in his gmail account on his phone[18]. Mr. Hubbard submits that the document is plainly not a screenshot of the full email, which can be seen by comparing the document exhibited by the Defendant with (a) the AC Email as sent to the Defendant ([A/78]) and (b) the AC Email as it appears in BJW's gmail account ([B/197]). The latter documents each clearly show, beneath AC's signature, his job title and the Claimant's logo and disclaimer, all of which are absent from the screenshot exhibited by the Defendant, showing that he has not exhibited a screenshot of a full copy of the email. I accept Mr. Hubbard's submission.
Conclusion
Dated the 14th June 2024
Note 1 NA, head of Human Resources with the Claimant, gives the same evidence on this point in her first witness statement. [Back] Note 4 See: Screenshots B/195-199 [Back] Note 5 BJW states that the confidential information is redacted in this screenshot. [Back] Note 6 See: Screenshots B/200,201 [Back] Note 7 Which seems to be confirmed by the screenshot at B/195 [Back] Note 11 Short informal notice was given to the Defendant. [Back] Note 12 Obviously, I am not permitted to carry out independent research into facts but I can seek legal cases. [Back] Note 13 P.115/C Claimant’s solicitors’ letter 9 August 2023 pointing out that the witness statement of the Defendant and his wife and the Defence are unsigned and requesting signed copies; p.207/C letter dated 19 September 2023 referring to CPR r.21.1 and repeating the request; p.312/C email dated 12 March 2024 pointing out that statements and pleadings still not verified by a statement of truth. In contrast, the Defendant’s application notice was verified by a statement of truth. [Back] Note 14 Of the Claimant’s solicitors. [Back] Note 15 Mr. Bray, of the Claimant’s solicitors, has served a witness statement dated 14th March 2023 denying this and other allegations of misconduct. In argument, Mr. Hubbard made the point that the Defendant could have no claim in the Employment Tribunal given his length of service. [Back] Note 16 P.B/93, para 1) (sic) [Back] Note 18 Exhibited to the Defendant’s witness statement dated 9 August 2023; C/20. [Back]