We’ve heard of data leaks happening in companies and websites — but in a prison? As strange as it sounds, that’s exactly what happened at the Everglades Correctional Institution (ECI) in Florida. What should’ve been a routine day for families visiting incarcerated loved ones turned into a privacy nightmare.
Let’s take a closer look at what went wrong, how it happened, and what this means for data protection in unexpected places like correctional facilities.
Leak
On July 24, a staff member at ECI accidentally sent a mass email to every inmate. This wasn’t just a harmless update. The email contained personal information about the people visiting those prisoners, including their full names, email addresses, and phone numbers.
That means hundreds of inmates suddenly had access to contact details of people they may not have known — but who were connected to others inside the prison.
In any context, this kind of leak is serious. But inside a correctional facility, it becomes even more sensitive.
Details
So, what kind of data was leaked?
| Type of Information | Leaked? |
|---|---|
| Full names | Yes |
| Email addresses | Yes |
| Phone numbers | Yes |
| Home addresses | No |
| Financial data | No |
Even though financial or home address info wasn’t part of the leak, having names and contact details in the hands of inmates raises real concerns. Especially because many visitors believed their information was protected, given that it was provided within a secure prison system.
Access
You might wonder — how did prisoners even access this email?
Inside ECI, inmates are allowed limited tech access via secure kiosks and tablets. These devices are designed to let inmates send and receive monitored messages or emails, often through a system meant to maintain contact with family or legal support.
However, in this case, a staff member mistakenly approved the email and it made it through the system, reaching prisoners who now had direct access to visitor data.
While the devices are monitored, that doesn’t undo the fact that the data had already been delivered.
Concerns
The leak didn’t go unnoticed.
Jan Thompson, whose data was included in the message, said he feared this could lead to extortion or harassment. He gave an example where one inmate could use the phone number of another inmate’s wife as leverage — threatening harm unless she cooperates.
Patrice Kelly, another person affected, has an even more personal concern. She’s had past experiences with stalking, and spent years trying to remove her online presence. Now, because of this error, she may be back in that same vulnerable position.
For both, and many others, this isn’t just a privacy issue — it’s a safety one.
Response
Here’s where it gets even more frustrating: no official response has come from the Florida Department of Corrections.
News outlets like The Register have tried to get comments or updates, but so far, there has been complete silence. No press releases. No apologies. No plan to fix the problem or prevent it from happening again.
That silence only increases the anxiety and anger of the affected families — many of whom trusted the system to keep their personal information safe.
NotFirst
This isn’t the first time sensitive data has been leaked by a public institution.
In the UK, police departments, local councils, and even NHS Trusts have made similar errors. While each case is different, they all highlight the same issue: data protection is often not taken seriously enough, even in high-security environments.
NowWhat
So, what should you do if your information is leaked — whether from a prison or elsewhere?
Here are a few important steps:
- Ignore suspicious emails, messages, or calls from unknown numbers
- Do not respond to any contact that seems threatening or manipulative
- Report the issue to local authorities or legal support
- Change your phone number or email if harassment begins
- Monitor your accounts for any strange activity
And most importantly, remember this: privacy is not a luxury — it’s a right, especially when safety is involved.
This Florida case is a reminder that data breaches can happen anywhere, even in a place meant to be secure. If it can happen inside a prison, it can happen anywhere — which is why staying informed and alert is so important.
FAQs
What was leaked at ECI prison?
Names, phone numbers, and emails of visitors.
How did inmates get the data?
A staff member accidentally emailed it to all inmates.
Is there any official response?
No public statement has been issued yet.
Why is this dangerous?
It could lead to stalking, threats, or extortion.
Can inmates use email in prison?
Yes, through supervised kiosks and secure tablets.
