A technical issue on the UK’s company register may have exposed personal data linked to millions of businesses.
The problem affected Companies House, which holds records for over five million UK firms. A system fault reportedly allowed certain details, such as names and contact information, to be accessed or surfaced in unintended ways.
Companies House said it has fixed the issue and is investigating, though the full scale of exposure remains unclear. The incident adds to ongoing concerns about how publicly available company data can be misused, particularly when combined with other sources.
For businesses, the key step is to review what information is publicly listed, ensure it is accurate, and remain cautious of unsolicited contact referencing company data. Monitoring for unusual activity and strengthening verification processes can help reduce risk.