One thing that struck me was, when you look through the board and the committees, it's full of scientists, finance people, doctors, academics. There's maybe a couple of technologists - ML, IT delivery.

If they've got anyone with a background in cyber security I can't see it.

https://www.ukbiobank.ac.uk/about-us/people-and-governance/

And then the CEO comes out with:

> We have never seen any evidence of any UK Biobank participant being re-identified by others.

This data contains sex, at least month and year of birth. I can't see any sensible security-oriented technical person coming out with a line like that.