Florida Prison Data Breach Exposes Visitor Info to Inmates, Sparks Safety Concerns
Was visitor data really shared with all inmates at Everglades Correctional?
A shocking data breach at the Everglades Correctional Institution (ECI) in Miami-Dade County has exposed personal contact information of dozens—possibly hundreds—of approved visitors, sending shockwaves through families and raising serious safety and privacy concerns across Florida. The breach, which occurred late last week, involved names, email addresses, and phone numbers of individuals who had applied to visit inmates. Incredibly, the information was reportedly distributed to the entire incarcerated population via internal emails accessible through kiosks and secure tablets.
The Florida Department of Corrections (FDC) has remained silent, offering no public statement since the incident, which has now sparked calls for accountability and immediate reform of the state’s visitation registration procedures.
How did the Florida prison data breach happen?
According to multiple visitors who spoke with the Florida Phoenix, a staff member at ECI mistakenly sent out an internal email on Thursday containing visitor contact information. The email was accessible to all inmates—around 1,600 at this facility—via their tablets and kiosk systems. The visitors had filled out required online applications to gain entry into the prison, a protocol implemented during the COVID-19 pandemic and continued to this day.
“Inmates can now see my full name, phone number, and email. That’s terrifying,” said Madeline Donate, whose husband is incarcerated at ECI. “We know extortion happens in prisons. This just made it easier.”
Other individuals echoed the fear. One woman, using the pseudonym “Dakota” to protect her identity, said she is frightened not only for her safety but for the implications of such a massive breach. “They all have our info now. And no one has reached out to us. That’s what hurts the most,” she said.
Could this breach lead to extortion or harassment?
Experts and advocates are alarmed at the potential dangers posed by the breach. Jan Thompson, another visitor affected, raised the possibility of inmates using the contact information to threaten or extort families. “All it takes is one grudge and one phone call,” she said.
This fear is not unfounded. Inmates in Florida can receive funds from individuals listed on their visiting record. With names and contact details in hand, the risk of manipulative schemes rises significantly, according to those familiar with correctional systems.
Patrice Kelley, a former Florida resident now living out-of-state, said she removed most of her digital footprint due to a past stalking incident. “And now all of that is undone,” she lamented. “Someone in that prison knows how to find me again.”
Is the visitation system at fault for the Florida prison data breach?
Many critics point to Florida’s current visitation policy, which requires visitors to re-register every time they plan to visit an inmate—even if they are already approved. This rule, implemented in 2020 during the pandemic, has continued despite the lifting of most COVID-related protocols statewide.
Denise Rock, executive director of Florida Cares, said the repetitive and unnecessary reapplication system is what ultimately led to the breach. “This is a systems failure,” she stated. “It was bound to happen.”
Rock has now called on the Department of Corrections to immediately discontinue the current visitation application protocol and revert to the previous model, where approved visitors could attend without re-registering every time.
Has the Florida Department of Corrections responded?
As of Wednesday morning, the FDC has made no public comments and has not directly notified the affected visitors about the exposure of their private information. This silence has only fueled more outrage among those impacted.
“They’re acting like it didn’t happen,” said Thompson. “If this had been a staff member’s contact info sent to inmates, there would be a full investigation. But for us? Nothing.”
With pressure mounting from families, advocates, and watchdog organizations, state officials may soon be forced to address the incident. As privacy concerns intensify, the question remains: what safeguards, if any, exist to prevent this from happening again?
