Welcome To The Data Leak Lawyers Blog
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
We’re coming up to the first anniversary of the data law changes next month. Many are still unaware as to how GDPR and compensation claims work, and what the relationship is.
As data breach compensation experts, we can answer the key questions for you.
GDPR and compensation claims can go hand-in-hand, but they can also be viewed as two separate things. The new legislation has made the reporting of data breaches a bigger burden, which has led to an influx of reports since the law changes took place. GDPR can also place a greater burden for accountability when it comes to breaking data laws, and there’s the potential for huge fines.
But compensation is usually something that’s separately pursued to any involvement from the Information Commissioner’s Office (ICO). And that’s why we’re here.
There are huge risks when it comes to Healthcare staff data breach incidents. A large volume of the data breach cases we take forward involve the healthcare sector.
That’s why we’re not surprised that a recent study suggested that more than half of data breach incidents in the healthcare industry are reportedly caused by staff themselves. Whether it’s a direct human error that has led to a breach, or staff abusing their powers, it’s the employees themselves that remain such a huge risk for organisations.
Even hacks and cyber attacks can be linked back to staff as well. An easy example is staff falling victim to phishing scams and their user credentials being compromised and then abused by criminals.
There are rising financial services data breach incidents, according to the number of reports that have been made to the Financial Conduct Authority (FCA).
In 2018, it’s understood that the number of data breaches that had been reported to the FCA had increased by a monumental 480%.
With May 2018 seeing the introduction of the new GDPR rules, punishments that can be issued for data incidents can amount to millions. On top of that, victims can be entitled to make a claim for compensation. Financial services data breach compensation amounts can be high, depending on the nature and severity of the incident.
The Windrush data breach incident that happened on 7th April 2019 has forced changes to be adopted by the Home Office following the leak of information surrounding the compensation scheme.
Earlier this month, mass emails were sent out to people taking part in the Windrush compensation scheme, as well as other interested parties. Emails were reportedly sent out in batches of 100, and the first five batches are understood to have resulted in a data breach. Yet again, this was another case where recipients of the email could see each other’s information.
This kind of incident has happened so many times before, and it triggered one of the more severe compensation actions we’re involved ion; the 56 Dean Street Clinic leak. Changes are now set to be made.
If you’ve yet to see if you’re eligible to join the Starwood data breach compensation action, here’s some vital advice for you.
We’re a specialist law firm who have been representing people for data breach compensation claims for years. Thousands of asked us for help, and as well as all the individual cases we’re helping people with, we’re fighting for justice in over 25 different data breach group actions.
The Marriott data breach action – also known as the Starwood data breach action – is one of the many actions we’re involved in. If you were affected by this breach, but you’ve yet to look into your options for making a legal case, here’s some advice for you.
The Information Commissioner’s Office (ICO) has issued a fine of £400,000.00 having concluded their investigations into the significant Bounty data breach.
We’ve already been contacted for help and taken claims for data breach compensation forward on a No Win, No Fee basis since news of the fine broke in the media. As many as 14 million individuals may have had their personal data shared, including new mothers and infants by extension.
The ICO has established that Bounty failed to properly inform users that their data would be shared for marketing purposes. The findings also confirmed that no one was able to give proper and informed consent as well.
As investigations into the Police Federation of England and Wales cyber attack continue, we’ve taken cases forward on a No Win, No Fee basis.
The investigations into the two malware attacks that hit the PFEW on 9th March and 21st March 2019 are underway, and we’ve agreed to take claims forward. Our legal team who are fighting for justice in dozens of data breach group actions have been contacted for help. As with the other group and multi-party actions we’re running, we have offered No Win, No Fee compensation representation.
It’s understood that the data for some 120,000 police employees may have been exposed in the incident. At this stage, information exposure or theft cannot be ruled out.
A lack of data training is an easy open goal for data breaches and cybersecurity incidents. It’s not a viable defence to a claim for compensation.
Over the years we’ve been helping people, thousands of victims have asked for our help for data breaches, leaks and hacks. We can tell you from years of experience that a common cause of incidents can sometimes be a simple issue of a lack of training. Even though data breaches are always in the news, and the risk of a cybersecurity incident has probably never been higher, data protection training is still not a priority for some.
I’ve spoken to friends and family for some insight as well, and there are still way too many organisations not treating it seriously; despite GDPR. For a victim who must make a claim for data breach compensation, a lack of training is no excuse to deflect a claim.
We’ve started taking cases forward on a No Win, No Fee basis for victims of the PFEW cyber attacks that were announced recently.
Some 120,000 police employees may have been affected by this data breach, spanning 40 different forces. The PFEW (Police Federation of England and Wales) cannot determine whether any information was exposed, so on the basis that it cannot be ruled out, we’ve agreed to take cases on.
Another key factor is that there were two separate incidents that spanned over a number of weeks. The first incident took place on 9th March 2019, and the second took place on 21st March 2019. It’s believed that the attacks were a part of a wider operation as opposed to specifically targeting PFEW.
Last month, apologies and testimonies took place in relation to the massive Marriott cyber attack that saw some 500 million people’s records exposed.
Marriott International Inc.’s Chief executive, Arne Sorenson, reportedly appeared before a U.S. Senate committee to testify. As part of a written testimony, an apology was issued, although the company is said to have declined to comment on the developments.
There are stark differences between how the U.S. deal with companies in the wake of huge data breaches and how the U.K. deals with them. Although we have the Information Commissioner’s Office (ICO) who can issue fines in the millions under GDPR, the government rarely gets involved in the same way the U.S. does. However, victims in the U.K. can still be eligible to claim data breach compensation. This is important to remember.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020
Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
