Welcome To The Data Leak Lawyers Blog
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
The Cabinet Office has been issued with a penalty in the sum of £500,000 for the 2020 New Year Honours data breach, an incident that we have resolved legal action for.
The fine has been issued by the UK’s data watchdog, the Information Commissioner’s Office (ICO), which is intended to act as a punishment for what has happened. Such penalties can also act as a deterrent against future events.
We are pleased to see that regulatory action has now concluded. The fine is a separate matter to private legal action that victims of the data leak can be entitled to pursue. We have already resolved legal action that we have taken, having been instructed to act in the wake of the event, and this fine further cements that victims could be entitled to pursue a claim for compensation.
Educational institutions have been targeted by cyberattacks with increasing frequency in the past few months, so the risk to the private information that is held by schools appears to be pronounced. In this climate of hacks and ransomware, it is important that high schools are doing everything they possibly can to protect the sensitive information of students, staff and parents, or there could be an increasing number of high school data breaches.
All schools hold a wealth of information about their pupils, from home addresses to medical information. It is important that teachers can access these details when necessary for the purposes of safeguarding and student welfare, but this also means that schools have an obligation to manage and process this information securely.
If you or your child has been affected by a high school data breach, you may be eligible to make a data breach claim for any harm caused. Where schools are responsible for the exposure of private information, they must be held accountable. Claiming compensation can be a route to ensuring that justice is achieved.
Remote working has been a key security focus for some companies for a number of years, but the coronavirus pandemic has led to many more businesses adopting homeworking as a long-term practice. For some, remote working has longevity beyond social distancing restrictions. However, it can come with cybersecurity concerns, such that businesses must ensure they are effectively managing the risks of remote workers exposing data.
As well as the external cybersecurity threats to company servers, there is also a risk that undisciplined employees may make mistakes when they are no longer working in a controlled environment. Even the simplest of errors or oversights could allow sensitive information to become vulnerable.
Unfortunately, when the transition was made to remote working, some companies failed to make the cybersecurity adjustments required. Going forward, it is important that every company adapts their data protection strategies to the demands of remote working, or they may risk information exposure.
Educational establishments commonly hold a wealth of information about their students, often to meet safeguarding requirements, or to ensure teachers have an appreciation of children’s personal circumstances. Such information can be valuable in providing care and support to students, yet it can also represent a security risk if organisations are not doing enough to protect this information. Due to the sensitivity of the information held, data breaches by schools and universities can be particularly harmful to those affected.
Unfortunately, cybercriminals also recognise the value of pupil and student data, seeing educational institutions as prime targets for hacks. The National Cyber Security Centre released an alert earlier this year revealing that the education sector was at an increased risk of ransomware attacks in late February, which is important to note.
With external threats to the sector high, it is essential that schools and universities are doing their utmost to protect personal information. Where they fail to do so, victims may be able to claim compensation for any loss of control of their personal information.
It has been reported that the recent Stor-A-File cyberattack resulted in hackers demanding a ransom of three million pounds in Bitcoin which has reportedly been rejected, leading to data being exposed online.
Last week, we covered the issues facing the Lister Fertility Clinic who are understood to have written to some 1,700 patients over medical records that Stor-A-File had been providing scanning services for. With potentially sensitive medical information at stake, it had been feared that patients of the clinic could be vulnerable to their private and sensitive medical information being compromised.
Now, it has been reported that the worst looks to have happened and that private and sensitive data stolen in the attack has now been put onto the dark web.
Oxford City Council issued an apology over a possible data breach that the local authority may have caused. It is said that a computer error may have exposed information contained in rent statements.
Following news coverage from The Oxford Mail, the exact nature of this security incident and its impact has been unclear. It was not decisively identified as a data breach, but incidents such as this nevertheless highlight the damage that can be brought about by unintentional data protection errors. Even where the data controller has not broken data protection law, it is important to flag potential negligence to ensure that it is thoroughly investigated.
As a victim of an information security incident, it can often be difficult to tell whether or not an organisation has breached your rights under data protection and privacy law. This is why it is important to seek legal advice if you have reason to believe that your personal information has been compromised. At Your Lawyers – The Data Leak Lawyers- as leading data compensation claims experts, we can offer potential data breach victims free, no-obligation advice on their eligibility for a compensation claim.
As patients, we trust that our data is held securely by healthcare organisations, and that medical professionals will only access and use our information when absolutely necessary. Unfortunately, hospital data snooping does occur, as some healthcare staff view patient information without authorisation or consent.
Whether intentional or unintentional, data snooping is a practice that all healthcare staff must steer clear of, particularly due to the sensitivity of medical records. It is understandably worrying for victims to learn that their information has been subjected to unauthorised access, as there could be malicious intent behind the user’s actions. When healthcare staff abuse or take advantage of their data access privileges in this way, it can constitute a breach of data protection law.
If you believe that your privacy has been violated in this way, you could be eligible to claim compensation for the harm caused. Contact us for free, no-obligation advice now if you think you may have a claim to make.
The healthcare sector has long been a target for cyberattacks, and this threat can be compounded by the often-poor cybersecurity adopted by some hospitals and doctors’ practices, as well as employee errors that have brought about a number of data breaches in recent years. Health data breaches can be particularly harmful to those affected, as the personal information and medical records held by healthcare providers can, understandably, be intensely private to patients.
The problem of health data breaches appears to have exacerbated further over the past year or so. The Covid-19 pandemic has prompted a surge in cyberattacks across all kinds of organisations, but healthcare has been seen as a particularly vulnerable sector due to the increased strain brought by managing coronavirus.
Regardless of the circumstances in which a data breach occurs, there is never any excuse for healthcare organisations that have failed to protect patient and employee data. If held to account in a data breach claim, these organisations could be forced to pay out compensation to the affected victims. If you have been affected by a data breach incident and wish to seek justice, do not hesitate to contact us for free, no-obligation advice.
There is really not a great deal of time left to claim for certain damages you could be entitled to receive if you were one of those affected by the 2019 New Year’s Honours List data breach.
We have successfully recovered compensation arising from the incident, and if you were notified of your involvement, there is still time to claim. However, one of the deadlines expires next month and that could alter what you may be entitled to receive. You may still have a claim after this period has expired, but it could affect what you may be entitled to.
Your Lawyers is a leading firm of Data Leak Lawyers, pursuing compensation claims for breaches for thousands of people. This includes in over 50 group and multi-party actions that we have launched, and we have recovered over £1m for data breach clients alone since 2014. We are here to help, and you can speak to the team for free, no-obligation advice here now.
We are now two years on from the discovery of a mass snooping scandal in Greater Manchester involving Wrightington, Wigan and Leigh NHS Foundation Trust where the unauthorised access to medical records affected some 2,000 people.
We represent clients for cases in this serious abuse of access by what is understood to be more than one employee at the Trust in question. We represent clients for cases where their wider medical records were accessed during their treatment by people who did not need to access their data, and had no right or reason to. We have also been recommending that our clients check their medical records too as a number of inaccuracies have been identified also.
This all suggests that the practice of medical records data protection and organisation has been poor at the Wrightington, Wigan and Leigh NHS Foundation Trust. We continue to represent people for data breach compensation claims, and you can still join our group action for the mass snooping event. You can also speak to our team for free, no-obligation advice about general issues over unauthorised access to medical records as well.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020
Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
