Welcome To The Data Leak Lawyers Blog
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
We focus on the latest news surrounding data breaches, leaks and hacks plus daily internet security articles.
Issues surrounding a number of Sunderland Council data breach incidents have hit the headlines in recent weeks, with some 170 incidents said to have been recorded.
In the GDPR era, councils and local authority agencies must take their data protection responsibilities seriously. They hold a lot of information about a lot of people, and if this is exposed, the impact on the victim can be severe.
A large volume of the individual cases we take forward are for council data breach compensation claims because of how often they can occur, and because of nature of the information that can be exposed or misused.
It’s understood that the recently discovered Lancaster University cyber incident may have affected as many as 12,500 people.
The university was hit by what they called a “sophisticated” cyber-attack that had affected the data for some students and applicants. It’s now understood that the number of people whose data may have been exposed in the attack could be as many as 12,500.
Given the volume of people affected, the Information Commissioner’s Office (ICO) could impose a significant penalty if they find that the university is guilty of breaching GDPR. In terms of justice for the victims, that’s where we come in.
We represent people for police-related data incidents, and with this in mind, here’s a number of reasons as to why the recent Eurofins data breach is a worrying one.
In case you’ve not heard of this one, this relates to an organisation that the police outsource forensic work to. Eurofins reportedly process more than 70,000 cases per year, and deal with DNA analysis, toxicology, ballistics and computer forensics. As such, they can be at the heart of investigations into serious crimes, including murder, sexual offences and terrorism.
Worryingly, they were recently hit by a ransomware attack. This has led to a number of concerns about the security and quality of the work they carry out, and has caused significant disruption to police investigations.
A number of people have been unsure as to how the £183m BA GDPR fine works in relation to compensation. They are two separate things, and here’s how it works.
Firstly, the record fine is the current proposal, and British Airways and their owner (IAG) can appeal the decision. Whether any appeal will be successful remains to be seen, but crucially, this is not yet the final fine. However, there will likely be a fine. Even if an appeal is successful, we expect that the Information Commissioner’s Office (ICO) is still going to issue a fine.
In terms of compensation, this is dealt with separately as part of a pending group action that you can sign-up for here.
With this week’s news focused on big GDPR fines for British Airways and Marriott, we can only assume that more fines are on the way.
Our lawyers are fighting for justice in over 25 different data breach group and multi-party actions. That shows just how many big legal cases we’ve taken forward, and some of the incidents took place after GDPR was introduced last year. The BA Group Action is one of those, and the initial fine of £183m shows just how serious the Information Commissioner’s Office (ICO) is on punishing offenders.
With the likes of the Ticketmaster data breach and the Well Pharmacy incidents yet to involve penalties, we expect more big fines to be on the horizon.
Just two days after the announcement of the huge BA data breach fine to the tune of £183m, the Marriott data breach fine is reportedly going to be set at £99m.
These are real statements of intent from the UK’s data watchdog, the ICO (the Information Commissioner’s Office).
When GDPR came into force last year, there was little doubt about the responsibilities that organisations have when it comes to data protection, and the punishments for failure are clear. We’re pleased with the announcement of another huge fine, and as always, we continue to bring the fights for justice for the victims who deserve compensation for the loss of control of their personal information.
We’re one year on from the world of GDPR compensation claims that came with the new legislation that was implemented on 25th May 2018.
We’re pioneers in the field of data protection compensation claims. Before other law firms began looking at them, we were starting group and multi-party actions years ago, and our lawyers are fighting for justice in over 25 different group and multi-party actions. Thousands of people have come to us for help over the years we’ve been specialising in this niche area of law, and we’ve seen the changes since GDPR came into effect last year.
Before GDPR, we primarily used the Data Protraction Act as the basis for the compensation claims we pursued. Now we have GDPR, are things different?
Some 5 million HMRC voice ID records are to be deleted after regulators ruled that a “significant” breach of data protection law had taken place over the use of the “my voice is my password” system.
The UK’s data watchdog, the ICO (Information Commissioner’s Office), has given the government until next month to remove data collected without proper content from millions of taxpayers. Although some people have since opted in for the system, the data for those collected and retained without proper consent is to be removed.
The issue has raised concerns over the government’s own ability to adhere to important data protection laws, with the ICO critical of HMRC’s behaviour.
We’re coming up to the first anniversary of the data law changes next month. Many are still unaware as to how GDPR and compensation claims work, and what the relationship is.
As data breach compensation experts, we can answer the key questions for you.
GDPR and compensation claims can go hand-in-hand, but they can also be viewed as two separate things. The new legislation has made the reporting of data breaches a bigger burden, which has led to an influx of reports since the law changes took place. GDPR can also place a greater burden for accountability when it comes to breaking data laws, and there’s the potential for huge fines.
But compensation is usually something that’s separately pursued to any involvement from the Information Commissioner’s Office (ICO). And that’s why we’re here.
The Bristol council data breach incident that was reported last week is understood to have affected thousands of residents.
The incident was yet another case of an avoidable data breach that has been caused by what appears to be a simple error. We see these kinds of leaks all the time, and they’re not the first council to have committed a breach just like it.
One of the most severe data breach group actions we’re running stemmed from an incident that’s exactly the same as this one. The damage that can be caused from a simple email error that leads to a leak can be substantial. A large volume of the cases we deal with are for council data breach compensation claims. They really are awfully common.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020
Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
