Anniversary of the GDPR: two years on
Virgin Media group action data breach

Anniversary of the GDPR: two years on

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

As we mark the passing of the second anniversary of the GDPR, we take a brief look at what has changed and what needs to happen to make sure that this key piece of legislation is effective.

In terms of what has happened, the General Data Protection Regulation has put a greater onus on information processors to act more responsibly. It has also given the UK’s data watchdog, the Information Commissioner’s Office (ICO), far greater powers to impose more substantial penalties that could amount to 4% of an organisation’s global annual turnover. It triggered many organisations over-reporting, perhaps in worry over failing to adhere to the law. The system may have struggled to cope as a result of this.

But its introduction has been far from perfect in terms of it being a catalyst for change. Although we would always expect it to take time before such an important piece of legislation takes effect, a huge number of avoidable breaches have still taken place.

Two-year anniversary of the GDPR: what needs to change

As we mark the two-year anniversary of the GDPR, have we seen the impact that we expected to see given the weight of the new regulation?

So far, the ICO has not ben able to finalise as many fines as we would have expected to have seen. The two big intentions to fine British Airways and Marriott at £183m and £99m respectively are in no way final amounts and are subject to appeals. Had those cases have been resolved by now, we might have seen a clear message that data breach offenders will be held to account with significant fines. Instead, the delays have perhaps diluted the message that could have been sent.

What we think needs to happen is for enforcement of punishments to be executed swiftly; no ifs, and no buts. The GDPR itself ought to have been a catalyst for change, but when you look at the number and the nature of the breaches that have occurred since 2018, it hasn’t had the desired effect yet.

The list includes:

Benefits for compensation claims

It’s important to remember that compensation claims and the fines that can be imposed for breaches of the GDPR are entirely separate.

That being said, the GDPR has allowed for compensation claims to be able to better succeed in some circumstances. The law is clearer, as is the duty that data processors have for the information that they hold. As such, from a compensation perspective, we see the second anniversary of the GDPR as marking the passing point of an improvement for how victims can claim compensation.

Although we have commented on the issues surrounding the lack of enforcement that has taken place, this doesn’t stop claims from being successfully settled. Punishments issued by the ICO are separate and you do not need to wait for an outcome before making a claim. We can represent you for a separate legal case to pursue compensation for:

  • The loss of control of your personal information;
  • Any losses and expenses incurred.

Data breach compensation pay-outs can be based on one or both of the above.

Your Lawyers in the media

The anniversary of the GDPR has led to several media outlets commenting on the effectiveness of the law and what has happened since its introduction. As an established and leading data breach compensation law firm, we’re often in the mainstream media and we have been asked for comment about the anniversary.

You can see some of our comments in our press section here.

At this unprecedented time of the coronavirus pandemic, we must also take this factor into account. Clearly, the progress of the GDPR could be hampered because of the changes many organisations have had to make. That being said, prior to the changes, its effectiveness remains open for debate.

Start Your Claim

You can call our claims team free from a landline or mobile on 0800 634 7575 or click on the link below to create a call back with one of our expert Data Claims team.Information on how we handle your data is available in our Privacy Policy.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

Contact is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon