First published by Matthew on January 10, 2020 in the following categories: Claims Cybersecurity ICO Latest Security and tagged with compensation | cyber attack | cyber crime | cybersecurity | database security | ico | personal data | retail data breach
The Dixons Carphone data breach fine has been formally issued by the Information Commissioner’s Office (ICO) for the maximum amount possible under the previous rules.
The cyberattack took place between July 2017 and April 2018, meaning the Data Protection Act 1998 applies as opposed to the GDPR that came into force just a month later. As such, the maximum fine that the retailer could face was £500,000.00, which is what the ICO has issued. Had the attack have continued into the GDPR era, they could have faced fines in the hundreds of millions of pounds mark.
We’ve been representing victims of this data breach for some time now as expert data protection compensation lawyers with a wealth of experience in large consumer actions. As we know a great deal about this breach as it’s one of our live actions, we’re not surprised by the findings and the maximum fine being issued.
First published by Matthew on January 07, 2020 in the following categories: Claims GDPR ICO Latest Security and tagged with data breach | data controllers | data leak | gdpr | ico | medical records | personal data
It’s official: the first GDPR fine in the UK has been issued to Doorstep Dispensaree for data protection breaches that spanned across a two-year period.
This one involves medical data, which is some of the most personal and sensitive forms of data that there is. Medical data breach compensation claims account for a large proportion of the legal cases that we take forward because of how common they can be, and because of the impact on victims. The impact is often severe because this is the kind of information that we do not want to be misused or exposed.
The breach period, in this case, is between June 2016 and June 2018, which means that it just falls within the GDPR start period from May 2018. The Information Commissioner’s Office (ICO) was reportedly alerted to the breach by the Medicines and Healthcare Products Regulatory Agency (MHRA) who were conducting unrelated enquiries.
First published by Matthew on January 06, 2020 in the following categories: Claims Cybersecurity ICO Latest and tagged with compensation | cybersecurity | data controllers | data leak | online security | personal data
News of the New Year’s Honours List data leak incident rounded off what has been yet another year of leaks, breaches and hacks.
You can take it from us – as data breach experts – that news of this breach was nothing to be surprised about. We’re often asked for our expert insight by the media as we discuss what feels like a never-ending carousel of incident after incident, and this latest leak was yet another in what has been a big year for data breaches on the whole.
Our client numbers continue to grow given how often these kinds of incidents are taking place. When personal and sensitive information is misused or exposed, it’s important that victims know their rights.
First published by Matthew on December 20, 2019 in the following categories: Claims Data Employee Data Breach GDPR ICO Police Security Technology and tagged with compensation | data breach | data controllers | data leak | police breach | police data breach
We’ve discussed the issue of the police misusing IT systems before, and it’s a topic that needs to be addressed a lot given the nature of the data that they’re charged with.
Officers and employees have access to huge amounts of data, some of which is very personal and very sensitive. When exposed, victims can be understandably distressed, and that’s where we can assist.
Victims of a data breach can be entitled to make a claim for compensation that stems from the loss of control of private and sensitive information. We may be able to represent you, and since no one is above the law, you shouldn’t worry about going up against the police.
First published by Matthew on December 19, 2019 in the following categories: Claims Council Employee Data Breach GDPR ICO and tagged with compensation | council | council data breaches | data controllers | employee breaches | ico | personal data
If you have been the victim of a social care records data breach, you may be entitled to make a claim for compensation with us on a No Win, No Fee basis.
One of the most common types of individual legal cases that we represent people for involve councils, and a large volume of them relate to social care information. Social care data can be incredibly personal and sensitive which is why we find that data breach compensation pay-outs for these kinds of incidents can be quite high.
Victims should always know their rights. An apology isn’t always enough, especially when the data that has been exposed or misused is sensitive, which can often be the case when it comes to social care data.
In the same way that fines can be far higher, will we also see higher GDPR compensation amounts since the new law came into effect in May 2018?
Although data breach compensation amounts are still based on the individual impact to the victim, and this hasn’t changed since GDPR, the new laws can make brining a claim an easier thing to do. The law is more stringent than the previous Data Protection Act, so there can be more avenues for people to be able to claim. And the recent court case victory has also paved the way for people to be able to launch a claim even if they haven’t suffered any distress or loss at all.
The difference in fines is, of course, monumental. We have already seen the power that regulators now have to ensure data breach offenders are properly punished.
First published by Matthew on October 15, 2019 in the following categories: Claims Healthcare ICO Security and tagged with compensation | data breach | data controllers | database security | medical data breach | medical records | nhs
If you’ve been the victim of someone unlawfully accessing medical records, you could be entitled to make a medical data breach compensation claim.
With the Wrightington, Wigan and Leigh (WWL) NHS Foundation Trust medical records access scandal fresh in our minds, we want to make sure that victims know that they have a voice. We’ve taken forward a number of cases for victims of the WWL incident so far, but anyone who has suffered this kind of breach can be entitled to claim.
Whether you’re one of the 2,172 Greater Manchester patients affected by the above scandal, or someone who has discovered unlawful access to your information, we may be able to help you.
First published by Matthew on August 28, 2019 in the following categories: Claims ICO Security and tagged with compensation | data breach | data controllers | data leak | employee breaches | human error | ico | personal data
Human error data breaches remain one of the number one causes when it comes to data protection incidents, and it’s important for victims of these kinds of breaches to know their rights.
The important thing to know is that it doesn’t stop you being able to claim if the cause of a breach stems from an error by a human. The organisation that employs the person can be held liable for a legal case, and in this article, we’ll explain why.
It’s not an acceptable excuse for an organisation to simply try and defend a claim on the basis that the fault lies with a human.
If you’re not sure about how to make a GDPR claim, here’s some advice about what you can do to make sure you get the justice you deserve as a victim of a data breach incident.
The new GDPR that came into force in 2018 allows for victims whose information has been exposed or misused to be able to claim compensation. You can be entitled to claim damages for any distress caused and for any financial losses as well. Generally speaking, the more you suffer, the more the data breach compensation pay-out could be.
A really important thing to know is that the GDPR fines that the Information Commissioner’s Office (ICO) issues are not intended to be compensation for victims. When it comes to justice for the victims, you should speak to a lawyer! As a law firm, here’s out advice in how to make a GDPR claim.
First published by Matthew on July 30, 2019 in the following categories: Council Cybersecurity ICO Security Technology and tagged with council | council data breaches | cybersecurity | database security | online security | personal data
A Medway Council data breach incident has been discovered by a security researcher after “rudimentary” tests found a bug in a system that may have exposed personal data.
Council data breach compensation claims are increasingly common these days, and a lot of it is likely down to a lack of investment in security and technology. One of the most common types of legal cases we take forward involve local authorities or the agencies they employ, and we regularly see these kinds of breach stories hitting the news.
In this case, it appears that an issue with an online inquiry form may have allowed anyone to access the personal information of some residents.