NEWS & UPDATES

The importance of the recent provisional British Airways and Marriott fines that have been issued for breaches of GDPR cannot be understated. And our action for compensation is important for victims as well.

The record-setting levels of the fines that have been issued show that the Information Commissioner’s Office (ICO) is deadly serious when it comes to GDPR compliance. With the ability for fines to be set at 4% of an origination’s global annual turnover, financial penalties that can be issued by the regulator can be significant.

BA’s fine – which they are understood to be contesting – has been initially set at £183m, and the provisional Marriott fine is at £99m. These are clear and substantial punishments. When it comes to the victims whose data has been exposed, our action for compensation is the way forward for justice.

Read More

The BA data breach fine that the Information Commissioner’s Office (ICO) is set to issue will be a record high of £183m.

The level of the fines reflects the severity of this breach that resulted in hundreds of thousands of people’s information being compromised. It will be the biggest financial penalty that the ICO has ever issue as part of the new GDPR rules that came into force last year.

We’ve been representing a number of people who are claiming for data breach compensation as victims of the incidents. If you’ve yet to start your No Win, No Fee legal case, you can sign-up here.

Read More

In many ways, GDPR and compensation claims are linked. However, when it comes to reporting and fines, the issue of compensation is usually a separate matter entirely.

When it comes to making a claim for data breach compensation, we can use GDPR as the legal basis for the claim. We can  allege breaches of the GDPR that means you are entitled to receive damages as a victim of an incident.

However, the investigations, reporting and fines is usually separate to a private compensation claim you can make with us. An organisation that receives a fine or is reported for a breach doesn’t automatically open the door to compensation for you. What you need is a No Win, No Fee Data Breach Lawyer to pursue a legal case for you, and that’s where we come in.

Read More

We have taken No Win, No Fee claims for compensation forward for victims of the Bounty data breach after the ICO issued a significant fine of £400,000.00.

The fine from the ICO (Information Commissioner’s Office) was issued in accordance with the previous rules before GDPR came into force in May 2018. Victims of the incident may be entitled to make a claim for data breach compensation, and we have already been contacted for help.

Our lawyers are fighting for justice in dozens of different data breach actions. This is on top of the individual cases we help people with as well. If you need advice, we can help you on a free and no-obligation basis.

Read More

The scale of the Marriott GDPR fine that could be issued after last year’s huge data breach incident could set the precedent. And it could be significant.

The Marriott data breach saw a wealth of personal and account data exposed for a number of years between 2014 and 2018. It affected some 500m people and may have compromised passports and exposed travel information. As such, this is an incredibly serous data breach, and any punishment issued will need to reflect that.

The costs of dealing with the breach, plus the legal action costs and regulatory fines, could be monstrous for the hotel chain.

Read More

The Mumsnet data breach is said to have affected dozens of accounts after a software change resulted in the exposure of some users’ personal information.

Users who logged into their account during the breach period may have been able to see the account information for other users, and vice-versa. Mumsnet has reported themselves to the Information Commissioner’s Office (ICO) and has reversed the software alteration and logged all users out of their accounts.

Software changes that lead to data breach are not uncommon. Some of the data breach compensation claims we represent people for have stemmed from this type of breach. Victims of such data breaches may be able to take legal action.

Read More

You could be eligible to make a British Airways data breach compensation claim if you were affected by the recent breach.

We’ve launched our legal action for victims affected by the breach. Anyone who made certain purchases, bookings or booking changes during the breach period may be affected.

This was a serious and preventable breach in our view. Full card numbers, expiration dates and security codes (CVV) were exposed. We feel that there were a number of steps that British Airways could have taken to have prevented the breach as well. Both of these are major factors in our legal case against them.

Read More

The Equifax data breach fine issued by the Information Commissioner’s Office (ICO) has hit the maximum limit of £500,000.00.

The 2017 Equifax data breach resulted in some 700,000 UK citizens put at risk from data exposure. In total, around 15 million records were actually compromised.

This was a major breach for a number of reasons. Firstly, it was preventable; taking place because an employee failed to patch a known security vulnerably. Secondly, because the damage could have been lessened had Equifax have had proper systems in place to spot such a breach. Thirdly, because of who Equifax are. This is a company who is a credit-reference agency. The fact that a data breach has happened to them is incredibly worrying.

Read More

Are we seeing an increase in GDPR data breach instances since the new rules came into force in May 2018, or is it just a case of more reporting?

According to recent research, reports of GDPR data breach incidents more than doubled between May, which saw the new rules come into force on 25^th, and June 2018 the following month. Does this mean that incidents massively spiked and increased during that short period of time, or are organisations so in fear of the new rules that they’re reporting every little breach that may be happening?

The results are what we expected.

Read More

 It’s important for people to know their data protection rights, and CCTV and GDPR considerations is a new thing for people and organisations to consider.

It has been suggested that many do not know that GDPR has an impact on CCTV since the new changes in power came in to affect in May 2018. CCTV is, after all, widespread – really widespread – throughout the UK. It’s now also commonly used by organisations in the office as well as outside an office for security, and is typically used on-board commercial vehicles, largely for security, legal and health and safety reasons.

But, what about the relationship between CCTV and GDPR?

Read More

A key question right now is whether there is a Ticketmaster GDPR fine on the horizon. With the Ticketmaster data breach being the big data news recently, what punishments are they set to face?

We’ve already taken cases on for victims of the Ticketmaster data breach, and although any fine or penalty issued by the UK’s data watchdog, the Information Commissioner’s Office (ICO), is independent of the legal action we’re taking, we’re closely monitoring the ICO developments.

Given the dates that the data was exposed, they could be set for a GDPR fine, and we think this would be justified.

Read More

The Ticketmaster data breach may well be this year’s big data breach incident. This week, Ticketmaster reached out to customers and admitted a huge data breach potentially affecting thousands of people.

It’s understood that the Ticketmaster data breach stems from a third-party security breach at a supplier. They say that malicious software was found on a “customer support product” hosted by a company named Inbenta Technologies.

People who used the service between February 2018 and June 2018 may be affected, and the nature of the data compromised in this breach is serious.

Read More