NEWS & UPDATES

News of the Sweaty Betty data breach hit the media last week where it has been confirmed that the retailer suffered a cyberattack that has led to the exposure of customer information.

Customers who placed an order either online or by telephone between Tuesday 19th November and Wednesday 27th November 2019 may have been affected. It’s understood that malicious code had been inserted into their e-commerce system where data processed through it has been copied and therefore exposed.

If you have been affected by this incident as a resident in England or Wales, you can speak to our team today for free, no-obligation advice.

Read More

The British Airways Data Event Group Litigation was formally established after a hearing that took place on 4^th October 2019.

The purpose of this action – which is a formal Group Litigation Order (GLO) – is for the common issues for victims affected by the 2018 BA cyber-attacks to be argued as one. There’s little point in arguing each individual case when the issues are so common, so if we can get the common issues resolved, it then becomes a matter of individual compensation.

We know that it can be somewhat confusing to know where to turn when you need legal advice and representation. Here’s some advice about the official GLO that may be useful for you.

Read More

As the British Airways data class action remains the hot topic of the data breach compensation world right now, we think that it’s important to put victims in the know when it comes to the recent developments.

And this is especially important now that the formal Group Litigation Order (GLO) has been given the go ahead by Mr Justice Warby in October this year. This means that it’s all now formal and there are court deadlines in place, and it’s important for Claimants to know what they now need to do.

Here’s some information about what the GLO means and what people now need to do to make sure that they can get involved in what’s set to be one of the biggest battles for justice ever seen.

Read More

Here’s a bit of a brief ‘what you need to know’ when it comes to the BA data breach class action, given that we continue to take new cases on all the time.

We understand that many people will want the answers to a number of questions before they sign-up for a case. It can be a bit scary when it comes to formally instructing a lawyer to represent you for something like this, so let’s try and put your mind at ease.

We’ll answer some of the common questions that are asked, but as always, please don’t hesitate to speak to our team if you need to. To go ahead and sign-up to join the BA Groupie Action, you can visit the website here.

Read More

The mammoth British Airways GDPR fine and the group action for compensation we’re on the Steering Committee for were totally avoidable, meaning the airline could have saved themselves a fortune.

Research from HackerOne indicated that a simple Bug Bounty that could have cost less than £10,000.00 may have identified the vulnerabilities that led to the successful 2018 cyber-attack incidents. In fact, such a bounty could also have stopped the Carphone Warehouse, Ticketmaster and TalkTalk hacks as well, it’s understood.

The fact that this was avoidable can help the prospects of succeeding with the BA Group Action, although it’s important to know the difference between the fines and the compensation for victims.

Read More

When we look at important topics such as NHS cybersecurity, we usually approach it from the perspective of the victims, given that we’re data breach compensation lawyers.

GDPR ensures that there’s an important duty on all organisations – including the NHS – to take steps to protect the data that they store and process. Their duties are clear, and the punishments that can be issued by the ICO (Information Commissioner’s Office) are also clear, and they can be substantial.

But what about the victims? What can they do when it’s their data that has been exposed or misused? What are their rights?

Read More

We’re taking compensation claims forward on a No Win, No Fee basis for victims of the Charing Cross Gender Identity Clinic email leak.

The GIC sent two separate emails to groups of around 900 individuals per email with information relating to an art competition. Unfortunately, instead of using proper mailing software, it appears that the clinic simply used the “CC” (carbon copy) function. This has resulted in recipients’ information – at least email addresses, and possibly names – being leaked to all other recipients of the email.

This isn’t the first time an email data leak of this nature has happened. We continue to fight for the rights of victims affected by the infamous 56 Dean Street Clinic leak which was a similar incident.

Read More

The provisional Marriott data breach fine is to be reportedly set at £99m, with news of this fine coming just days after the record-setting BA data breach fine.

This is another significant financial punishment issued by the UK’s data watchdog, the Information Commissioner’s Office. Marriott is understood to have expressed that they’re “disappointed” with the fine, despite the severity of this breach the fact that information had been exposed for such a long period of time.

These first major GDPR fines show one thing: that the ICO mean business when it comes to using the new legislation that came into force in May 2018.

Read More

The BA data breach fine that the Information Commissioner’s Office (ICO) is set to issue will be a record high of £183m.

The level of the fines reflects the severity of this breach that resulted in hundreds of thousands of people’s information being compromised. It will be the biggest financial penalty that the ICO has ever issue as part of the new GDPR rules that came into force last year.

We’ve been representing a number of people who are claiming for data breach compensation as victims of the incidents. If you’ve yet to start your No Win, No Fee legal case, you can sign-up here.

Read More

It’s understood that disciplinary action has taken place in a number of cases for the misuse of police computer systems in England and Wales.

There have been cases where staff have reportedly accessed the Police National Computer and other databases to look at information with authority or reason. In many cases, staff have looked at information about friends, family, neighbours and colleagues. In more serious cases, data may have reportedly been passed to criminals.

This is serious and incredibly worrying. It’s important that any victims of the police misusing their computer systems know their rights.

Read More

A recent Waltham Forest Council data breach incident was reportedly caused by a simple “printing error”, which is a cause for alarm.

It’s understood that some P60 forms sent out to pensioners accidentally included the personal information for other people on the reverse side of their form. The number of people who may have been affected in the batch that went wrong could be more than 3,000.

A lot of the claims for compensation that we take forward stem from simple errors that can inadvertently lead to a catastrophic breach of data protection laws. With councils and local authority agencies storing and processing a huge amount of data for people – data that can be incredibly personal and sensitive – this kind of breach is worrying.

Read More

A 12-month suspension has been handed to a senior nurse caught snooping on medical records during the course of her employment with University Hospitals Coventry and Warwickshire NHS Trust.

It’s understood that a total of 13 charges were brought against Carol Ann Rodda who was found to have been improperly accessing records over a period of nine months. The data she accessed included that of family members and colleagues.

The Information Commissioner’s Office (ICO) has had to deal with a number of cases where healthcare staff have been caught snooping on medical records. It can be a common problem, and it’s one where the victims can be entitled to make a claim for data breach compensation.

Read More