"We cover news and updates from the digital world with information on the latest legislation, high profile cases and changes in the online industry."
We specialise in representing victims for data breach compensation claims.
Information on how we handle your data is available in our Privacy Policy.
In May 2020, the news of the easyJet cyberattack broke, and the airline revealed that around 9 million customers had been impacted by what it labelled a “highly sophisticated cyber-attack”.
We are now representing people for an easyJet cyberattack compensation action to ensure that as many victims as possible can recover compensation for any harm caused.
The travel industry is often a target for cybercriminals, with British Airways and Marriott numbering among the other companies to have suffered major data breaches in recent years. Yet cybercriminals alone cannot be blamed for these breaches. EasyJet should be held accountable for the security vulnerabilities that allowed an attack of this scale to occur, if this is what has taken place.
May 2021 marked the third anniversary of the GDPR (General Data Protection Regulation) which was implemented in the EU and adopted in the UK in 2018. Seen as a landmark moment, the new piece of data protection legislation forced many businesses and other data controllers to drastically rethink their approach to personal information.
However, now three years have passed, the GDPR’s impact is questionable. Thousands of data breaches are reported to the Information Commissioner’s Office (ICO) every year, with the biggest incidents often affecting hundreds of thousands or even millions of consumers. We are representing victims for some of the most damaging data breaches of the last three years, including those at British Airways, easyJet and Virgin Media.
The GDPR may have failed to influence some businesses to change their ways, but it can entitle victims to make a compensation claim in the event that their data protection rights are breached. While so many data breaches continue to happen, we are here to support those affected to claim the compensation pay-outs that they deserve.
Affecting around nine million customers, the easyJet cyberattack was one of the biggest data security incidents of last year. In May, it was reported that easyJet had identified an attack in January, described as “highly sophisticated” in a statement to the media.
While many had travel and contact details exposed, there were also some victims who had their financial information accessed. Regardless of the type of details exposed, millions were made vulnerable to security risks that they would not have faced had easyJet succeeded in defending the attack.
We began taking on claims soon after the attack was announced, and we are continuing to support those victims who want to claim the compensation they deserve. You have a right to expect that your data is stored securely by third parties, and where data controllers fail in their legal obligations, you could be eligible to recover thousands of pounds in compensation. If you were a victim of the easyJet cyberattack, as we mark one year passing since news of the breach, you can still claim now – No Win, No Fee.
In 2018, British Airways suffered two data breach incidents, affecting hundreds of thousands of customers. The breaches both subjected personal data to unauthorised access by hackers, leaving victims vulnerable to scams and fraud. We have been taking on British Airways data breach claims since 2018 and are taking forward a large group of Claimants, so we are determined to see that as many victims as possible can access the justice they deserve.
The deadline to join the group action has already been extended to June, which means victims only have a few weeks left to start their claim as things stand. Those affected could be entitled to thousands of pounds in compensation, and you can sign-up for a No Win, No Fee legal case on the BA Group Action website here.
As leading data breach and consumer action lawyers, we are here to help.
Reports have recently emerged alleging that Foxtons Group, one of Britain’s largest estate agents, was aware that masses of financial data belonging to their customers had been reportedly exposed on the dark web but neglected to notify their customers. The news of the Foxtons Group data breach issues first emerged following a malware attack on the estate agency in October last year, after which it was stated that “sensitive data” had not been exposed. Foxtons then reportedly learned in January that private information had found its way to the dark web, but it reportedly failed to make customers aware of this fact, leaving it to news outlets to publish the allegations.
We believe that, on the face of things, the reported inaction of Foxtons Group is a significant cause for concern. It is worrying for customers to learn that their data may have been being misused by cybercriminals without their knowledge that it had even been stolen.
Whether it brings a healthcare organisation to a standstill, or causes the exposure of swathes of patient medical records, a health data breach can have serious repercussions.
In fact, the impact of a cyberattack can be worsened if the healthcare organisation in question does not have the appropriate security defences in place.
Every business or organisation is legally required to protect the personal data under their supervision, so data controllers can be held responsible if they breach this duty. We aim to help anyone who has fallen victim to a data breach to claim the compensation they deserve. This is not only to see justice done, but to also to make sure that organisations are dissuaded from acting carelessly again.
Current and former employees have recently been notified of the Arup data breach, after the company was reportedly made aware of a cybersecurity incident at its third-party payroll provider.
Following routine procedure, we understand that Arup has sent a data breach notification email to those affected, informing them of information that may have been compromised by the breach. Anyone paid by Arup via payroll over the past three years could potentially have been affected.
We believe that those affected by the Arup data breach may be eligible to recover compensation for any harm caused by the exposure of their private information. Data controllers have a legal obligation to protect the information in their possession. Where this duty is not upheld, companies can be liable to pay compensation amounts. If you have been contacted by Arup regarding your involvement in the Arup data breach, you can contact us to receive advice on your right to claim.
A recent report by HoldtheFrontPage has revealed that the Midlands News Association has been hit by a data security incident. The incident allegedly allowed an unauthorised third party to access the private details of journalists hired by the regional newspaper company.
The company does not appear to have disclosed the number of affected victims, but it has been revealed that information relating to the journalists has reportedly already been published online. Whenever a data breach occurs, the data controller responsible for the breach could be liable to pay compensation. Those who had their data exposed from the Midlands News Association may, therefore, be eligible to make a claim on a No Win, No Fee basis.
If you have been informed that your data was affected, we are happy to offer free and no-obligation advice on your potential eligibility for a compensation claim.
Reports have recently emerged detailing the events of the Fat Face data breach, following the company’s decision to send out an email to affected customers. Victims were reportedly told to keep the information about the incident private.
The data breach itself is understood to have occurred in January, but it was not until the end of March that customers learned of the exposure of their information. Investigations by Fat Face has established that some systems were reportedly subjected to unauthorised access, affecting both customer and employee data. It has also been alleged that Fat Face paid a ransom to a cybercrime gang, though neither the company nor the ICO, the data protection regulator, appear to have confirmed this claim.
Those who have had their private information exposed in the Fat Face data breach may be able to recover compensation for the harm caused. Everyone has a right to adequate data protection. If companies fail in this duty, they can be liable to issue pay-outs to those affected.
The recent Birmingham City Council data breach has caused the exposure of private residents’ information, allegedly including details relating to vulnerable children (although this has reportedly been disputed).
As is the case in many council data breaches, the incident appears to have occurred as a result of human error, when staff mistakenly uploaded private information to a public access website. According to the council, the data was swiftly taken down, but the time for which it was uploaded may have been long enough to make the information accessible to unauthorised third parties.
In cases such as this, it may appear that little harm has been done, but all data breach incidents can be capable of causing significant distress for the victims. We trust local authorities like Birmingham City Council to safeguard our data. When they fail in this duty, they can be liable to compensate the victims for the harm caused.
As a firm of data breach claims solicitors, we are steadfast in our determination to help data breach victims to achieve justice for the untold distress and loss they have suffered. The Data Breach Lawyers is often at the forefront of new, evolving areas of data protection law, aiming to make sure no one who has their legal rights breached is left behind.
Developing our expertise over a number of years, our knowledge of this niche area of law is what allows us to be such staunch defenders of our clients’ legal rights. Unfortunately, many businesses and organisations continue to fail to protect personal data, but we know how to apply our skills and experience to make sure that they are held to account.
From the 56 Dean Street Clinic breach, to the huge group action against British Airways, our data breach experience spans several years. Read on to find out more about our ground-breaking work in this area of law.
SITA, an IT systems provider for much of the aviation industry, recently encountered a cyberattack described as “highly sophisticated”, which provoked a leak of passenger data from its servers at the end of February. The SITA data breach was monumental in scale, affecting hundreds of thousands of customers across several notable airlines.
Affected airlines included those under the Star Alliance group, such as Lufthansa and Singapore Airlines. It also included British Airways, which is currently the subject of our group action following two seismic data breaches in 2018.
The travel industry has long been targeted by cybercriminals. Examples include the Marriott data breach and the easyJet data breach, so it is unsurprising that hackers have sought to steal further information by attacking a company that serves so much of the global aviation industry. The breach is not believed to have exposed any highly sensitive data, but it must act as a wake-up call to airlines and other travel companies. The sector must now look to protect data from an incoming wave of sophisticated cyberattacks.
Speak to our team now for help and advice.
Fill out our quick claim form below and we’ll contact
you when you’re ready to talk to us.
All fields marked * are required.