oneplus data breach
, ,

How can you protect yourself following the OnePlus data breach?

OnePlus has emailed customers to let them know that their personal information is at risk. This is because a (as yet unknown) third-party hacked OnePlus and got their hands on sensitive customer data. This includes:

  • Names
  • Contact numbers
  • Email addresses
  • Shipping addresses

It does not appear that payment information or account passwords were obtained during the intrusion.

OnePlus has informed all impacted users by email. It has also warned these customers that they might now be the victims of spam and phishing emails as cybercriminals use this data to extort more information and commit financial/identity fraud against them.

If you haven’t received a notification yet, OnePlus says you have not been affected. However, if you have ever purchased a product from OnePlus, it is worth checking your spam folder and any old email accounts in case the email has gone there.

If you were involved in the OnePlus data breach, you must take steps to keep yourself safe.

Protect your finances following the OnePlus data breach

While OnePlus has said that payment details have not been exposed, you should:

  • Contact your bank or credit card provider immediately if you spot any unfamiliar transactions or suspicious activity
  • Keep an eye on your credit score for any unexpected dips
  • You might also want to contact the major credit reference agencies to ensure credit isn’t taken out in your name.

Watch out for further attacks following the OnePlus data breach

All too often, cyber-criminals use the names and email addresses stolen in a data protection act breach to try and extract additional information from you (such as your banking details). As such, you must be on your guard following the OnePlus data breach.

  • Always question uninvited calls, messages, texts, etc. in case it’s a scam
  • Be aware that, just because someone knows your details (such as your name and address or even your mother’s maiden name), it doesn’t mean they are genuine
  • Understand that a legitimate bank or other financial organisation will never contact you ask for your PIN or full password or ask you to move money to another account for fraud prevention reasons.

Put some data protection best practices in place

If you are concerned that your data might be at risk, there are some steps you can take to stop the threat from escalating.

  • Register with the Cifas protective registration service
  • Change your passwords (we strongly recommend that you do this if you have been involved in this breach)
  • Make sure your devices are protected by up-to-date internet security software.

Find out more about what to do if you are the victim of a data breach.

Should you make a OnePlus data breach compensation claim?

A data breach is a serious failure, and it is clear that OnePlus has neglected to protect its customers’ privacy rights.

Worryingly, this isn’t the first time that OnePlus has been involved in a data breach. In January 2018, OnePlus revealed that 40,000 online customers had their credit/debit card data stolen. In this data breach, hundreds of customers reported fraud on their accounts after paying over the OnePlus website.

Unfortunately, it doesn’t seem like OnePlus has learned from this mistake. So, if your data was involved in this breach, you should make a OnePlus compensation claim. Claiming compensation isn’t just in your best interests. It could also be the only way to ensure that organisations implement more secure processes.

How to make a OnePlus data breach claim

At Hayes Connor Solicitors, we are looking to launch a no-win, no-fee group litigation action for everyone who has had their data privacy violated in the OnePlus data breach. Our data protection breach solicitors are true experts in this type of law. Unlike other firms, it is all we do, and we have been doing it for longer than most. So, we are confident that our team will get the results you deserve. We have all the experience and expertise necessary to get the best possible result for you.

Crucially, you do not need to have suffered any financial loss or emotional distress to make a claim against OnePlus. If you have suffered a privacy violation caused by an organisation breaching any part of the Data Protection Act, you have a right to claim compensation.

To become part of our group action, we need you to register with us. This guarantees that you will form part of the compensation claims that will be lodged by us.

We can take on your claim on a no-win, no-fee basis.

Register now

BA group action
, , ,

Hayes Connor sees surge of interest in British Airways data breach

Since British Airways (BA) customers had their personal data stolen in a series of breaches, we have been contacted by hundreds of people who were put at risk by the airline. And, in good news for consumer-rights, in October 2019, the Court gave its permission for official legal action to be launched against the airline. Since this decision, lots of new clients have contacted us to join our BA group action case.

What happened in the BA group action case?

In 2018, hackers accessed the BA website and mobile app to steal information including card details, addresses, email addresses and travel arrangements. According to an investigation by the Information Commissioner’s Office (ICO), some passengers were taken to a fake website where hackers harvested their details. As a result of this breach, many customers were forced to change their bank accounts or credit cards.

Why is this BA’s fault?

Following an investigation, the ICO found that the hacks were only possible due to inadequate security arrangements at the airline. In response, it is planning to impose a fine of more than £183 million on BA. But, none of this money will go to the victims.

Leading the way when it comes to data breach law

To secure justice for data breach victims, it’s vital that organisations are held to account for their security failures. And, at Hayes Connor, we believe we are the best firm to help BA customers to achieve this. This is because we are a true specialist in data breach law. This is all we do. And, because of this, we have the legal expertise needed to take on big players such as BA. We also have experience in similar huge cases against the likes of Ticketmaster and Equifax.

In addition to our own legal expertise, we also work with expert barristers to help us win our cases. So, we are confident that our team will get the results you deserve.

Crucially, when it comes to making a compensation claim, a lack of care can leave data breach victims open to advice and representation below the standard expected. And this could see you lose out financially as a result.

Our No-Win, No-Fee BA group action makes sure you are protected against all possible costs

At Hayes Connor, we offer a No-Win, No-Fee guarantee. This makes sure our clients are protected and insured against all possible outcomes.

Find out more about what No-Win, No-Fee means.

Why join our BA group action?

At Hayes Connor Solicitors, we have already started a group action claim against British Airways to help victims of this data breach to secure compensation. This means we have everything in place ready for you to join. And, we are using the evidence uncovered by the ICO to make the strongest possible case.

Unlike other UK law firms, we have experience in group action data breach cases. Where cases are very similar, such group actions can be a powerful tool and can have a bigger impact than a single claim.

Don’t miss out on the compensation you deserve!

The deadline to join the BA Group Action has been set by the Court. And, our group action is still open to you to join. You can make a claim even if the theft of your data has not caused you any harm or distress.

However, we would recommend that you join ASAP to give you plenty of time. We are already gathering evidence to give our clients the best possible chance of success. There may also be the chance to secure a settlement before this case gets to Court.

Without joining a group action, hundreds of thousands of people could miss out on the compensation they deserve.

To join our British Airways data breach group action compensation claim, register with us today.

 REGISTER NOW

equifax data breach
, , ,

Hayes Connor launches new Equifax data breach claims website

Hayes Connor Solicitors has served a representative data breach claim against Equifax in the High Court. The action could see Equifax ordered to pay up to £100 million in compensation. And, to make it easy for people affected by the breach to join this action, we have launched a bespoke Equifax data breach claims website.

 Launching equifaxdatabreach.co.uk

Because of a series of data protection failures, Equifax let the personal data of its customers fall into the hands of hackers. In response, the UK’s data protection regulator (the ICO) fined Equifax £500,000. But none of this money will go to victims of the data breach.

In the US, Equifax will pay $1.4 billion to compensate affected consumers. We believe that UK customers deserve compensation too. That is why we have set up www.equifaxdatabreach.co.uk.

Making it easy to claim compensation and hold Equifax to account

According to press reports, and the findings of the ICO, 15 million people have been affected in the UK. Equifax has written to 693,665 UK customers confirming that they have had their data breached.

If you are a victim of the Equifax data breach, our new site explains more about:

  • What happened in the Equifax data breach
  • What you can do about it
  • Our representative action
  • Whether you can claim compensation from Equifax.

We also have a range of handy FAQs to answer any questions you might have about this shocking privacy violation.

Our no-win, no-fee Equifax data breach representative action

We are running a representative (group action) case against Equifax. Representative actions are launched when a group of people are affected by the same issue and have experienced the same level of harm.

We are doing this in partnership with Louis Browne QC and Ian Whitehurst of Exchange Chambers Liverpool. This is the same expert data protection team currently engaged in Ticketmaster and British Airways litigation.

Our claim allows anyone in the UK who has suffered financial damage, emotional distress, or a loss of privacy (e.g. having an email address stolen) to claim compensation for the breach. What’s more, in the Equifax case, as well as providing no-win, no-fee funding arrangements, we won’t charge you a “success fee”. This means, if you win, you’ll get all of the compensation.

Crucially, by registering today, we will keep you updated as this case progresses.

Find out more at equifaxdatabreach.co.uk

 

money transfer scam
, ,

Are you likely to be targeted by money transfer scammers?

Cybercriminals are getting smarter. And they are making a lot of money along the way. One of the most lucrative forms of cyber fraud is the money transfer scam (otherwise known as push payment fraud).

In 2017 there were 43,875 cases involving money push payment fraud, with total overall losses of £236 million to customers. And, to make matters worse, only £60.8 million of the money stolen was ever was repaid[1].

Money transfer scams

Money transfer scams happen when cybercriminals trick individuals into sending them money. Because the victim believes the fraudster to be genuine, they authorise the payment. The money is then quickly transferred to different accounts, often abroad, which makes getting it back almost impossible. And, despite there being rules in place to protect customers, banks are usually reluctant to compensate for any losses. So, people can be left out of pocket without knowing where to turn.

Who is targeted by money transfer scammers?

You might think that fraudsters are more likely to go after people they believe will fall for the scam, but this isn’t the case. Money transfer scams can be extremely difficult to spot, so anyone could be at risk.

The Financial Ombudsman has highlighted the increasing sophistication of criminal methods. It argues that people are often manipulated into thinking their money’s at risk. And that this can result in rasher decisions than someone would typically make.

There are two main reasons why cybercriminals might make you the target of a money transfer scam:

  1. Because they already have your data

Often money transfer scams happen because your data has already been violated. For example, because of a data breach (or other cybercrime such as an email hack).

 A data breach could have occurred at any organisation that holds your personal information. Criminals often use data breaches to access data and sell it on the dark web.

According to a report by The Independent[2], the personal data of UK citizens is selling for as little as £10 on the dark web. The data offered provides more than enough information for fraudsters to convince you that they are genuine and defraud you.

  1. Because of poor security at your bank

Some criminals will target the customers of banks that they know have poor security processes. This can make it easier to trick customers into handing over money. This includes where banks fail to:

  • Keep their internal telephone/text/email systems secure
  • Keep their internal security protocols safe and secure
  • Undertake proper checks on large transactions from clients who don’t normally transfer large sums
  • Undertake proper checks on transactions to accounts where there is no history of transactions
  • Stop transfers and freeze accounts when they are informed that fraud might be happening
  • Liaise with the fraudsters’ banks to chase down the money and/or find out who the money has gone to.

What can you do to protect yourself from money transfer scams?

Here are some quick tips to keep you safe from money transfer scammers:

  • Never disclose security details such as your PIN or full banking password
  • Don’t assume an email, text or phone call is authentic. Just because someone knows some personal information about you (i.e. your mother’s maiden name), that doesn’t mean they are genuine
  • Know that banks or other trusted organisations will never contact you and ask for your PIN or full password, or ask you to transfer money to a safe account
  • Be aware who you’re sharing your personal information with. Only give out details to a service you trust and that you’ve contacted directly or are expecting to be contacted by. Even then, do not hand over sensitive information such as your PIN or password
  • Don’t be rushed into handing over personal or financial information
  • If something doesn’t feel right listen to your instincts. Leave the conversation if it makes you at all uncomfortable
  • Always question who you’re talking to. If in any doubt call them back using trusted contact details (you can usually find these on your bank cards) to check the request is genuine
  • Don’t be afraid to say you’ll get back to someone using the phone number or email address as listed on their website. A legitimate organisation would never try to panic you out of taking security checks
  • Never automatically click on a link in an unexpected email or text
  • Make sure you look at the address bar when logging into a website. If there is a padlock icon your connection is secure, if a site doesn’t have this lock icon, do not share any sensitive information
  • If you’re worried that you may be at risk, report it to the Police or Action Fraud straight away.

Get digitally aware

At Hayes Connor Solicitors, we want to reduce the number of data violations and successful cyber scams taking place across the UK. To do this, we are raising awareness of this issue and educating people to help stop fraudsters in their tracks.

For more advice on how to keep safe, follow us on Twitter and Facebook.

We are also considering a group action claim against banks who have failed their clients after they have lost money through no fault of their own. A group action is where a group of people, all affected by the same issue, collectively bring their cases to court. Group actions can be a powerful tool and can have a bigger impact than a single claim.

SIGN UP TO FIND OUT MORE ABOUT JOINING OUR GROUP ACTION CLAIM


[1] UK Finance

[2] https://www.independent.co.uk/life-style/gadgets-and-tech/news/dark-web-id-value-hackers-cyber-crime-a8683821.html

data breach claim
, , ,

Making a data breach claim. What has changed?

A recent case against Google for illegal data harvesting has transformed how data breach claims are managed in the UK. But what has actually changed? And what does this mean for you?

The background

Between 2011 and 2012, Google used cookies on Apple’s Safari web browser to illegally collect data about its users. In response, a group action was launched to help people challenge the big technology company over this data privacy violation. But, in October 2018, the case was thrown out.

Essentially, it was deemed too difficult to calculate how many people had been affected, and in what way. This is because, to make a data breach claim, each person had to show that they had experienced harm as a direct result of the breach. For example, emotional distress or financial loss. In group action cases such as this, where multiple people had been affected, this was especially complicated.

However, this case was taken to appeal, and, in a “ground-breaking” ruling, the Court effectively reformed the data breach claims process.

Change one – you can make a data breach claim even if you haven’t suffered a loss

The Court of Appeal decided that data breach claims are valid, even if someone hasn’t suffered financial or emotional damage as a result. If a company does not protect your data in the way it is legally obliged to do, you can claim for this data privacy failure.

Change two – you can make a data breach claim even if the only thing exposed was your email address

People can now seek compensation even if the only personal information breached was their email address. Everyone has the right to the protection of their personal data. Especially when such data now has an economic value (e.g. it can be sold).

Change three – there are now different ways to join a group action claim, depending on how you have been affected

Until now, if someone had their data breached, they would have to prove how this privacy violation affected them. In group action cases (where lots of people are affected by the same breach), this could be a complicated process. Because not everyone will have experienced the same loss and consequences. So, making an award in these cases can be tricky.

But, the Court of Appeal has made the group action claims process easier.

People involved in a significant data breach (that has resulted in differing levels of financial loss or emotional harm), can still make a group action case. You can find out more about how to make a group action claim here. So, in these cases, nothing has changed.

But now, people who have had their data breached in a mass privacy violation, but who have not experienced any harm, can also claim. To do this, they will need to join a representative action.

The type of action required for each case will depend on the exact breach. If you are unsure about which option is available to you, our helpful data breach experts are happy to answer any queries you might have.

What is a representative action?

A representative action is a type of group action. Representative actions are launched when a group of people are affected by the same issue and have experienced the same level of harm (e.g. having their email address stolen and data privacy violated).

In representative actions, one solicitor will represent all clients. A judge will decide who this solicitor is. Because of our unique experience in data breach group actions, we expect that Hayes Connor will be appointed as the representative in many future actions.

In addition, one member of the action will typically sue on behalf of themselves and the rest of the group. Once compensation has been agreed, each member of the representative action will receive the same amount.

A representative action is a quicker way to claim for compensation

A representative action can be launched based on the total number of those affected, not just the individuals who have proactively decided to pursue compensation. This will make claim process much quicker. However, to receive a share of the settlement, affected parties will still need to register to join the action. There is likely to be a strict time limit to do this.

What about individual data breach cases?

The ability to claim compensation for individual personal data breaches still exists (for example, where a bank has posted your financial statement to the wrong address). But now, you can claim compensation even if you haven’t suffered because of the breach.

In such instances, people can claim directly with the organisation responsible. However, we would always recommend using a specialist data breach solicitor.

At Hayes Connor, we take a holistic and long-term view when it comes to claiming compensation on your behalf. And, our understanding of the effects of a breach mean we always ensure the best possible outcome for you. It is not unusual that – on reviewing your case – we uncover information that allows us to increase the value of your claim significantly. What might seem irrelevant to you could make a huge difference in the eyes of the law.

How will you know if you can make a data breach compensation claim?

Since the introduction of the General Data Protection Regulation (GDPR), any organisation that processes your personal data MUST let you know if it has been breached. And, once you have been told about any violation, you can make a claim.

How do you make a data breach claim?

If you experience a privacy violation due to an organisation breaching the Data Protection Act, you have a right to claim compensation.

At Hayes Connor Solicitors, we know what it takes to make a successful compensation claim. In fact, we’ve been helping people to do just that for over 50 years. We also steer you through the aftermath of a data breach – minimising the impact on you as much as possible.

In most cases, data breaches happen because of a failure to implement reasonable and robust processes. So, claiming compensation isn’t just in your best interests. The only way organisations will be persuaded to take their responsibilities seriously and make the necessary improvements is by hurting their bottom line.

START A DATA BREACH COMPENSATION CLAIM

 

 

 

equifax data breach
, , ,

It’s now even easier to make an Equifax data breach claim

A recent data protection case has transformed how data breach claims will be managed in the UK. And the result of this court action will impact the 400,000 UK consumers who had their personal details put at risk in the huge Equifax data breach.

What happened in this data breach?

Hackers breached Equifax’s systems and accessed the private details of 143 million people in the US. While Equifax said that its systems in the UK were not affected, it admitted that a file stored in the US may have been accessed. This file contained personal information on up to 400,000 UK consumers.

Equifax is the second-largest credit reference agency in the UK. Used by a wide range of companies, even if you are not a customer it could hold a wealth of information about you. For example, data which lenders use to assess whether to give you credit cards, loans, mortgages etc.

Equifax data breach UK group action

Following the breach, we announced our intention to launch a group action case against Equifax. This allowed anyone in the UK who had suffered damage or distress to claim compensation for the breach. And, in October 2019 we submitted the relevant initial paperwork to launch litigation proceedings against Equifax at the High Court.

And, following the latest Court of Appeal ruling, claiming compensation for victims of the Equifax data breach is about to become much easier.

How has the data breach group action process changed?

Until now, to join a group action data breach claim, victims had to be able to prove that they had experienced harm as a direct result of the breach. For example, emotional distress or financial loss. However, the Court of Appeal has now decided that all data breach claims are valid, even if someone hasn’t suffered financial or emotional damage as a result. If a company does not protect your data in the way it is legally obliged to do, you can claim for this data privacy failure.

So, many more people are now free to claim from the credit reference agency. What’s more, following the ruling, people can now seek compensation from Equifax, even if the only personal information breached was their email address.

The Equifax data breach is a representative action

A representative action is a type of group action. Representative actions are launched when a group of people are affected by the same issue and have experienced the same level of harm.

A representative action can be launched based on the total number of those affected, not just the individuals who have proactively decided to pursue compensation. This will make the claims process much quicker. However, to receive a share of the settlement, affected parties will still need to register to join the action. There is a strict time limit to do this, so it’s important register ASAP.

In representative actions, one solicitor will represent all clients. A judge will decide who this solicitor is. Because of our unique experience in data breach group actions, we expect that Hayes Connor will be appointed as the representative in this case.

Join our Equifax data breach claim

At Hayes Connor Solicitors, we know what it takes to make a successful compensation claim. In fact, we’ve been helping people to do just that for over 50 years. We also steer you through the aftermath of a data breach – minimising the impact on you as much as possible.

What’s more, in the Equifax case, as well as providing no-win, no-fee funding arrangements, we won’t charge you a “success fee”. This means, if you win, you’ll get all of the compensation.

REGISTER NOW

ba group action
, ,

British Airways data breach group action gets the go-ahead

British Airways (BA) customers have been given permission to launch compensation claims against the airline following a huge data breach in 2018. At the High Court , Mr Justice Warby granted a group litigation order, paving the way for the group action against BA.

What happened in this case?

Last year, almost half a million British Airways customers had their personal data stolen in series of breaches.

Hackers accessed the BA website and mobile app to steal information including card details, addresses, email addresses and travel arrangements. According to an investigation by the Information Commissioner’s Office (ICO), some passengers were taken to a fake website where hackers harvested their details. Also, many customers were forced to change their bank accounts or credit cards.

Earlier this year, the ICO announced its intention to impose a fine of more than £183 million on BA over the breach. The series of hacks, were some of the most severe cyber-attacks in UK history. And they were only possible due to inadequate security arrangements at the airline.

But, while the ICO has the power to impose data breach fines, it does not give this money to victims. That’s why making a compensation claim is so important. Furthermore, we can use the evidence uncovered by the ICO to make a very strong case. So, if your data was put at risk by BA, you should now make a data breach compensation claim.

Join our No Win, No Fee, BA compensation case

At Hayes Connor Solicitors, we have already started a group action claim against British Airways to help victims of this data breach to secure compensation.

We can help you claim compensation for financial losses, as well as for inconvenience and distress. And, following a recent ruling[1], we can now claim on your behalf even if you haven’t suffered financial or emotional damage as a result. The loss of control of your personal information is sufficient grounds to make a claim.

What is a group action case?

A group action claim is where a group of people – sometimes even thousands of people – have been affected by the same issue. Group action cases are also known as class actions or multi-party actions.

With a group action claim, this group of people (the Claimants) collectively bring their cases to court against a Defendant (in this case, British Airways). These victims then fight together to achieve compensation in the High Court of Justice.

Where cases are very similar, group actions can be a powerful tool and can have a bigger impact than a single claim.

Use a data breach expert for the best chance of success

At Hayes Connor Solicitors, we believe that the best way to make big companies pay for their data protection failures is to use a specialist lawyer. Of course, you would expect us to say that – but let us explain why.

We have become a true specialist in data breach law. This is all we do. And, because of this, we have the legal expertise needed to take on big players such as BA, Ticketmaster and Equifax.

In addition to our own legal expertise, we also work with expert barristers to help us win our cases. So, we are confident that our team will get the results you deserve.

Crucially, when it comes to making a compensation claim, a lack of care can leave data breach victims open to advice and representation below the standard expected. And this could see you lose out financially as a result.

Don’t miss out on the compensation you deserve in the BA group action!

Since the data breach, we have been contacted by hundreds of people who were put at risk by BA.

The action that we are taking is still open to you to join. But, as we have already started our group action case, it is vital that you register with us ASAP.

To join our British Airways data breach group action compensation claim, register with us today.

REGISTER NOW


[1] Lloyd v Google

data protection
, ,

Huge step forward for privacy rights after ground-breaking data protection ruling

A data protection case against Google has resulted in a huge win for individuals and their data privacy rights.

The legal action[1], which relates to events that took place nearly a decade ago, will make it much easier for people to make a data breach claim.

What happened in this case?

Between 2011 and 2012, Google used cookies on Apple’s Safari web browser to collect data about its users. This included information on health, race, ethnicity, sexuality and finance. It is alleged that this happened even if someone changed their setting to “do not track”.

In response, a group action was launched to help people challenge the big technology company over this data privacy violation. But, in October 2018, the case was thrown out.

One reason behind this decision was that it was deemed too difficult to calculate how many people had been affected and in what way. This is because, to make a data breach compensation claim, each individual had to show that they had suffered. This could include experiencing either emotional distress or financial loss as a result of a breach.

However, this case was taken to appeal. And, in a “ground-breaking” ruling, the Court has shown that big business is not above the law.

What happened in the appeal?

The Court of Appeal decided that all data breach claims are valid. Even if someone hasn’t suffered financial or emotional damage as a result. Simply losing control of the personal information is sufficient grounds to make a claim.

What’s more, the appeal also found that people are entitled to compensation even if the only personal information breached was their email address.

What does this mean for victims of a data breach?

This is good news when it comes to the protection of our privacy rights. It means that organisations are much more likely to take their data responsibilities seriously. And, where a breach does occur, it is now much easier to hold corporate giants to account.

What’s more, a group action can now be launched based on the total number of those affected. Not just the individuals who have proactively decided to pursue compensation. This will make the group action claim process much quicker.

Businesses will have to do more or risk legal action and hefty costs

Speaking about the case, our managing director Kingsley Hayes said:

“This is a very significant development which recognises that personal information has a value and when that private data is compromised, the individual has a right to compensation whether or not they have suffered actual, or potential, financial loss or psychological injury.

“The ruling rightly adds further weight and consequence to any breach of personal data, even if a breach only involves an individual’s email address. This is likely to open the floodgates as consumers become increasingly proactive about protecting their privacy rights and seeking legal redress.

“Businesses who are not already taking their data protection obligations seriously will have to step up their data protection practices or face legal action and hefty costs.

“The development is fair and right providing robust clarity that the law sits firmly behind the rights of individuals to have full control of all their personal information and how, when and where this is stored, processed or shared.”

How do you make a data breach claim?

If you have experienced a breach of any part of the Data Protection Act, you have a right to claim compensation.

And, keeping things simple, as far as individuals are concerned, the process of making a data breach claim remains largely the same. So, if you are worried that your information has been lost or misused, we can help.

At Hayes Connor Solicitors, we know what it takes to make a successful compensation claim. In fact, we’ve been helping people to do just that for over 50 years. We also steer you through the aftermath of a data breach – minimising the impact on you as much as possible.

In most cases, data breaches happen because of a failure to implement reasonable and robust processes. So claiming compensation isn’t just in your best interests. The only way organisations will be persuaded to take their responsibilities seriously and make the necessary improvements is by hurting their bottom line.

Find out more about making a data breach compensation claim.

[1] Lloyd v Google

yahoo data breach
, ,

Making a Yahoo data breach claim in the UK

Yahoo suffered a series of hacks by organised crime groups between 2012 and 2016. These attacks were possible due to systemic failures in its cybersecurity systems. One of the worst Yahoo data breaches happened in 2014. In this hack, a Russian state-sponsored cyber-attack saw personal data stolen from over 500 million customers worldwide.

Cybercriminals got access to Yahoo users’:

  • Names
  • Email addresses
  • Telephone numbers
  • Passwords
  • Encrypted security questions and answers.

This information has the potential to cause serious damage to victims of the breach. This includes financial fraud, identity theft and emotional distress.

Has Yahoo paid compensation for these data breaches?

Since 2016, Yahoo has been under intense scrutiny and pressure to do things better.

In June 2018, the UK’s Information Commissioner’s Office (ICO) fined Yahoo £250,000 after investigating failures at the company. This investigation found that Yahoo had not taken appropriate measures to protect customer data. The ICO also discovered that these inadequacies in data security had been in place for a long time.

What’s more, in September 2019, Yahoo confirmed that it was nearing a $117.5 million settlement. Ths payout is designed to end a massive class-action lawsuit for the series of data breaches. However, the money will only be given people who live in the US and Israel.

In the UK, the ICO has fined Yahoo for its data privacy failings. But none of that money will go to victims of the Yahoo data breaches. So, if you are a UK customer of Yahoo, what can you do?

Join our Yahoo data breach group action

Hayes Connor Solicitors is launching a group action to help UK victims of the Yahoo data breach to claim the compensation they deserve.

Find out more about group actions.

If you are concerned that your data was treated negligently by Yahoo, contact Hayes Connor Solicitors immediately. Because of the settlement reached in the US, and the result of the ICO’s investigation in the UK,  you could have a very strong case.

What do you need to know about joining our Yahoo data breach group action?

  • If you had a Yahoo account between January 1, 2012 and December 31, 2016, you could be entitled to data breach compensation
  • You do not need to have suffered any financial loss to claim. If you have experienced damage or emotional upset caused by Yahoo’s breach of the Data Protection Act, you have a right to claim compensation
  • Our Yahoo data breach group action is no win, no fee
  • There are no costs to join our group action and there is no obligation to proceed.

The data breaches at Yahoo happened because of a failure to implement reasonable and robust processes. Yahoo has failed to uphold your privacy rights. Furthermore, claiming compensation isn’t just in your best interests. It is often the only way organisations are persuaded to take their responsibilities seriously and make the necessary improvements.

To find out more about joining our group action, and for more information about this case, fill in our quick form. Once done, we will contact you to talk you through the next steps.

REGISTER NOW

 

ba data breach
, , ,

What evidence do you need to join the BA data breach?

The ICO has announced plans to fine British Airways (BA) a whopping £183.93 million for its 2018 data breach. As a result of the BA data breach, almost 400,000 British Airways customers had their personal details and bank cards stolen. Enough details were exposed to make the threat of cybercrime a real possibility. Many banks had to cancel and re-issue cards as a result of the breach.

While cybercriminals caused the breach, the ICO is coming down strong on BA. This is because the privacy violation was only possible due to inadequate security arrangements at the airline.

However, while the ICO has the power to impose data breach fines, it does not give this money to victims of the data breach. As such, we have launched a group action to help victims of the BA data breach to get the compensation they deserve. And, we are currently collating valuable information about how this privacy violation has affected people to help us make the strongest claim possible.

What do you need to join our BA data breach?

To join our BA group action, we need evidence that your data was put at risk by the data breach. British Airways claims that it has emailed everyone involved in the violation, so if you still have that email, we can use that to start your claim.

However, in some cases, victims of the British Airways breach may not have received this email. For example, it might have gone into your spam folder. As such, we would advise you to check to make sure you haven’t received an email from the company (but do not click on any suspicious links).

Of course, if the email did go into your spam folder, it may have already been automatically deleted. If this is the case, you will need to provide alternative evidence.

If you haven’t got the email from BA, you can provide:

  • Evidence that you purchased tickets from BA on or between 22.58 on the 21st August 2018 and 21.45 on the 5th September 2018. Only people who bought tickets during this specific timeframe were impacted by the data breach
  • Evidence of any fraudulent transactions/attempts/alerts/cancelled cards that relate specifically to the card you used to purchase tickets from BA
  • Confirmation that, as far as you are aware, your card was not put at risk by another data breach.

What if you haven’t suffered any losses?

If you did use your card to purchase tickets during the above period, but haven’t yet been the victim of any fraudulent activity, this doesn’t mean that you are safe. Often data stolen by cybercriminals is used in batches over time. So, the losses incurred by a data breach are not always immediately apparent.

As such, if you used your card during the affected period, and are worried that you could be at risk, you can still let us know.

What can you do if you were affected by the British Airways data breach?

At Hayes Connor Solicitors, our BA group action allows people affected by this breach to bring a claim on a collective basis. This strengthens their overall position and increases their chances of success.

The BA data breach was able to happen as the airline failed to implement reasonable and robust security processes. So, claiming compensation isn’t just in your best interests. The only way organisations will be persuaded to take their responsibilities seriously is by taking strong and decisive action

To join our British Airways data breach action compensation claim, register with us today. We can help you claim compensation for financial losses, as well as for inconvenience and distress.

REGISTER NOW