Have you been to Butlin’s? Your data might have been hacked.
Butlin's has revealed that up to 34,000 guests might have had their personal information stolen by hackers. The holiday camp has apologised for the breach and has set up a "dedicated team" to contact those guests who might be affected and advise them on what to do next.
What data was stolen in the Butlin's data breach?
The data accessed by hackers includes names, home addresses, email addresses, telephone numbers and holiday arrival dates. And, while it doesn't look like any financial information has been compromised, the data that has been stolen could be used by criminals to commit fraud.
The phishing attack happened within the last 72 hours. Phishing describes the illegal practice of sending emails claiming to be from reputable companies and individuals to encourage people to reveal personal information such as passwords and credit card details. Human error (through phishing attacks and other failures) is the greatest single point of weakness in the security of most organisations
Under the latest data protection regulations, any company made aware of a data breach has to self-report the incident as soon as possible. So, while Butlin's isn't yet sure if all 34,000 holidaymakers have been affected by the breach, it was obligated to report the incident to the Information Commissioner's Office (ICO).
According to a spokeswoman for the ICO: "Butlin's has made us aware of an incident and we will be making enquiries."
There are currently three Butlin's holiday camps. These are based at Skegness Bognor Regis and Minehead. If you have had a holiday at any of these camps and your data was stolen, you might be able to claim compensation.
With more and more organisations using computers to store and process personal information, concerns about online crime and the misuse of data are on the rise. However, you do have rights if your data is stolen or breached.
The ICO has the power to impose hefty fines on organisations who fail to meet their data protection requirements. And, while the ICO does not award compensation, you have the right to ask the ICO to assess an organisation if you think it is guilty of a breach. You can then use this information to support a data protection compensation claim.
Also, if you hear that a company is being investigated by the ICO for a breach of its legal obligations - as in this case - you should seek legal advice to see if you are entitled to make a compensation claim.
At Hayes Connor Solicitors we can investigate your claim. And we will work with the ICO to gather as much evidence as possible to help you succeed.
You can make a compensation claim even if you haven't lost out financially
If you have suffered damage or distress caused by an organisation breaching any part of the Data Protection Act, you have a right to claim compensation.
You can make a compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss.
With enough information, cybercriminals can steal your identity, apply for credit in your name, set up fraudulent bank accounts and access your existing accounts. And just the thought of this happening can cause emotional distress. So why shouldn't you seek compensation for this failure to look after your information correctly?
At Hayes Connor Solicitors our initial assessment is always free of charge. If we believe you have a substantial, complex case, we'll go through your options with you and may be able to act for you on a NO WIN, NO FEE basis. For smaller claims, our quick assessment form will help you to start your claim, quickly and easily.
We make sure you receive the maximum compensation possible in the shortest possible time. However, with strict time limits in place for making data breach claims, if you have been contacted by Butlin's about this incident it's important to act now.