Posts

data breach

Credit card details hacked in Vision Direct data breach

Cybercriminals have compromised the contact information and financial details of Vision Direct customers in a recent data hack.

Both personal and financial information has been put at risk, including full name, address, phone number, email address, and password details, as well as sensitive credit card numbers, expiry dates and CVV security codes. This information could be used to carry out financial fraud and data theft, so customers are understandably worried.

Earlier this week, the UK retailer informed its customers that their data was stolen in a five-day hack between 3rd and 8th of November. It is understood that a bogus Google Analytics script added to Vision Direct’s website let hackers breach the company’s security defences.

Should you be worried?

The breach affects customers who logged into their Vision Direct account or updated their personal details during the period in which the hack took place. At present, 16,300 customers are thought to be at risk.

In a letter to its customers, Vision Direct has admitted that this “information could be used to conduct fraudulent transactions”.

It continues: “Vision Direct has taken steps to prevent any further data theft, the website is working normally and we are working with the authorities to investigate how this theft occurred.”

Vision Direct will contact any customers who it believes have been affected by the data breach. The company has also asked all users to review their bank statements and change their passwords on the site as soon as possible.

Is Vision Direct responsible for the data breach?

Even where cybercriminals target a business, in the eyes of the law it is still responsible for the data it holds. And, if found to be (even partially) responsible for a data breach, under the new General Data Protection Regulation (GDPR), it could be liable for millions of pounds in fines and compensation.

In this case, questions have been raised over whether or not Vision Direct had been storing CVV codes as it is not permitted to keep verification codes after payments are authorised. If this is found to be the case, the regulator is likely to come down hard on the business.

If you have suffered damage or distress caused by an organisation breaching its data protection responsibilities, you also have a right to claim compensation.

At Hayes Connor Solicitors, we have considerable experience helping individuals whose data has been breached and would also recommend some additional steps to keep users safe.

This includes looking out for fraudsters who attempt to gather more personal information (phishing), informing the Information Commissioner’s Office (ICO) about your concerns and reporting any suspected phishing attempts to the police and relevant authorities.

You can also check websites such as Haveibeenpwned.com to see if your details have been compromised in a data breach.

hayes connor solicitors
,

Claiming compensation for distress following a data breach

At Hayes Connor Solicitors, we have launched compensation claims against a number of high-profile companies that have failed to keep your personal data safe. We believe that these companies must be held to account for their failure to protect your information.

The General Data Protection Regulation (GDPR) places strict obligations on businesses to keep our data safe. And you could be entitled to compensation if an organisation fails to meet these. But did you know that you can also claim for GDPR distress as well as financial losses?

What the law says

If you have suffered damage or distress caused by an organisation breaching any part of the Data Protection Act (the UK’s interpretation of the GDPR), you have a right to claim compensation.

Crucially, you can make a compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss.

When making a compensation award, the court will look at the specific circumstances of your case. This includes things like the sensitivity of the data compromised and the nature of the disclosure. However, in order to be entitled to compensation for GDPR distress you must show that you have suffered emotionally because of the breach.

A personal data breach is a 21st-century version of being burgled. If a criminal came into your home and stole your private letters you would be distressed. So why should you feel any less upset at having your online data taken; particularly when these companies gave the burglar the keys?

Why shouldn’t you seek compensation for a failure to look after your information correctly?

The emotional impact of data breaches

Some people would have us believe that claiming for GDPR distress is an overreaction. That your physiological suffering and anguish doesn’t matter. You might hear friends and family saying that, while it is acceptable to claim compensation for any financial losses, you should put up with any anxiety caused by having your information stolen.

But according to Victim Support: “The effects of crime can also last for a long time, and it doesn’t depend on how ‘serious’ the crime was. Some people cope really well with the most horrific crimes while others can be very distressed by a more minor incident”.

The sheer scale of the information we share online is enough to leave victims open to the threat of fraud. For example, with enough information, cybercriminals can steal your identity, apply for credit in your name, set up fraudulent bank accounts and access your existing accounts.

So we should all be very worried about what could happen if our data gets into the wrong hands.

What’s more, being the victim of a crime can have a substantial impact on you mentally and physically. For some people, the effects can include a lack of sleep, feeling ill, unsettled or confused. Stress can also affect your friends, your family and your job. So being told to “get over it” isn’t helpful.

Crucially, the law understands the damage that can be caused by worry and upset. So you are 100% within your rights to make a compensation claim.

Claiming for GDPR distress following a data breach

At Hayes Connor Solicitors, we are committed to helping those affected by data breaches and cybercrime. And, we believe that the best way to make big companies pay for their failures is to use an expert lawyer to make a data breach compensation claim.

In addition, we also work with, and refer our clients to, other organisations and partners such as Victim Support. The leading independent victim’s charity in England and Wales for people affected by crime and traumatic incidents, last year Victim Support offered help to nearly a million victims of crime across the UK.

If you need assistance after a data breach, there are many resources on the Victim Support website to help you cope.

Don’t let them get away with it!

Something has to be done to make companies accountable for not looking after our information correctly. Claiming compensation isn’t just in your best interests, it could be the only way to ensure that businesses everywhere implement more secure processes.

If you want more help or advice about making a claim then contact us today

personal data
,

High street stores and personal data: know your rights

Most of have been there. We’re in a shop, just about to pay for our purchases, or sort a refund, when the assistant asks for “a few details”; usually our full name, our home address, and our email. Even if we’re only buying a pair of shoes, or returning a scented candle, many of us will hand over this information without understanding why it is needed.

 For some, it’s about not making a scene. The assistant is friendly, and they appear to be in no doubt as to why they are asking for our personal information. Also, there’s often a growing queue of people who aren’t going to be happy with a customer kicking up a fuss and holding up the line. So, what should you do?

What should you do if a store asks for your personal information?

 Put simply; the shop doesn’t NEED your details. Even television retailers, who previously had to request these to send to TV Licensing when they sold or rented out equipment, no longer require this info from you.

And with stringent data protection laws now in place following the introduction of the General Data Protection Regulation (GDPR), you are entirely within your rights not to hand this over.

 Do shops need personal data for a refund?

 If you’ve challenged why the shop needs this information, you might have been met with a vague response; “to process the return”, “for our records”…that sort of thing. However, we all have a statutory right to return faulty goods and, should you wish to change your mind about a purchase you simply need to do two things:

  • Keep hold of the receipt
  • Check out the shop’s returns policy before you buy.

Unless the return policy states explicitly that you have to hand over this information (and most of them don’t), then they cannot force you to. If the policy does state that it needs your personal information, you should still query why with a manager as this is not a legal obligation.

 Why do retailers want this information?

 Stores use your details for different purposes, most often for security, for marketing, and to improve the customer experience. You might like the shop retaining information about your shopping habits to help improve their service to you. For example, if you buy a particular shade of lipstick but can never remember the name, with access to the right info the shop assistant can find out that your preferred shade is ‘Frosted Pink.’ Also, most of us like it when we are offered discounts on our favourite buys.

 That’s fine. It’s your choice. But even if you are happy with this, to protect your sensitive information, you should still care about how your personal details are stored.

What are retailers allowed to do with your information?

Any personal data we provide (e.g. email addresses collected at the point of sale) is protected by UK data protection regulations. This means that it must be “collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes.”

For example, if an email address is given so that you can receive an e-receipt, then your data can only be used for this specific purpose. There is no issue with a shop offering an e-receipt, but if your email address is then used to send you marketing emails without your consent they might also be breaching electronic marketing rules. You also do not have to give your email details to a retailer, and you can ask to receive your receipt in the normal way.

If a shop does want your data to market to you, then they must make it clear that this is why they are asking for your information, and you have to give your consent before they can do this.

How is your data protected?

 With more and more shops using computers to store and process personal information, The Data Protection Act (the UK’s interpretation of the GDPR) sets out how it can be used; and how it can’t. The basic things you need to know is that:

  • Your personal data should be processed fairly and lawfully
  • It must be obtained only for a specified reason and can’t be handled in a way that is incompatible with that purpose
  • The information held must be adequate, relevant and not excessive when compared with the purpose for which it is to be used
  • It must be accurate and, where necessary, kept up to date
  • It must not be kept for longer than is necessary for the intended purpose
  • It must be processed in accordance with the Data Protection Act. This means that it must be kept safe and secure, and that appropriate measures will be taken against unauthorised or unlawful processing of this information, as well as against accidental loss, destruction, or damage. So, businesses must keep the information backed up and away from any unauthorised access
  • No company can sell or give away your information without your explicit consent.

 You can find out more about these principles on the Information Commissioner’s Office (ICO) website.

 What should you do if asked to hand over your details?

 In most cases, we trust these retailers. Why wouldn’t we? They are high street shops, with familiar names, big shiny signs above their windows and friendly authoritative staff. So, it can be easy to assume that they wouldn’t ask us for our address if they weren’t allowed to do so. We also trust them to hold our information safely once given.

 However, in 2018, high street chemist Superdrug was held to ransom by hackers. The cybercriminals contacted Superdrug claiming to have accessed the details of 20,000 customers.

The compromised data included names, addresses, dates of birth, phone numbers, and point balances. And, while no bank or payment card details were believed to have been accessed, the information stolen is already enough to cause severe distress to those affected. And this is just one example of a high street retailer being hit by a data breach.

Today’s cybercriminals don’t just care about our financial details. They can also cause havoc with our personally identifiable information. In fact, with enough data, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts.

So, should you hand over your details? Well, as with most things, you have a choice. A choice to ask questions, and a choice to exercise your own free will based on the answers that are provided to you.

While we have previously been content to hand out our personal information, with a huge jump in cyber fraud, it’s perhaps no wonder that consumer confidence is now lacking, and that data breach claims are on the rise.

Can you make a data breach compensation claim?

 When a breach happens, it’s vital that the Information Commissioners Office (ICO) investigates. If the company is found responsible, the ICO will then issue a fine.

However, such fines are little compensation for victims who have suffered financial loss and/or stress due to an organisation’s negligence. So, while the ICO does not award data breach compensation, our data breach solicitors can help you with that.

At Hayes Connor Solicitors, we’ve been helping people to get the compensation they deserve for over 50 years, so we know what it takes to make a successful data breach claim.

Data breaches often have severe consequences for those affected, and you could be entitled to thousands of pounds in compensation depending on your circumstances. And, because we offer no-win, no-fee funding arrangements, you have nothing to lose.

,

Data protection complaints increase leading to possible rise of GDPR breach compensation

According to the Information Commissioner’s Office (ICO) – the watchdog responsible for regulating data protection laws in the UK – the number of reported data protection complaints has almost doubled since April this year. If the regulator upholds these complaints, there could be a corresponding rise in GDPR breach compensation claims.

Common causes for these data violations include:

  • Data sent to the wrong recipient
  • Loss of theft of paperwork
  • Failure to redact data
  • Failure to use bcc when sending an email.

The increase in data breach complaints has happened since the introduction of the GDPR on May 25th.  This saw more robust data protection laws come into force. GDPR is the most significant change to data privacy regulations in over two decades. The new rules are designed to:

  • Boost the rights of individuals by giving them more control over their information
  • Put more limitations and responsibilities on how organisations can handle personal data
  • Make data protection (including data breaches) more transparent.

The GDPR also saw the introduction of tough penalties for data breaches. In fact, companies who fail to put adequate data protection processes in place and subsequently suffer a breach could face fines of up to €20,000,000 or 4% of their total global annual turnover for the last financial year.

While the ICO does not award GDPR breach compensation to victims, if a company is found guilty of a data violation this can strengthen an individual’s claim.

According to the ICO:

  • 4,214 data protection complaints were made in July
  • 3,098 data protection complaints were made in June
  • 2,310 data protection complaints made in May
  • 2,165 complaints were made in April.

The stats exclude the health sector.

The figures indicate that more and more people are becoming aware of their data protection rights. This makes sense as there have been many high-profile data protection scandals over the last few months. For example, at Hayes Connor Solicitors we are currently pursuing cases against:

  • Emma’s Diary. Emma’s Diary sold its users’ information to Experian’s marketing division. This data was then used to create a database which the Labour Party manipulated to profile new mums in the run-up to the 2017 General Election. Find out more about the Emma’s Diary data breach
  • Dixons Carphone. The Dixons Carphone or Carphone Warehouse data breach took place in 2017. It resulted in 10 million customer records being accessed from Currys PC World and Dixons Travel stores. The details stolen by cyber criminals include names, addresses, phone numbers, dates of birth, and email addresses. All of which can be used by cybercriminals to commit further crimes. Find out more about the Carphone Warehouse data breach
  • Ticketmaster has admitted that thousands of UK customers have been put at risk due to third-party software on their website. This has since been removed but not before the software accessed a number of customers’ personal and financial details. Find out more about the Ticketmaster data breach
  • Last year, Equifax warned that up to 400,000 UK consumers might have had their personal details stolen. The data included names, address, dates of birth, and credit card numbers. Find out more about the Equifax data breach.

If you have been affected by any of these cases, or if you want to make a GDPR breach compensation claim against another organisation, let us know.

Making a GDPR breach compensation claim

If you have suffered damage or distress caused by an organisation breaching any part of the Data Protection Act (the UK’s interpretation of the GDPR), you have a right to claim compensation.

You can make a GDPR breach compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss.

With enough information, cybercriminals can steal your identity, apply for credit in your name, set up fraudulent bank accounts and access your existing accounts. And just the thought of this happening can cause emotional distress. So why shouldn’t you seek compensation for this failure to look after your information correctly?

At Hayes Connor Solicitors our initial assessment is always free of charge. If we believe you have a substantial, complex case, we’ll go through your options with you and may be able to act for you on a NO WIN, NO FEE basis. For smaller claims, our quick assessment form will help you to start your GDPR breach compensation claim, quickly and easily.

Our expert data breach compensation solicitors make sure you receive the maximum compensation possible in the shortest possible time. However, with strict time limits in place for making data breach claims (currently all breaches going back six years could be subject to a claim) it’s essential to act now.

CONTACT US AND START YOUR GDPR breach compensation CLAIM TODAY

data breach compensation
,

Can you afford to use a solicitor for your data breach claim?

When it became clear that people across the UK were mis-sold PPI, often to the tune of thousands of pounds, there was a surge of new claims management companies on the scene. All promising to help consumers get back what they were due.

But, all too often, these companies were more concerned about making fast cash than helping victims. With assurances of no up-front fees turning into extortionate commission rates that left people short-changed.

Fast forward to today, and it seems like its data breach claims that are now rarely out of the news. But, as we start to talk about holding companies to account for any breach of trust when it comes to our valuable information, so do comparisons with PPI claims.

And, it is not hard to see why. It is possible that high-profile data breaches could be seen as a way to make a profit by unscrupulous claims management “factories”.  So it’s vital that you are aware of what is at stake and the options available to you.

Don’t let them get away with it!

Organisations must be held to account for their failure to protect our personal data. The sheer scale of the information we share on online is enough to leave victims open to the threat of fraud.

For example, with enough data, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts. And we should all be very worried about what could happen if this gets into the wrong hands.

With large-scale, high-profile hacks and breaches happening more and more often, something has to be done to make companies accountable for these losses. So, claiming compensation isn’t just in your best interests – it could be the only way to ensure that they implement more secure processes.

Should you do it yourself?

You can make a data breach claim on your own. What’s more, if you go ahead and no settlement is reached, you can even represent yourself in court. In fact, the number of people doing this over recent years has increased.

The legal term for representing yourself this way is called ‘litigating in person’ (LiP). However, while there has been a rise in the number of people doing this, this is often because they don’t think they have any choice due to a lack of alternative funding options.

The benefits of using an expert data protection lawyer

At Hayes Connor, we believe that the best way to make big companies pay for their failures is to use a specialist lawyer. Of course you would expect us to say that – but let us explain why.

Firstly we have the legal expertise needed to take on big players such as Ticketmaster and Equifax. And, where enough people come forward, we might even launch a group action against a company.

We believe that a group action is undoubtedly the best way forward for data breach claims of this nature. It allows people with the same type of claim to bring it together on a collective basis to strengthen their overall position and increase their chances of settlement or success in litigation.

In addition to our own legal expertise, we also work with expert barristers to help us win our cases. So we are confident that our team will get the results you deserve.

Can you afford to use a data breach claims lawyer?

We deal with all breach claims on a no-win, no-fee basis. This means that, if your claim is not successful, you won’t have to pay a penny.

To cover our costs, if we win your claim, we will charge a success fee. This is capped at 25% of any compensation you receive. We have to charge this to cover our costs in smaller/individual cases. There are no hidden charges or other administration fees.

In some group actions, we expect to be paid by the offending party and might even be able to work at no charge to you. This means, when you win, unlike with a claims management company, you could receive 100% of the compensation awarded to you.

Crucially, when it comes to making a compensation claim, a lack of care can leave data breach victims open to advice and representation below the standard expected by the profession, and this could ultimately see you lose out financially as a result.

Why appoint Hayes Connor Solicitors?

Leading our field when it comes to understanding this often complex area of law, we provide clear and comprehensive advice and legal support to ensure the best possible result for you.

Unlike those unscrupulous claims management companies we only ever get in touch with people who have asked us to, which means we NEVER cold call, send spam texts, spam emails, or engage in any other form of nuisance marketing.

What’s more, at Hayes Connor we understand that making a compensation claim can be stressful; especially where your sensitive information has already been breached. So, our process is fully compliant with the latest guidance, and we never put your details at risk.

FIND OUT MORE ABOUT MAKING A DATA BREACH CLAIM

,

Data protection complaints increase by almost 50% in three months

According to the Information Commissioner’s Office (ICO), the number of reported data protection complaints has almost doubled since April this year. The increase in data breach complaints has happened since the introduction of the GDPR on May 25th.

The stats show that:

  • 4,214 data protection complaints were made in July
  • 3,098 data protection complaints were made in June
  • 2,310 data protection complaints made in May
  • 2,165 complaints were made in April.

In total, there were 957 reported data security incidents in Q4 2018. Common causes for these data violations include:

  • Data sent to the wrong recipient
  • Loss of theft of paperwork
  • Failure to redact data
  • Failure to use bcc when sending an email.

Worryingly, reported cybersecurity incidents also increased by 31% over the same period. Overall, general business, education and local government were the sectors with the most reported data breaches (the figures exclude the health sector).

Commenting on the changes since the introduction of the GDPR, a spokeswoman for the ICO said: “It’s early days and we will collate, analyse and publish official statistics in due course. But generally, as anticipated, we have seen a rise in personal data breach reports from organisations.

“Complaints relating to data protection issues are also up and, as more people become aware of their individual rights, we are expecting the number of complaints to the ICO to increase too.”

A rise in data breach awareness

The stats indicate that more and more people are becoming aware of their data protection rights. This makes sense as there have been many high-profile data protection scandals over the last few months.

For example, at Hayes Connor Solicitors we are involved in the following cases:

 

  • Emma’s Diary. Emma’s Diary sold its users’ information to Experian’s marketing division. This data was then used to create a database which the Labour Party manipulated to profile new mums in the run-up to the 2017 General Election. Find out more about the Emma’s Diary data breach
  • Dixons Carphone. The Dixons Carphone or Carphone Warehouse data breach took place in 2017. It resulted in 10 million customer records being accessed from Currys PC World and Dixons Travel stores. The details stolen by cyber criminals include names, addresses, phone numbers, dates of birth, and email addresses. All of which can be used by cybercriminals to commit further crimes. Find out more about the Carphone Warehouse data breach
  • Ticketmaster has admitted that thousands of UK customers have been put at risk due to third-party software on their website. This has since been removed but not before the software accessed a number of customers’ personal and financial details. Find out more about the Ticketmaster data breach
  • Last year, Equifax warned that up to 400,000 UK consumers might have had their personal details stolen. The data included names, address, dates of birth, and credit card numbers. Find out more about the Equifax data breach.

 

If you have been affected by any of these data protection cases, or if you want to make a data breach compensation claim against another organisation, let us know.

At Hayes Connor Solicitors, we’ve been helping people to get the justice they deserve for over 50 years, so we know what it takes to make a successful data breach compensation claim.

Crucially, the law recognises the potential damage that is caused by physiological suffering. So, you can make a compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss.

START A DATA BREACH CLAIM

 

data breach ticketmaster
,

Ticketmaster data breach: putting GDPR to the test

Following the Ticketmaster data breach – where cybercriminals got away with customers’ personal and financial information- the latest data protection regulations are now being put to the test.

Unless you have been living under a rock, you will have heard about GDPR. In fact, you’re probably fed up hearing about it. But GDPR is likely to have a significant impact on the way companies handle your valuable data; with enormous fines for those that don’t look after it properly.

And, according to data protection lawyers, the Ticketmaster data breach could be a real test to see if the legislation will hold companies to account.

What happened in the Ticketmaster data breach?

Ticketmaster was affected by a substantial data protection breach after cybercriminals hacked the company’s website. Different customers had different data stolen including:

  • Financial information stolen and used. There are reports that customers of Ticketmaster have been the victims of theft, with their cards used on money transfer service Xendpay, Uber gift cards and Netflix (among others). Anyone who has had their financial details stolen and used fraudulently could now be looking at compensation in the region of £5,000
  • Financial information stolen. Many of those affected by the Ticketmaster data breach will have had their financial details stolen but not used (at least not yet). Crucially, you can make a compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss. If you had your financial details stolen during the Ticketmaster data hack, you could be looking at compensation in the region of £3,000
  • Email address stolen. If your email account has been hacked the consequences could be devastating. Again, it doesn’t matter if there is no evidence of your data being used. If the distress of having your data in the hands of cybercriminals has caused you suffering, you can make a claim. Anyone who has had their email address stolen could be looking at compensation in the region of £1,500
  • Other personal information stolen. Along with the financial info and email addresses stolen, the Ticketmaster hackers also gained access to personally identifiable information (PII). PII includes any data that can be used to identify a specific individual, and, if it gets into the wrong hands, it can be used to undertake identity fraud. Anyone who has had their personal data stolen could be looking at compensation in the region of £500 – £1,000.

 

Find out more about the different types of data breaches in this case.

Ticketmaster data breach and GDPR

The Ticketmaster data breach affects up to 40,000 people who bought tickets between September 2017 and 23 June 2018. With the GDPR coming into force on May 25th 2018, this means that the breach spans two different data protection acts:

  • The Data Protection Act (DPA) 1998
  • The Data Protection Act (DPA) 2018 (the UK’s version of the GDPR).

These acts have drastically different level of fines. The first up to a maximum of £500,000 and the second up to £17 million (or 4% of an organisation’s annual turnover, whichever is higher).

It is not yet clear which legislation is relevant, but the breach could be judged under both. Alternatively, the entire data protection failure could be treated as a breach under GDPR as it kept happening after the new laws came into force. If GDPR is used, the Ticketmaster data breach case will be considered a test case that is likely to set the tone for action to be taken by the ICO in future breaches.

What does this mean for you?

In truth, while data protection lawyers are eagerly waiting to see what legislation applies, for people who had had their data breached it doesn’t make much difference. Mainly because, while the ICO can impose a fine on a company, this isn’t given to victims of the data breach.

The only way for you to hold Ticketmaster to account is to make a data breach compensation claim.

At Hayes Connor Solicitors, we have already been contacted by lots of Ticketmaster customers who are worried that their data was not looked after as carefully as it should have been.

In response, we are supporting no-win, no-fee compensation claims for everyone who has had their data accessed in the Ticketmaster data breach. Depending on the numbers involved we may even start a group action against Ticketmaster.

Find out more about making a claim against Ticketmaster.

To start your compensation claim, you will need you to register with us. We’ll let you know what is happening in this case and if and when you can make a data breach compensation claim.

 

REGISTER NOW

data breach lawyers
,

Ticketmaster to close resale site Get Me In. Can you still make a data breach claim?

The Ticketmaster data breach saw cybercriminals get away with the personal and financial information of thousands of people in the UK. As well as the main Ticketmaster site, the data hack also affected, TicketWeb and the resale website Get Me In.

Following the breach, Ticketmaster is now closing its secondary ticketing websites Seatwave and Get Me In, in a bid to combat touts. However, if you used Get Me In and were affected by the data breach, you can still make a compensation claim against the company.

The Information Commissioners Office (ICO) has already made it clear that it does not approve of companies closing to evade data breach inquiries. Earlier this year, and following the announcement that controversial data analytics firm Cambridge Analytica was to shut down, the ICO said that: “investigations cannot be impeded by the closure of these companies.”

In this case, there is no evidence that this is why Get Me In is closing. In fact, according to Ticketmaster: “We know that fans are tired of seeing others snap up tickets just to resell for a profit on secondary websites, so we have taken action”.

However, it is vital that Get Me In customers affected by the Ticketmaster data breach know their rights and are not put off making a claim.

What happened in the Ticketmaster data breach case?

Ticketmaster was affected by a substantial data protection breach after cybercriminals hacked the company’s websites. Different customers had different data stolen including financial information (some of which was fraudulently used), email addresses and other personally identifiable information (PII).

Find out more about the different types of data breaches in this case.

Make a Ticketmaster data breach claim

The only way for you to hold Ticketmaster to account is to make a data breach compensation claim.

Crucially, the law recognises the potential damage that is caused by physiological suffering. So, you can make a compensation claim if you have struggled emotionally following a data breach, even if you have not experienced any financial loss.

At Hayes Connor Solicitors, we have already been contacted by lots of Ticketmaster customers who are worried that their data was not looked after as carefully as it should have been.

In response, we have now submitted a letter before action (LBA) to Ticketmaster. This LBA lets Ticketmaster know that we plan to start proceedings against them, and that we are very serious about getting our clients the compensation they deserve.

If you want to join our action against Ticketmaster, it is not too late!

To start your compensation claim, you will need you to register with us. To date, our action against Ticketmaster has more than 500 clients, and it is clear that the data breach is extensive. As such, we expect Ticketmaster to take our claim very seriously.

Data breaches often have severe consequences for those affected so you could be entitled to up to £5,000.

REGISTER NOW 

equifax
,

Equifax staff treating customers with disdain following data breach

The Equifax UK breach case is drawing to a conclusion, and we are hopeful that we will soon be able to start a group action against the company. However, it seems that the more we find out about this case, the worse it gets.

Earlier this year, we described how the lack of care shown towards customers affected by the Equifax data breach was made even worse when it was revealed that a former Equifax executive sold his shares in the company before the news of the data breach went public.

Earning roughly $1 million in the process, the executive was set to profit at the expense of millions of customers (in the UK and US). Luckily he was later charged with insider trading, but his actions reflect a disdain for consumer data protection that is all too common.

Last week there were reports that yet another staffer at Equifax was slapped with an insider trading rap. This time the culprit was a software engineering manager who “traded on confidential information he received while creating a website for consumers impacted by a data breach.”

It’s becoming clear, therefore, that something has to be done to hold Equifax to account. Particularly as people at the company appear to be showing a complete disregard of the impact the data breach has had on customers.

What is happening in the Equifax UK breach case?

In the UK, investigations led by the Information Commissioner’s Office and Financial Conduct Authority (FCA) are ongoing. However, industry experts are predicting that the FCA investigation into the Equifax data breach is now coming to an end.

If the FCA finds Equifax guilty of not looking after consumer data with the necessary levels of care, this could open the floodgates to millions of compensation claims being made against Equifax.

How much compensation could you receive?

While each case is different, it is expected that each person will be able to claim between £500 and £3,000. With 14 million customers affected in the UK alone, in addition to any fines imposed by the regulator, Equifax could find itself facing a compensation bill of millions of pounds. And that’s just for the Equifax UK breach. The figures in the US could be even more staggering.

Find out more

A breach of trust

Your data is a valuable commodity. With enough information, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts. But all too often companies like Equifax do not protect it as well as they should do. As a result data breaches are on the rise.

To make matters worse, in most cases, data losses are entirely preventable; businesses just don’t like investing in cybersecurity, updating their systems, or training their staff.

With large-scale, high-profile hacks and breaches happening more and more often, something has to be done to make companies accountable for these losses. So, claiming compensation isn’t just in your best interests – it could be the only way to ensure that they implement more secure processes.

Don’t be bought off!

Those affected by the Equifax UK breach were offered some free services to reduce their risk following the hack. These included a credit-report monitoring service, a web monitoring service, the option to get a copy of your credit report by post, and registration to a fraud protection service.

However, it’s vital that you know your rights before you sign up. Make sure you are not inadvertently signing away your rights to pursue a compensation claim at a later date.

How to make a compensation claim against Equifax

If you are in any way concerned, contact Hayes Connor Solicitors and let us know. You can register your details here.

We will check if you have had your data breached (if the company has not written to you and admitted as much already). And, once we have established that your data has been violated, we will start the claims procedure on your behalf.

When the results of the FCA investigation are revealed, we will make sure you are part of our group action against Equifax. With this group action claim, you and the other claimants collectively bring your cases to court against Equifax. Where circumstances are very similar, group actions can be a powerful tool and can have a bigger impact than a single claim.

VISIT OUR SECURE DATA BREACH FORM

data breach claims
,

23,000 Fortnum & Mason customers could be entitled to data breach compensation

High-end grocer Fortnum & Mason, has become the latest business to suffer a significant data breach due to hackers. This week, the store revealed that 23,000 customers have had their personal details stolen. The compromised information includes email addresses, home addresses, phone numbers and social media names.

Those affected should now consider claiming for data breach compensation.

People who may have had their details stolen include:

  • Those who voted for the TV personality of the year category at the store’s food and drink awards
  • People who entered a competition to win tickets for an exhibition of Charles I’s art collection
  • Customers who filled in a survey about the concierge service at Fortnum & Mason’s Piccadilly store.

The poll had been organised by Typeform, a company which specialises in creating surveys and forms. On 27 June Typeform discovered that an unknown third party had accessed its server and downloaded information. In response, it “immediately and fixed the source of the breach.”

Commenting on the latest data protection scandal, Fortnum & Mason chief executive Ewan Venters has said that the hack is mostly limited to email addresses and there is no evidence that highly sensitive information like bank details or credit cards have been accessed.

However, today’s cybercriminals don’t just care about our financial information. They can also cause chaos with personally identifiable information such as an email address. In fact, with enough data, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts.

The Fortnum & Mason data breach comes hot on the heels of a similar incident at Ticketmaster.

These types of incidents are becoming increasingly common and they often have severe consequences for those affected, so you could be entitled to thousands of pounds in data breach compensation. What’s more, it doesn’t matter if there is no evidence that the data has been used to carry out identity theft or fraud. If the data breach has caused you stress or anxiety then the law agrees that you are entitled to compensation.

All those affected have been contacted. So, if you have received confirmation that your details have been hacked, we would urge you to let us know and start a data breach compensation claim. If you took part in any of the surveys or polls listed above and you haven’t received an email, make sure that you check your junk mail folder.

Once registered with us, we’ll let you know what is happening in this case and if and when you can claim. You should also raise any concerns with the ICO.

 

REGISTER NOW