We will put you in touch with the UK’s top data breach solicitors to help you get the data breach compensation you deserve from guilty companies, strictly no win, no fee and it’s completely free to check
This website is safe and encrypted
No spam policy
As featured in
£4,000 average claim
Customers, on average claim £4,000 from incidents of data breach
Free expert advice
Experts are ready and waiting to advise you in any way you need
No win, no fee
All solicitors work on a no win, no fee basis. 100% free, unless your claim is successful
60 second check
It only takes 60 seconds to begin your check for a potentially huge payout
No risk involved
There's no risk in checking. It will not affect your credit score and it's free
What Is a Data Breach?
A data breach is defined as the exposure of sensitive or confidential information to an unauthorised person, whether intentionally or unintentionally.
The person committing the breach can be a hacker, violating your private information for personal reasons or for the sake of a bigger entity. In some cases, the offender may not be a professional hacker at all, but rather just a grudging acquaintance of yours.
If a company that holds your data ends up giving it to an unauthorised party without your permission, this is also considered a data breach.
As you can see, any one of us can be subjected to a breach. Thus, we must try our hardest to protect our information, starting by understanding why and how a data breach occurs in the first place.
Alternatively, give us a call free on 0333 444 0325Lines open 9am - 5pm Mon to Fri
How Are Data Breach Compensation Claims Handled?
In the age where everything is computerised, data breaches have become among the most dangerous cybercrimes. Victims of these awful crimes have to deal with serious problems concerning the disclosure of their personal or professional data and as a result, they could be owed data breach compensation.
This is why, Data Breach Claims have been introduced to help you take legal action if you fall victim to a breach. Such claims may grant you compensation, and also ensure that the organisation responsible is held accountable for the breach.
In this article, we’re going to discuss everything you need to know about a data breach, such as what it is and how it may occur to you. We’ll also explain what the claims are, how you can make them, and what they can amount to.
Alternatively, give us a call free on 0333 444 0325Lines open 9am - 5pm Mon to Fri
What Is a Data Breach Compensation Claim?
A data breach claim is a claim you can make against an individual, an entity, or a number of defendants. In the claim, you state the defendant to be a responsible party for the exposure of your sensitive information, demanding financial compensation for the damages.
The current law allows you to make a claim for the material damage of the breach, like losing money, and the non-material damage, like suffering from distress and anxiety.
Can I Make a Data Breach Compensation Claim?
Due to the high frequency of data breaches, the General Data Protection Regulation (GDPR) came into place in 2018. The GDPR aims at protecting individuals and giving them control over their data in case a third party holds it. The third party here applies to social media platforms, online services, or offline retailer.
The GDPR’s laws state that you can make a data breach claim if you believe that your data has been breached. However, you must first attempt to reach an amicable agreement with the defendant, aka the third party, outside the court.
If the defendant declines your demand or you can’t settle things outside court, you have the right to take the matter to the court and make a legal claim. But bear in mind that you have to let the defendant know that you intend to take the claim to court.
How Much Data Breach Compensation Can I Receive?
The amount of data breach compensation varies according to the type of the breach and the court judgment.
These are some of the typical compensation ranges:
£900 – £25,700
The lowest compensation goes for the mild breach of personal data, such as your name, date of birth, home address, and email address.
You get a bigger compensation for the breach of medical information, starting from £2,000 to £5,000. You can get from £3,000 to £8,600 if your financial information is breached, depending on the complications of the breach.
You can get from £8,600 to £25,700 for the more serious data breach cases that have led to serious consequences.
£25,700 – £42,900
If the data breach has caused any sort of physical or mental diseases, your compensation can amount to £42,900. However, in such cases, you must provide evidence for your medical condition and your financial losses.
It’s important to note that these estimates aren’t fixed; it’s left for the court to decide your exact compensation award. In some cases, the court may deny your demand for compensation if it sees that you’ve not provided enough evidence for your case. It might even order that you pay for the defendant’s costs in such a case.
This is why we always recommend that you seek advice from an independent legal entity.
When are you eligible for data breach compensation?
Under the DPA and GDPR, you are entitled to file a data breach claim for up to £2,000 or more in compensation if:
Your personal data has been leaked, disclosed, corrupted, hacked, mis-used, or lost
The breach was deliberate or due to negligence
The breach occurred within less than six years
You have not suffered economic loss; you can still claim for the emotional impact the breach has had in your life
The company has offered you a free credit monitoring or anything similar
What do you need to show before making a claim for data breach?
For your claim to be successful you will need to demonstrate that the company that held your data failed to take all appropriate steps to ensure the safety and security of your data and that, as a result of their negligence, your data was released or made available to other, third parties or organisations without your consent. Any company that is holding your data has certain obligations with that data and a claim can be made if:
The breach could have happened as a result of the data being lost or hacked.
Released to a non-related party without your consent.
The information held by the company hadn’t been updated and the inaccuracy of this caused you damage. This could relate to financial details of your life for example.
Personal information had been used in an inappropriate manner.
What is the average compensation amount for breach of the Data Protection Act?
The average compensation for breaching the Data Protection Act is between £1,000 and £42,900. In some cases, you might be able to claim more compensation for a personal data breach that causes you significant emotional distress. The following figures can be used as a rough guide to how much compensation you could receive as a result of different types of breaches.
Type of breach
Possible compensation amount
Breach of a person’s name, date of birth, home address, and email address
Breach of medical records
Breach of financial information
Breach that leads to an illness or depression (medical evidence would be needed to support this alongside evidence to show any other losses e.g., earnings)
How much have previous data breach claimants received in compensation?
The amount of money that data breach claimants have received in compensation has increased over the years. Initial breaches of the Data Protection Act typically only won about £2,500 in damages related to the disclosure of personal information. However, as companies have been collecting more private data, more cases have been going to court and leading to more precedents being set.
The majority of data breach claims are settled outside of court, but the amount of money that is agreed on is normally informed by cases that are similar in nature.
Targeted by a hack that led to around 500,000 user accounts appearing for sale on the dark web
All compensation amounts are estimates/averages and are dependent on the degree to which the individual has been affected by the data breach.
The biggest data breachesData breaches have been increasing both in terms of number and the amount of people affected. Many big companies have been affected resulting in some very large scale breaches and compensation pay outs.
Click a company to view more information about their breaches
Typical claim value
Number of records compromised
Between February and June 2018
A hack occurred in which the personal and financial details of Ticketmaster customers were stolen by cyber criminals. The information stolen by the hackers was all information that, in the wrong hands, could be misused for fraudulent purposes.
Frequently asked questions & Useful infoQuestions we are frequently asked by our users
How Does a Data Breach Happen?
As implied in the definition, data breaches may not always be intentional. Some occur after the user makes a certain mistake.
These are some of the most common ways by which data can be breached:
1. Insider Misuse
In companies, authorised employees may exploit their position to share sensitive data about the company, either with a competitor or with the public. Though these employees are authorised to see the data, this is still considered a crime.
Malware is so commonly used these days. It usually doesn’t require an experienced hacker to send a fake link to a whole bunch of people. Once they open the link, the hacker can access different kinds of data according to the malware type.
For example, keyloggers will give the hacker access to any password you type. RAM scrapers will expose sensitive data by scanning the device memory.
Ransomware will block your access to your data until you pay the required ransom. File-less malware is a more malicious form of malware that not everyone can trace; instead of depending on separate virus-laden files, it infects your device through legitimate software, leaving no sign behind
One of the malware types that people easily fall for is trojans, which disguise as completely legitimate software. Once you download it, your data gets breached.
What Can a Data Breach Lead to?
A data breach can lead to multiple scenarios, depending on the information that the hacker has gotten access to. These may include:
Intellectual property theft
Leakage of private information
Corruption of databases
What Are Some Data Breach Examples?
We’ve seen multiple high-profile cases over the years. The results of these were enormous. Let’s talk about some of the biggest data breaches that have occurred:
Back in 2012, the popular social media platform, LinkedIn, was hit by a huge computer data breach. As if this wasn’t scandalous enough, LinkedIn, at the time, reported that 6.5 million accounts have been compromised. In 2016, however, the hackers admitted to breaching 167 million accounts, exposing their credentials.
While the hackers were caught and imprisoned, the data they stole still remains on the dark web; they had sold it to a Russian forum. As a result, LinkedIn advised its users to change their passwords if they haven’t already since 2012.
If you were active on social media between 2017 and 2018, you probably know how the video-messaging app, Dubsmash, was one of the hottest trends. Well, in 2018, a data breach compromised the data of 162 million Dubsmash users.
The hackers were able to get hold of users’ email addresses, usernames, dates of birth, and passwords, then sold them to Dream Market, a dark web market. Later, the information was sold to other websites.
Dubsmash hasn’t confirmed the number of the breached accounts or how the breach occurred, but it still advised users to change their passwords.
Dixons Carphone is a British electrical and telecommunications retailer. In 2018, it was hit by what would be announced as the biggest online data breach in the UK. The data breach affected 10.2 million customers and compromised their personal data.
As a result of this huge breach, Dixons Carphone was fined £500.000, which is the maximum fine for such cases.
The UK government has suffered from thousands of data breaches from August 2019 to July 2020, according to Freedom of Information (FOI) requests. The breaches hit several governmental institutions.
These institutions include the NHS Digital, where the data of 38 people, including employees and patients, was breached. The Driver and Vehicle Licensing Agency (DVLA) also presented 181 notifications of data breaches throughout that period.
How Can I Avoid a Data Breach?
The previous examples show that data breaches can happen to regular individuals, big companies, and even governments. This means that everyone should try their best to avoid such a crisis.
Here are some of the measures you can take to protect your data from being breached:
Keep Security Software Updated
Ensure that you have one of the top security software currently available. Once you get it, don’t ignore the software’s constant update reminders. Those updates are usually made in response to new data breach threats that need to be covered.If you’re new to the game, be on the lookout for fake antivirus software that can end up being malware.
Regular Vulnerability and Compliance Management
Vulnerability and compliance management (VCM) detects the vulnerabilities in your digital infrastructure and points out the weak points in your assets. You can use a VCM tool regularly to specify gaps in your system and solve the issue.
Backup and Encrypt Your Data
Encrypting your data can always prevent unauthorised individuals from accessing it. You must also back up your data regularly. If possible, you should back up your data on cloud data backup services instead of hardware that can become corrupted or, worse, get stolen.
Stay Safe on Social Media
It’s important to read the platform’s security terms and conditions, use strong passwords, avoid contacting anonymous accounts, and limit the information you share on social media. If any data can be used against you in any way, avoid sharing it.
Train Your Staff
You should always raise your staff’s awareness about the sensitivity of the data and the need to keep it secured and protected.
You also need to train them on following the best practices so they can avoid making mistakes that might open the door for security breaches.
Here are some points your staff can train on:
Coming up with strong passwords
Avoid using the same password for multiple files
Limiting the number of people who have access to sensitive data
Instantly reporting any data leakage or unauthorised data access that may occur
What Can I Do About a Data Breach?
Sometimes, the breach can happen to a company that holds your data. In this case, you have the right to demand compensation from the breached company if you believe that the breach has affected your sensitive data.
Typically, most people settle claims outside of the court, since most companies would prefer to just give you the money instead of risking their reputations. But if you fail to reach an agreement with the company, you can take legal action by making a data breach claim.
How Data Breach Claims Can Help You with Your Compensation Claim?
If you’re determined on going to court, you should have legal support. At Data Breach Claims, we’ll help you determine whether you have a strong case or not. If it’s a yes, our team will introduce you to the best and most suitable solicitors and claims management companies for you.
The experts will give you solid legal advice and help present your claim to the court to guarantee you get the compensation that truly makes up for the hardships you had to go through.
Data breach compensation statistics infographic
How about taking a look at data breach statistics in 2021, via our infographic see below;
Any access from an unauthorised person to sensitive data is considered a data breach. It doesn’t matter whether this person intended the offence, or it was done out of carelessness. It also doesn’t matter what the offender intends to do with the data.
Data breaches can result in many terrible things. They can affect the victim both financially and mentally. Thus, you should do your best to ensure your data, or the data of your clients, always remains secure and private. As a victim, you should take measures to ensure you’re getting your rights and the compensation you deserve.
If you've seen all that you need to see, we askWhy use us?
We offer a free consultation to anyone looking to make a data breach compensation claim
No win, no fee
If your case or cases have no financial payout to you, you don't pay a single penny
Data protection is the legal utilisation of your data while ensuring your privacy and safety. Anyone who possesses data of people, aside from one’s own household, is responsible to comply with the Data Protection Act (DPA) and the General Data Protection Regulation (GDPR), or else, they’ll be held accountable by law.
For the government, data protection would mean safeguarding your information. Its role is to keep it safe from any loss, or corruption.
Data protection is a guarantee that your rights are reserved. With that in mind, a relationship built on confidence can be created between you and organisations. It’ll allow you to accept and support the use of your data in public, or private sectors which will be beneficial to both parties involved.
Not to mention, because of the internet, your data flows easily beyond borders’ limits. So, even trade and cooperation on international levels rely fully on Data Protection.
What Can You Do If Your Data Protection Is Breached?
First, you’ll need to find out what kind of data has been affected, and what steps the organisation plans on taking to help you. If the association fails to repair the damage or to give you compensation for the damage done, then, you can reach out to Data Breach Claims.
Data Breach Claims will connect you with the kind of expertise the situation calls for. It’ll put you in contact with claims experts who will act as an intermediary between you and the company being claimed against.
You can also report your case to the ICO who will investigate the matter and potentially fine the organisation. They won’t give you compensation, but their findings and assertions will help the matter greatly.
What Are Data Protection Breaches?
If your data is breached, that means that your personal information has been accessed, altered, lost, destroyed, or shared with an unauthorised person without your consent. It’s basically a failure of the system that is intended to protect. That could happen to individuals, companies, or even the government itself.
When Can I Make a Data Protection Breach Claim?
If you suffer any damage whether it’s material, or emotional because of a data protection breach, then you have a right to make a claim and require compensation.
What Is a Data Protection Breach Compensation Amount?
The amount varies depending on many factors:
How sensitive the data in concern is
How bad the infringement is
The number of unauthorised people to access your data
The length of time between the breach and you being informed
How severe the impact is on you
When a court assesses the damage caused by a breach, they will decide if it’s a low-risk case or one that brought on serious damage. You will then get a data protection breach compensation that ranges between hundreds or even thousands of pounds.
Personal Data Breach Compensation
What Is a Personal Data Breach?
The General Data Protection Regulation (GDPR) describes a personal data breach as a violation of secure or confidential personal information by an unauthorised party. The personal data may be lost, misused, stolen, or destroyed. This covers both accidental and deliberate breaches of data.
An example of a personal data breach is when an unauthorised third party like a hacker gains access to your data. Another data breach example is the loss of availability or alteration of your personal data without permission.
Can I Make a Personal Data Breach Claim?
Suppose you’ve been victim to a security violation, meaning your personal information has been violated, copied, stolen, destroyed, or transmitted by an organisation. You have the right to claim compensation for a data protection breach.
When Do I Need to Notify about a Personal Data Breach?
Under the GDPR, notifications are generated when the breach of personal information is believed to result in a high risk to the rights and freedoms of individuals. However, this process is optional and not mandatory. Therefore, not all data breaches need to be notified to the authorities.
What Information Must a Personal Data Breach Notification Have?
Under the GDPR, there are some points to be included in the notification. When reporting a personal data breach, you must describe the nature of the breach, including, if possible, the categories and the approximate number of data subjects and data records concerned.
How Can I Determine if My Personal Data Was Stolen?
If there’s a data breach affecting your personal information, an organisation is obligated to inform both you and the ICO.
The organisation should clarify in plain language:
Consequences of the said data breach.
Measures taken to handle the breach and its adverse effects.
Contact details of the officer in charge of data protection in the company.
If you think that your personal information has been violated due to a data breach but haven’t been notified by the organisation involved, contact them straight away.
As featured in the national press
We only work with the highestratedsolicitors
They dealt professionally and quickly with our data breach compensation claim. The staff went above and beyond our expectations and were very friendly and helpful. Would definitely use again.
I found them a pleasure to deal with. Very clear and easy to understand.
A good service.
Claimed compensation on my behalf thanks! Outstanding professional service!
Helped me get my claim over the line. Rachel was very helpful throughout
Very professional service, completed my claim swiftly
Lovely supportive team! Sarah is brilliant, she helped me get through a tough period, always stayed in contact with me and referred me to the best of people resulting in an excellent outcome. Highly recommend!