
Under GDPR Can an Individual be Held Responsible?
The GDPR is a set of strict rules that must be adhered to when processing the personal data of EU citizens. Failure to comply with
Not sure? You could be owed an average of £2,500 in compensation and it only takes 60 seconds to check using our online form
As featured in
£4,000+
average refund
NO WIN NO FEE
£4,000 Average Claim
Customers, on average claim £4,000 from incidents of data breach
Free Expert Advice
Experts are ready and waiting to advise you in any way you need
No win, no fee
All solicitors work on a no win, no fee basis. 100% free, unless your claim is successful
60 second check
It only takes 60 seconds to begin your check for a potentially huge payout
No risk involved
There’s no risk in checking. It will not affect your credit score and it’s free
A data breach occurred in late November 2020 when private medical documents, including confidential prescription records, were mistakenly delivered by a courier company to the home of a woman in Scotland. The parcel sent by Lloyds Pharmacy and intended to go to an NHS prescriptions services office in Bolton, Greater Manchester, somehow ended up hundreds of miles away at the home of a woman near Elgin, Moray.
Contained in the parcel, which had been marked ‘Delivery of Data to NHS on behalf of Lloyds Pharmacy’, were confidential details from hundreds of patients in the Milton Keynes and the Bedfordshire area. Lloyds Pharmacy blamed the incident on an error by the couriers, but as the data controllers, they would be considered responsible for the data breach.
The personal data inside the package which formed the breach included the following:
If you are one of those who has been affected by the Lloyds Pharmacy data breach then there is a very real possibility you could make a GDPR breach claim for compensation. When your medical information is stored and handled, there is an expectation that it will be securely protected and only shared with those that require it for legitimate purposes. This clearly did not happen on this occasion.
Organisations have a responsibility to take steps to protect your data, and this is particularly important with healthcare organisations where the information can often be of a highly sensitive and personal nature. The data breach, albeit due a mistake via third party couriers, shows that inadequate steps were taken to keep the personal data safe. The release of such sensitive information by sending to the wrong address would be considered to pose a risk to individuals and their right for their personal data to be securely stored or shared.
While in this instance, Lloyds Pharmacy were fortunate in that the shocked recipient of the data informed them about receiving the package, and they were able to make arrangements for its safe return, the fact that it ended up in the wrong hands is reason enough to make a claim. Those affected will be hopeful that their data wasn’t compromised in any way, but they nonetheless would be concerned that their personal information could be allowed to end up in the hands of a random person.
The release of substantial medical data to unauthorised people is often considered significant due to the potential for cybercriminals to carry out fraudulent activity using your details, such as fraudulent bank accounts or fictional insurance claims. If your details were part of the Lloyds Pharmacy data breach then you will or should expect to be notified about the incident by them.
If you think you may have been one of those affected by this data breach, get in touch and we will make enquiries on your behalf to establish if there is a valid data breach claim worth pursuing. If so, then we will act for you on a No Win, No Fee basis, meaning there is no risk in making a claim and nothing to pay in the unlikely event of making a claim but not winning compensation.
At Data Breach Claims, we will put you in touch with experts who will be able to advise you whether you have a good case for compensation. To get started with the claims process, fill in the contact form and we will be in touch, or you can request a no-obligation free call back.
Think this applies to you? We’ll check for free
Alternatively, give one of our solicitors a call free on 0330 828 1764
Free Consultation
We offer a free data breach consultation to anyone who is looking to make a claim
No win, no fee
If your case or cases have no financial payout to you, you don’t pay a single penny
Data breach experts
We use dedicated data breach solicitors who have handled thousands of data breach claims
Medical or healthcare providers have a responsibility to protect your private information, and when they fail to do so, they should be brought to account. While you might be reluctant to make a claim against your local pharmacy, who you perhaps use and rely on on a regular basis, it is worth noting that any claim will be against their insurers rather than the organisation itself.
Making a compensation claim brings accountability and ensures that an organisation will implement better safeguards to protect everyone’s data in future. When it comes to medical data, such as the type involved in the Lloyds Pharmacy data breach, this could be misused to an extent that you might suffer a financial loss or worse.
Even if the breach has not led to any loss to you at this point, it potentially still could be used at some point in future. The loss of highly confidential and sensitive medical data can be extremely distressing, and for this reason you could make a claim to be compensated.
GDPR Claim
Lovely supportive team! Sarah is brilliant, she helped me get through a tough period, always stayed in contact with me and referred me to the best of people resulting in an excellent outcome. Highly recommend!
Claire
As featured in the national press.
Click one to see more.
The GDPR is a set of strict rules that must be adhered to when processing the personal data of EU citizens. Failure to comply with
You could be in line for data breach compensation worth thousands if your child’s data has been affected by a company’s data breach Parents know
If a company or organisation is storing your personal data and fails to keep it secure which has ultimately resulted in a breach, you have
Alternatively, give one of our solicitors a call free on 0330 828 1764
Lines open 9am – 5pm Mon to Fri
Our collective has dealt with over 14,000 data breach cases
Lines open 9pm – 5pm Mon to Fri
Egerton House, 2 Tower Road, G5D, Birkenhead CH41 1FN
© DataBreach Claims 2023. Data Breach Claims is a trading name of Evans Hughes Ltd company number 12573301. Authorised and regulated by the Financial Conduct Authority 927014. Evans Hughes Ltd is registered with the Information Commissioner’s Office under registration reference ZA754708. This website is operating in accordance to the privacy policy. ICO reg no. ZA473694. Data Breach Claims connects clients to regulated solicitors who deal with data breaches. We do not perform any legal services but simply connect you to a legal representative.