We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
Seeking advice on a company that has had employees accounts hacked
Liz65
Posts: 139 Forumite
Hi, just seeking advice on behalf of my daughter and not sure if this is the right thread.
My nephew works for a big firm who were hacked over a month ago and they have recently been told that their personal information such as payroll, NI numbers has been released on the dark web!
It has taken them a month to release this information and I am very worried what will happen, is there any chance that he can get compensation for this from the firm?
My nephew works for a big firm who were hacked over a month ago and they have recently been told that their personal information such as payroll, NI numbers has been released on the dark web!
It has taken them a month to release this information and I am very worried what will happen, is there any chance that he can get compensation for this from the firm?
0
Comments
-
This happens, that information is if little to no use to fraudsters, who tend to want things like credit card details and passwords to personal accounts etc.Liz65 said:Hi, just seeking advice on behalf of my daughter and not sure if this is the right thread.
My nephew works for a big firm who were hacked over a month ago and they have recently been told that their personal information such as payroll, NI numbers has been released on the dark web!
That is fairly normal, it will take them some time to establish what has happened, report it to the ICO and then agree a statement to be released to the affected parties.Liz65 said:It has taken them a month to release this information
Your worry is irrelevant, the risks are minimal.Liz65 said:I am very worried what will happen
The short answer is no, the long answer is only if he suffers provable loss from the data breach, suffering any form of loss is highly unlikely and even if it were to happen he would almost certainly be recompensed via the banking safeguards in place.Liz65 said:is there any chance that he can get compensation for this from the firm?0 -
How is your daughter involved?0
-
MattMattMattUK said: The short answer is no, the long answer is only if he suffers provable loss from the data breach, suffering any form of loss is highly unlikely and even if it were to happen he would almost certainly be recompensed via the banking safeguards in place.
Is it as clear cut as that?Do I have to go to court to get compensation for a breach of data protection law?
The GDPR gives you a right to claim compensation from an organisation if you have suffered damage as a result of it breaking data protection law. This includes both “material damage” (e.g. you have lost money) or “non-material damage” (e.g. you have suffered distress)
In the case of GDPR breaches I'm not sure that the normal rules about damages apply and it would seem (according to the ICO) that the legislation does provide for compensation for things like distress and inconvenience which would not normally be considered claimable "losses".
Taking your case to court and claiming compensation | ICO
0 -
Often, yes, because hurt feelings/upset is both incredibly hard to prove and has to also be rational. The aunt of someone feeling distress over some largely irrelevant data being exposed is hardly going to be deemed reasonable.Manxman_in_exile said:MattMattMattUK said: The short answer is no, the long answer is only if he suffers provable loss from the data breach, suffering any form of loss is highly unlikely and even if it were to happen he would almost certainly be recompensed via the banking safeguards in place.
Is it as clear cut as that?
I am unaware of any court having awarded compensation in relation to a data leak for "distress" where there were no wider consequences of the data breach (eg when the only issue was hurt feelings alone, rather than say financial consequences which lead to real distress). Though if you know of a case I would be interested to read the judgement.
Some companies may make a without prejudice "shut up and go away" minor payment, but I think that is rare, at most on the bigger leaks they have offered free monitoring for a year or two. Personally I find the idea of trying to claim compensation because some relative is distressed by a minor data leak absurd.3 -
Likewise .But nothing to stop the party using compoforme.com0
-
They should be providing CIFAS protective registration to all employees.Liz65 said:Hi, just seeking advice on behalf of my daughter and not sure if this is the right thread.
My nephew works for a big firm who were hacked over a month ago and they have recently been told that their personal information such as payroll, NI numbers has been released on the dark web!
It has taken them a month to release this information and I am very worried what will happen, is there any chance that he can get compensation for this from the firm?Life in the slow lane1
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 354.5K Banking & Borrowing
- 254.4K Reduce Debt & Boost Income
- 455.5K Spending & Discounts
- 247.4K Work, Benefits & Business
- 604.3K Mortgages, Homes & Bills
- 178.5K Life & Family
- 261.8K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.7K Read-Only Boards