header-logo header-logo

Home Login E-newsletter About us

Damages & distress: data protection leaks in court

© Copyright LexisNexis 2025. All Rights Reserved.
25 March 2022 / Fergus McCombie
Issue: 7972 / Categories: Features , Cyber
printer mail-detail
75716
The UK courts have been exploring the limits of litigation brought by or on behalf of data subjects where there has been unlawful transmission or disclosure of personal data: Fergus McCombie of 36 Commercial surveys the state of play
  • The UK courts have shown a willingness to analyse damages and procedural matters in low-level data protection claims along traditional English law lines.
  • There are challenges to that approach where there has been mere loss of control of personal data.
  • This article considers cases of deliberate or inadvertent access gained by third parties, other than the controller or data subject, to personal data.

In Warren v DSG Retail Ltd [2021] EWHC 2168 (QB), Saini J considered a claim of low value brought against Dixons Carphone (DSG) arising from a cyber attack, perpetrated in 2018, by which the attackers gained credit card and other personal data. The Information Commissioner’s Office (ICO) had already issued a monetary penalty notice in the sum of £500,000. A private claim was brought by

If you are not a subscriber, subscribe now to read this content
If you are already a subscriber sign in
...or Register for two weeks' free access to subscriber content

MOVERS & SHAKERS

Read All
Sponsored by
Muckle LLP—Ella Johnson

Muckle LLP—Ella Johnson

Real estate dispute resolution team welcomes newly qualified solicitor

Morr & Co—Dennis Phillips

Morr & Co—Dennis Phillips

International private client team appoints expert in Spanish law

NLJ Career Profile: Stefan Borson, McCarthy Denning

NLJ Career Profile: Stefan Borson, McCarthy Denning

Stefan Borson, football finance expert head of sport at McCarthy Denning, discusses returning to the law digging into the stories behind the scenes

NEWS
Read All
NLJ this week: Cyber drills build real-world resilience
Paper cyber-incident plans are useless once ransomware strikes, argues Jack Morris of Epiq in NLJ this week
NLJ this week: Fairness from day one
In this week's NLJ, Robert Hargreaves and Lily Johnston of York St John University examine the Employment Rights Bill 2024–25, which abolishes the two-year qualifying period for unfair-dismissal claims
NLJ this week: When procedure is power
Writing in NLJ this week, Manvir Kaur Grewal of Corker Binning analyses the collapse of R v Óg Ó hAnnaidh, where a terrorism charge failed because prosecutors lacked statutory consent. The case, she argues, highlights how procedural safeguards—time limits, consent requirements and institutional checks—define lawful state power
NLJ this week: Jury still trusted—Crown Court study revisited
Michael Zander KC, emeritus professor at LSE, revisits his long-forgotten Crown Court Study (1993), which surveyed 22,000 participants across 3,000 cases, in the first of a two-part series for NLJ
NLJ this week: AI copyright clash
Getty Images v Stability AI Ltd [2025] EWHC 2863 (Ch) was a landmark test of how UK law applies to AI training—but does it leave key questions unanswered, asks Emma Kennaugh-Gallagher of Mewburn Ellis in NLJ this week
Copyright © 2025 LexisNexis
back-to-top-scroll