Business Data Breach Claims

Your data is a valuable commodity, but many businesses are not protecting this as well as they should do.

If you have been the victim of a data breach, we can help.

Get justice for a business data breach violation


We all trust private companies with our personal data in return for services. But we expect these businesses to have the knowledge and ability to handle our information securely. Unfortunately, all too often this isn’t the case and our data privacy is being violated.

The truth is, most breaches are preventable. Companies just don’t like investing in cybersecurity, updating their systems, or training their staff.

Until this changes, data breaches will continue to rise, and people will be forced to make compensation claims to ensure that businesses implement more secure processes.


Contact us today for a free, no-obligation, assessment of your case

Our current business group actions

British Airways plane grounded on a runway

British Airways

Almost 400,000 British Airways customers had their personal details and bank cards stolen in one of the most severe cyber-attacks in UK history. When investigating the first data failure, a second data breach was also spotted at the airline. And in a third data breach, security researchers uncovered unencrypted links within BA’s e-ticketing process.

Find out more »
Currys PC World Carephone Warehouse store at a retail park UK


The Dixons Carphone Warehouse data breach resulted in 10 million customer records being accessed from Currys PC World and Dixons Travel stores.

Find out more »
Easyjet data breach


In 2020, EasyJet admitted that, as well as the personal details of nine million customers, over 2,000 passengers had their credit card details accessed by hackers.

Find out more »
Woman holding credit card and paying via phone. Looking at credit report.


In 2017, poor security processes at Equifax led to a huge data breach. The ICO has since fined Equifax £500,000 and people who have been affected by the breach can register to make a compensation claim.

Find out more »
Equiniti Data Breach - Image of UK police officers


In August 2019, over 750 annual benefit statements were sent to the wrong postal addresses. These statements were for police officers of Sussex Police.
Equiniti, a company that provides support, communications and technology platforms to help manage company pensions, was responsible for distributing these statements.

Find out more »


In January 2021, London-based estate agent Foxtons discovered that it had experienced a huge data breach. But, despite an investigation finding 16,000 card details, addresses and correspondence related to this breach on the dark web, Foxtons did not tell its customers that criminals had accessed and exposed their data.

Find out more »
Savings: Man putting a coin into a piggy bank


Fintech startup LOQBOX – a company that helps people to improve their credit ratings – suffered a cyber-attack in February 2020. As well as personal data, some financial information was also breached.

Find out more »
Man walking through hotel lobby with suitcase and looking at his phone


In 2018, a huge data breach put 339 million Marriott International customers at risk. And, in 2020, Marriott confirmed another data breach – this time involving the personal information of 5.2 million guests.

Find out more »
OnePlus Phone & Box


OnePlus has emailed customers to let them know that a data breach put their personal information at risk. Worse, OnePlus confirmed that the hack resulted in customer order information falling into the hands of an unauthorised third-party.

Find out more »

People’s Energy

Anyone involved in the People’s Energy breach could now be at risk. Customers are being warned that criminals might try and contact them using the stolen contact details. Victims of this breach are now at a greater risk of fraud, theft, and scams.
If your data was included in this breach, and you live in England & Wales, you may be able to make a compensation claim with Keller Lenkner UK.

Find out more »
young man with tattoos looking down at mobile phone


In November 2019, T-Mobile suffered a severe data breach. Over a million pre-paid customers are believed to be affected. T-Mobile was very unforthcoming about the data hack and did not provide additional information at the time of the breach.

Find out more »
Indoor Karting Car


TeamSport Indoor Karting, which operates racing circuits across the UK, suffered a significant data breach. The breach affects former employees of the company.

Find out more »


In June 2018, Ticketmaster admitted to a huge data breach. The breach happened after a supplier to Ticketmaster was infected with malicious software while having access to the Ticketmaster website. The Ticketmaster data breach affects up to 40,000 people.

Find out more »
Total Fitness Data Breach

Total Fitness

Anyone involved in the Total Fitness data breach could now be at risk. Customers should be aware that criminals might try and contact them using the stolen contact details. Victims of this breach are now at a greater risk of fraud, theft, and scams.

If your data was included in this breach, and you live in England & Wales, you may be able to make a no-win, no-fee compensation claim with Keller Lenkner UK.

Find out more »


In December 2020, Twitter was fined €450,000 by the Irish Data Protection Commissioner (DPC) for failing to promptly declare and properly document a data breach. This comes after a Twitter bug led to private tweets being made publicly available.

Find out more »

Why claim business data breach compensation?

Hold businesses to account for failing to protect your private information.


Receive financial compensation for your losses.


Force airlines to implement better data security.

Examples of business data breaches


The ICO has investigated the following business data breaches. If the ICO finds an organisation guilty of data protection offences, it can issue financial penalties and prosecutions.

Why use Keller Lenkner UK to make a data breach, GDPR violation, or cybercrime claim?


Your questions answered

See our answers to the FAQs we get asked about business data breaches.

Latest news

Ticketmaster App

Find out if Ticketmaster breached your data

Ticketmaster knows exactly who was impacted by this data breach. All you must do to find out if your details were exposed is to ask Ticketmaster if you were involved. This is called making a data subject access request (DSAR/SAR).

Read More »

What can you claim for?

While each case is judged on its own merits, there are some things we would typically look for when it comes to when claiming compensation following a data breach, cybercrime or other GDPR violation:

Financial loses

With stolen data, cybercriminals can make purchases using your bank and credit cards, apply for credit in your name, set up fraudulent bank accounts and access your existing online accounts.


GDPR failures, cybercrime and data breaches can have a significant impact on you, both mentally and physically. They can cause or exacerbate anxiety, stress and other psychological conditions.

Loss of privacy

Your data has value, and organisations must be held to account if they fail to protect your right to data privacy or otherwise do not uphold your GDPR rights.

How to protect yourself following a data breach or cybercrime

  • Contact your bank or credit card provider immediately if your financial data has been exposed.
  • Check all bills and emails for goods or services you have not ordered.
  • Check your bank account for unfamiliar transactions.
  • Alert your bank or credit card provider immediately if there is any suspicious activity.
  • Monitor your credit score for any unexpected dips.
  • Call Credit, Experian and Equifax to ensure credit isn’t taken out in your name.
  • Never provide your PIN or full password to anyone (even someone claiming to be from your bank).
  • Never been pressured into moving money to another account for fraud reasons. A legitimate bank won’t ask you to do this.
  • Follow the security instructions provided by the organisation that breached your data.
  • Never automatically click on any suspicious links or downloads in emails or texts.
  • Don’t assume an email or phone call is authentic just because someone has your details.
  • Be careful who you trust – criminals often use scare tactics to try and trick you into revealing your security details.
  • Know that, even if you recognise a name or number, it might not be genuine.
  • Don’t be rushed or pressured into making a decision. A trustworthy organisation would never force you to make a financial transaction on the spot.
  • Never provide your full password, pin or security code to someone over the phone (or via message). If a bank believes a transaction has been fraudulent, they will not ask for this information to cancel the transaction.
  • Listen to your instincts and ask questions if something feels “off”.
  • Refuse requests for personal or financial information and stop discussions if you are at all unsure.
  • Contact your bank or financial service provider on a number you know and trust to check if a communication is genuine.
  • Be cautious of unsolicited communications that refer you to a web page asking for personal data.
  • Don’t accept friend requests from people you don’t know on social media.
  • Review your online privacy settings.
  • Report suspected fraud attempts to the police and Action Fraud.
  • Register with the Cifas protective registration service to slow down credit applications made in your name.
  • Change your passwords regularly and use a different password for every account (a password manager can help with this).
  • Protect your devices with up-to-date internet security software.