Public Sector Data Breach Claims

The public sector handles some of our most sensitive personal data, so a data breach can be disastrous.

If you have been the victim of a public sector data breach, we can help.

Get justice for a public sector data breach violation


Modern governance and the delivery of public services requires the sharing of a wide range of our sensitive information. But a reliance on unsecured legacy software and a lack of preparation for dealing with cyber-attacks has made the sector vulnerable.

What’s more, as well as being lucrative to hackers, the public sector is also struggling to train its staff and put robust data management practices in place. So, when it comes to local and national government services, human error remains the leading cause of breaches. And people across the country are left paying the price.


Contact us today for a free, no-obligation, assessment of your case.

Our current public sector group actions

Equiniti Data Breach - Image of UK police officers


In August 2019, over 750 annual benefit statements were sent to the wrong postal addresses. These statements were for police officers of Sussex Police.
Equiniti, a company that provides support, communications and technology platforms to help manage company pensions, was responsible for distributing these statements.

Find out more »
Hackney Council

Hackney Council

Hackney Council was sit by a serious cyberattack that affected most of its services. If you think you may have lost data in this incident, contact Keller Lenkner and we will help you to investigate that loss.

Find out more »
Police in Hi-Vis uniform UK

Police Federation

In 2019, The Police Federation of England and Wales (PFEW) suffered a severe data breach following a ransomware cyber-attack hit the PFEW headquarters. Around 120,000 current and former officers are affected.

Find out more »

Why claim public sector data breach compensation?

Hold public sector organisations to account for failing to protect your private information.

Receive financial compensation for your losses.


Force the public sector to implement better data security.

Examples of public sector data breaches

The ICO has investigated the following public sector data breaches. If the ICO finds an organisation guilty of data protection offences, it can issue financial penalties and prosecutions.

We can make public sector data breach claims against:

Why use Keller Lenkner UK to make a data breach, GDPR violation, or cybercrime claim?


Your questions answered

See our answers to the FAQs we get asked about public sector data breaches.

Latest news

unlocked padlock on computer components

The DVLA has reported nearly 200 data breaches to the ICO

The DVLA data breach does not relate to one particular privacy violation but many. Indeed, the DVLA has reported almost 200 breach notifications to the UK’s data protection regulator – the Information Commissioner’s Office (ICO) – over the past year. That’s according to a recent Freedom of Information request. The request was made by Apricorn, a secure storage vendor in a bid to assess the effectiveness of data security measures in the public sector.

Read More »

What can you claim for?

While each case is judged on its own merits, there are some things we would typically look for when it comes to when claiming compensation following a data breach, cybercrime or other GDPR violation:

Financial loses

With stolen data, cybercriminals can make purchases using your bank and credit cards, apply for credit in your name, set up fraudulent bank accounts and access your existing online accounts.


GDPR failures, cybercrime and data breaches can have a significant impact on you, both mentally and physically. They can cause or exacerbate anxiety, stress and other psychological conditions.

Loss of privacy

Your data has value, and organisations must be held to account if they fail to protect your right to data privacy or otherwise do not uphold your GDPR rights.

How to protect yourself following a data breach or cybercrime

  • Contact your bank or credit card provider immediately if your financial data has been exposed.
  • Check all bills and emails for goods or services you have not ordered.
  • Check your bank account for unfamiliar transactions.
  • Alert your bank or credit card provider immediately if there is any suspicious activity.
  • Monitor your credit score for any unexpected dips.
  • Call Credit, Experian and Equifax to ensure credit isn’t taken out in your name.
  • Never provide your PIN or full password to anyone (even someone claiming to be from your bank).
  • Never been pressured into moving money to another account for fraud reasons. A legitimate bank won’t ask you to do this.
  • Follow the security instructions provided by the organisation that breached your data.
  • Never automatically click on any suspicious links or downloads in emails or texts.
  • Don’t assume an email or phone call is authentic just because someone has your details.
  • Be careful who you trust – criminals often use scare tactics to try and trick you into revealing your security details.
  • Know that, even if you recognise a name or number, it might not be genuine.
  • Don’t be rushed or pressured into making a decision. A trustworthy organisation would never force you to make a financial transaction on the spot.
  • Never provide your full password, pin or security code to someone over the phone (or via message). If a bank believes a transaction has been fraudulent, they will not ask for this information to cancel the transaction.
  • Listen to your instincts and ask questions if something feels “off”.
  • Refuse requests for personal or financial information and stop discussions if you are at all unsure.
  • Contact your bank or financial service provider on a number you know and trust to check if a communication is genuine.
  • Be cautious of unsolicited communications that refer you to a web page asking for personal data.
  • Don’t accept friend requests from people you don’t know on social media.
  • Review your online privacy settings.
  • Report suspected fraud attempts to the police and Action Fraud.
  • Register with the Cifas protective registration service to slow down credit applications made in your name.
  • Change your passwords regularly and use a different password for every account (a password manager can help with this).
  • Protect your devices with up-to-date internet security software.