header-logo header-logo

Home Login E-newsletter About us
16 October 2019 / Elizabeth Bardsley
Issue: 7864 / Categories: Features , Insurance / reinsurance , Data protection , Technology
printer mail-detail

Data breaches: a personalised response

© Copyright LexisNexis 2026. All Rights Reserved.
Elizabeth Bardsley explains why tailoring response to identity can help data controllers avoid breach claims
  • When a data breach occurs, controllers need to act fast but also consider the identity of the individuals concerned.
  • Appropriate responses may vary. Consider factors such as potential resentment against the controller, employment status and age.

Following a personal data breach, what can data controllers do to limit their exposure to data breach claims? And to what extent should breach response be shaped by the identities of the data subjects themselves?

The rise in data breach claims has been well reported. This is largely a direct result of the GDPR (General Data Protection Regulation) giving data subjects a statutory right to claim compensation for non-material damage in addition to material (financial). Claimants can therefore seek awards for inconvenience or distress caused by the loss or unauthorised disclosure of their data; a much lower threshold than earlier data protection law.

This, along with the onerous notification obligations the GDPR places upon data controllers,

If you are not a subscriber, subscribe now to read this content
If you are already a subscriber sign in
...or Register for two weeks' free access to subscriber content

MOVERS & SHAKERS

Read All
Cripps—Radius Law

Cripps—Radius Law

Commercial and technology practice boosted by team hire

Switalskis—Grimsby

Switalskis—Grimsby

Firm expands with new Grimsby office to serve North East Lincolnshire

Slater Heelis—Will Newman & Lucy Spilsbury

Slater Heelis—Will Newman & Lucy Spilsbury

Property team boosted by two solicitor appointments

NEWS
Read All
NLJ this week: Tightening the screws on JCT terminations
The Supreme Court has delivered a decisive ruling on termination under the JCT Design & Build form. Writing in NLJ this week, Andrew Singer KC and Jonathan Ward, of Kings Chambers, analyse Providence Building Services v Hexagon Housing Association [2026] UKSC 1, which restores the first-instance decision and curbs contractors’ termination rights for repeated late payment
NLJ this week: Old rules, fresh warnings in employment law
Secondments, disciplinary procedures and appeal chaos all feature in a quartet of recent rulings. Writing in NLJ this week, Ian Smith, barrister and emeritus professor of employment law at UEA, examines how established principles are being tested in modern disputes
NLJ this week: The rise of the ‘ChatGPT client’ rattles the profession
The AI revolution is no longer a distant murmur—it’s at the client’s desk. Writing in NLJ this week, Peter Ambrose, CEO of The Partnership and Legalito, warns that the ‘AI chickens’ have ‘come home to roost’, transforming not just legal practice but the lawyer–client relationship itself
NLJ this week: Surrogacy children caught in succession gap
A High Court ruling involving the Longleat estate has exposed the fault line between modern family building and historic trust drafting. Writing in NLJ this week, Charlotte Coyle, director and family law expert at Freeths, examines Cator v Thynn [2026] EWHC 209 (Ch), where trustees sought approval to modernise trusts that retain pre-1970 definitions of ‘child’, ‘grandchild’ and ‘issue’
NLJ this week: Online safety law at a crossroads
Fresh proposals to criminalise ‘nudification’ apps, prioritise cyberflashing and non-consensual intimate images, and even ban under-16s from social media have reignited debate over whether the Online Safety Act 2023 (OSA 2023) is fit for purpose. Writing in NLJ this week, Alexander Brown, head of technology, media and telecommunications, and Alexandra Webster, managing associate, Simmons & Simmons, caution against reactive law-making that could undermine the Act’s ‘risk-based and outcomes-focused’ design
Copyright © 2026 LexisNexis
back-to-top-scroll