£820 out of pocket due to a data breach

legal_updates

Ex-employee admitted to three offences of unlawfully obtaining personal data.

Author: Nona Bowkis
Published:
Reading time: 1 minute

This article is 2 years old.

Read our disclaimer keyboard_arrow_down

This website content is intended as a general guide to law as it applies to the motor trade. Lawgistics has taken every effort to ensure that the contents are as accurate and up to date as at the date of first publication.

The laws and opinions expressed within this website may be varied as the law develops. As such we cannot accept liability for or the consequence of, any change of law, or official guidelines since publication or any misuse of the information provided.

The opinions in this website are based upon the experience of the authors and it must be recognised that only the courts and recognised tribunals can interpret the law with authority.

Examples given within the website are based on the experience of the authors and centre upon issues that commonly give rise to disputes. Each situation in practice will be different and may comprise several points commented upon.

If you have any doubt about the correct legal position you should seek further legal advice from Lawgistics or a suitably qualified solicitor. We cannot accept liability for your failure to take professional advice where it should reasonably be sought by a prudent person.

All characters are fictitious and should not be taken as referring to any person living or dead.

Use of this website shall be considered acceptance of the terms of the disclaimer presented above.

We live in an age, whether you like it or not, you as a business and as an employer, have to look after people’s data.

The days of buying in marketing lists full of the names and contact details of unsuspecting people, should be long gone. 

However, your staff also have a responsibility to not breach data protection rules. A recently reported case from the motor industry involved an employee of car dealership V12 Sports and Classics Ltd being fined £200 plus a £30 victim surcharge and being ordered to pay £590 towards prosecution costs for emailing herself employee and customer data in August 2017, weeks before resigning. 

The now ex-employee admitted to three offences of unlawfully obtaining personal data in breach of s55 and s60 of the DPA1998 at Birmingham Magistrates’ Court in March 2019. She was fined under the old Data Protection Act 1998 as that was in force at the time of the breach. 

A timely reminder that you need to review your GDPR polices (which can easily be done using HR Manager) and ensure your staff are aware of their Data Protection responsibilities.  

Nona Bowkis

Legal Advisor

Read more by this author

Getting in touch

You can contact us via the form or you can call us on 01480 455500.