The HSE have been writing out to tens of thousands of people recently – patients and staff members – to let them know their personal data was unlawfully accessed by hackers in a major cyber-security attack in 2021.  Unfortunately, data breaches of this and other sorts are happening more often and we are all more vigilant about cybersecurity.  Victims of the HSE attack (and others) will want to know their rights and remedies as a result.

Everyone’s private information (‘data’) is their personal property, and is protected in Irish and European law, which details those rights, and the remedies available, if they have reason to believe their data privacy has been breached by an organisation.

Data breaches can happen accidentally, or deliberately, where information is leaked or stolen, and very often happens as a result of a cyberattack by a criminal element.

What are your Data Protection Rights?

  • Your data can only be collected, processed and stored for specifically stated and legitimate purposes
  • The data collected must be limited to only what is necessary for those stated purposes
  • The data should be accurate, and kept up to date (you can ask for errors in the data held to be corrected)
  • Your data should be stored for no longer than is necessary for the stated purposes for which it was collected
  • Your data should be handled with appropriate security (including against unauthorised access, accidental loss and damage)
  • You have the right to see what data a company or other organisation holds about you
  • You have the right to ask for your data to be deleted where it is no longer required for a legitimate purpose.
  • You have the right to request a copy of all data held by the organisation about you.
  • You have the right to be informed by the organisation, where there has been a breach of your data privacy.

What Can You Do?

Firstly, you are entitled to lodge a complaint with the Data Protection Commission at https://www.dataprotection.ie/.

Another, additional avenue is to pursue a civil claim through the courts.  Article 82 of the GDPR (General Data Protection Regulations), and Section 117 of the Irish Data Protection Act, 2018 introduced a right to compensation to individuals, who can now seek compensation (and in certain cases, an injunction).

What type of compensation might you be able to claim?

The main two types are for:- ‘material damage’ (actual and calculable financial loss), and ‘non-material damage’, which includes reputational damage and psychological distress and upset (though these may be harder to prove), and redress under some other legal categories.

In cases like the recent HSE breach, patients can claim compensation where they were out of pocket (including for travel expenses) for missed and rescheduled appointments, scans, procedures, and where they have suffered as a result of delay in their treatment, misdiagnosis, etc.  HSE staff may have suffered loss or delay in pension payments, or other remuneration.

If you have been a victim of a breach, it is important that you keep a written record all additional expenses you suffer, and a timeline of events and correspondence with the data controller organisation involved.

Is your Business or Organisation a Data Controller?   Most businesses and organisations (including voluntary, charitable and sporting organisations) dealing with the public will be deemed to be ‘data controllers’ with all the legal responsibilities that go with that.  They should regularly review their Data Privacy policies and procedures, specialist insurance, and cybersecurity defences, in particular, those involving their I.T. systems and online activity, in order to limit their risk of exposure.  Legal advice should be sought at an early, preventative stage, and of course, in the event of any possible breach or claim.

It is important to understand your rights, and responsibilities, and to seek the right professional and legal advice as early as possible, if you have any concerns.

For more detailed advice, contact us on 065 6840060 or email enquiries@cashinclancy.ie and visit our website www.cashinclancy.ie for more information.

Advertisement

Related News

ambulance coast guard scariff 1
Bodyke hurler recovering after picking up head injury which forced abandonment of game vs Whitegate
jim gavin 2
Crowe rows in behind Jim Gavin to get Fianna Fáil nomination for Presidential election
1 Shannon Airport_Munster Rugby Women's Bus
Shannon Airport & Munster get new wheels ahead of Interpro final
Shannon, Ireland, June
Shannon will not receive 15 extra Gardaí despite claims of Govt TDs
Latest News
st josephs miltown vs doonbeg 30-08-25 conor cleary darragh burns 1
Miltown down Doonbeg and march onto quarter-finals
João Tudella 1
Lahinch director's climate film to screen at Irish festivals
ambulance coast guard scariff 1
Bodyke hurler recovering after picking up head injury which forced abandonment of game vs Whitegate
Lunch Time Lifestyle with the Clare Echo Contributers (1)
September blooms bringing fresh colour and autumn pots to brighten your garden
lahinch ladies golf
Lahinch ladies chasing senior cup honours
Premium
feakle v newmarket-on-fergus 08-08-25 oisin donnellan 1
'Next man up' the focus in Feakle despite injury crisis
Shannon, Ireland, June
Shannon will not receive 15 extra Gardaí despite claims of Govt TDs
Springfield3
€5.2m Springfield flood relief scheme 'makes fear & devastation of flooding a thing of the past' in Clonlara
st josephs miltown v doonbeg 16-08-24 sean neylon eoghan killeen 1
Doonbeg & Miltown to battle it out for last remaining quarter-final spot
ballymacaula 1
Plans for Ennis' largest housing scheme meet stumbling block

Advertisement

Subscribe for just €3 per month

If you’re here, you care about County Clare. So do we. Did you rely on us for Covid-19 updates, follow our election coverage, or visit The Clare Echo every week for breaking news and sport? The Clare Echo invests in local journalism and we want to safeguard its future in our county. By becoming a subscriber you are supporting what we do, will receive access to all our premium articles and a better experience, while helping us improve our offering to you. Subscribe to clareecho.ie and get the first six months for just €3 a month (less than 75c per week), and thereafter €8 per month. Cancel anytime, limited time offer. T&Cs Apply. www.clareecho.ie.