By Cat Way. Last Updated 02nd April 2025. Different types of organisations have access to your banking and financial information, not just banks. Under data protection laws such as the UK General Data Protection Regulation UK GDPR and the Data Protection Act 2018, personal data or information that can be used to identify you must be secured. Debit and credit card details are amongst the personal data that need to be kept safe. If such information fell into the wrong hand, you could not only suffer financially but also mentally too.
If you have evidence that your personal financial details have been breached, call our helpline, and an advisor can answer any questions you may have about making a data breach compensation claim. Moreover, we can check if you are eligible to receive compensation for the breaching of your bank account information and an experienced data breach solicitor may offer to handle your claim.
- To discuss your options, please call us today on 0800 073 8804.
- Or see if you can make a claim by filling out our contact us form.
- Alternatively, please type a question for us into our Live Support widget.
Select A Section
- What Is A Data Breach?
- What Data Could Banks Handle?
- Types Of Errors Which Could Breach Your Banking Details
- Examples Of Banking Data Breaches
- My Banking Details Were Breached; What Could I Claim?
- What Should I Do In Case Of A Bank Data Breach?
- Could A No Win No Fee Solicitor Help Me Claim If My Banking Details Were Breached?
What Is A Data Breach?
A personal data breach generally is a security issue that means the availability, confidentiality and integrity of your data may have been compromised. This can happen in several ways, for example:
- Lost data
- Stolen data
- Data accessed or disclosed without authorisation or authority
- Altered or destroyed
Data controllers, an entity such as a bank that will decide how and what data to process, and processors which sometimes process personal data are bound by data protection legislation. Data that is considered personal and personally sensitive data must be kept secure.
What Happens If Banking Details Are Breached?
Under the UK General Data Protection Regulation, businesses such as banks are responsible for protecting the personal data they handle. If a bank breaches personal information, this can have different consequences for you, the data subject.
To protect your personal data, it is vital that data controllers and processors take steps such as:
- Firstly use robust and up-to-date cybersecurity systems
- Furthermore, provide workforce data protection training.
- And adhere always to data protection laws.
Personal data breaches cannot only cause psychological injuries, but data subjects can also suffer financial losses. Call our data breach claims team today for advice on your claim.
What Data Could Banks Handle?
If banking details are breached, customers’ data can be released into an insecure environment. Here are some examples of data which could suffer a breach:
- Credit card number
- Debit card number
- Account number
- Sort code
- Online banking login information
- Name
- Address
- Date of birth
- Email address
- Phone number
How could data subjects be affected by a personal data breach?
Criminals may use revealed bank account details to steal from a customer’s account. Or fraudsters could use credit card information to make purchases online.
Moreover, if there is an email breach, fraudsters may impersonate the bank and target the customer for phishing scams, enabling them to steal money.
Moreover, victims could experience stress due to a data breach or mental health problems. For example, victims may experience anxiety due to the exposure of their personal data.
Types Of Errors Which Could Breach Your Banking Details
Most data breaches happen because of human error. Therefore the data breach was unintentional but can still cause harm. On the other hand, criminals or people with bad intentions can deliberately cause data breaches for financial gain or personal reasons.
So, let’s look at the types of errors which can lead to banking details being breached:
- Misdelivery of data, which means the posting or emailing of information to the wrong person.
- Or a bank fails to redact personal data in its communications.
- Moreover, paperwork containing personal data could be lost or stolen.
- The bank has an out-of-date cyber security system, so it cannot defend itself against a cyber attack.
- An unauthorised person gains unlawful access to banking information. For example, an unauthorised employee views the client’s information.
- Or the bank failed to train its workers to spot the signs of a phishing scam. Therefore a worker may have given out protected information to a fraudster.
Examples Of Banking Data Breaches
Sending personal data to the wrong postal address or email address, faxing personal data to the incorrect recipient, and leaving files or USB sticks containing personal information in unsecured locations are all types of personal data breaches. These are what we call non-cyber data breaches. But what other data breaches can occur? Generally speaking, there are two types of breaches: those that happen through human error, as we have mentioned above and others that happen due to cyber-attacks and online criminals.
Equifax Ltd
The ICO has given Equifax a monetary penalty of £500,000. A cyber attack hit Equifax in the US in 2017, which impacted the personal data of UK residents. The ICO explained that Equifax Ltd had not taken the proper precautions to prevent the unauthorised and unlawful processing of said data.
My Banking Details Were Breached; What Could I Claim?
Only data breach victims who meet the criteria under Section 82 of the UK GDPR can pursue a personal data breach compensation claim. This means answering yes to the following 3 questions:
- Did the data controller or processor fail to adhere to data protection law?
- Did a breach affect your personal data?
- Did you suffer mentally and/or financially?
If your personal data breach claim is successful, you could receive two types of damages:
- Firstly material damage, which compensates for financial (material) losses.
- Secondly, non-material damage, which compensates for emotional distress or psychiatric injuries.
You can use our data breach claims table to estimate how much your compensation claim could be worth. The table includes brackets for non-material damage. The compensation brackets (except for the top row) are based on the guidelines from the Judicial College. However, if your claim succeeds, the amount of compensation you receive may differ.
Mental Injury | Severity | Guideline Compensation | Notes |
---|---|---|---|
Multiple Psychological Injuries and Material Damage | Very Severe | Up to £500,000+ | There are many psychological issues along with material damage like relocation and mental health treatment costs. |
Mental Harm | Severe | £66,920 to £141,240 | Injured parties could face problems in many areas of life. |
Mental Harm | Moderately Severe | £23,270 to £66,920 | Whilst still facing similar problems, the person does have a better and more optimistic diagnosis. |
Mental Harm | Moderate | £7,150 to £23,270 | Though left facing problems in many areas of life, their condition will have improved. |
Mental Harm | Less Severe | £1,880 to £7,150 | Patterns of sleep could be disturbed. |
Anxiety Disorder | Severe | £73,050 to £122,850 | There may be permanent effects preventing the person returning to pre-trauma life. |
Anxiety Disorder | Moderately Severe | £28,250 to £73,050 | There is some chance for recovery if professional medical care is sought. |
Anxiety Disorder | Moderate | £9,980 to £28,250 | This person will largely have gotten better. |
Anxiety Disorder | Less Severe | £4,820 to £9,980 | A very close to full recovery has happened. |
The table excludes material damage compensation. So, to get a personalised claim valuation, please call us to speak with an advisor.
What Should I Do In Case Of A Bank Data Breach?
There are various steps you can take following a bank data breach to both claim and secure your personal data.
If your banking details have been breached and you would like to claim compensation, you will have to provide evidence like:
- Written confirmation of the data breach: Your bank must send you an email or a letter informing you of the data breach and the data which has been impacted.
- Results of the ICO investigation: If you report the data breach to the ICO, and they investigate, their findings may help to serve as evidence. However, the ICO does not investigate every reported data breach.
- Bank statements, salary slips or invoices should be used to highlight the material damage.
- Medical records or letters from your therapist to underscore the psychological impact.
You may be worried about the future impact of the bank data breach, and it is necessary to safeguard your data. The following steps may help as a precautionary measure:
- Contact the bank to confirm which information suffered a compromise.
- Change your passwords in case they’ve been breached.
- If you notice any suspicious transactions, contact your bank immediately.
- Set up an additional level of authentication for all your bank accounts for your security.
- Sign up with a credit monitoring agency to be informed if there are any suspicious changes in your credit score.
You can speak to our advisors for some more tips on collecting evidence and taking security measures after a banking data breach.
Could A No Win No Fee Solicitor Help Me Claim If My Banking Details Were Breached?
If you wish to make a claim for bank data breach compensation, one of our solicitors could help. They take on claims from around the country, which means you don’t have to choose a solicitor local to you, and they have years of experience handling various types of personal data breach claims.
One of the benefits of working with our data breach solicitors is that they work on a No Win No Fee basis under a Conditional Fee Agreement (CFA). When you work with a solicitor under this arrangement, you can access their services without paying an upfront fee. Similarly, you won’t pay any ongoing costs for their work, nor will you pay a fee for their services if your claim does not succeed.
If your bank data breach claim does succeed, then your solicitor will take a success fee. This fee is a small, legally-capped percentage from your compensation amount; the cap is in place to help ensure that you keep the majority of what you receive.
To find out if one of our solicitors could help you with your personal data breach claim, contact our team of advisors today. They can answer any questions you may have about the claims process and may be able to connect you with a solicitor from our panel. To get in touch:
- Call us on 0800 073 8804
- Contact us online.
- Use the live chat feature.
Banking Details Breached Resources
If you want to claim compensation for a banking or finance data breach, please have a look at these online resources.
My Employer Sent Personal Information To The Wrong Address
My Existing Mental Health Issues Were Made Worse By A Data Breach
Personal Information Was Shared Without My Consent
Thank you for reading our guide on what to do if your banking details are breached.