• British Airways Data Breach Compensation Claims

    British Airways has been fined £20 million for a huge data breach. But the money from this fine won’t be used to compensate victims. To get justice, you can make a no-win, no-fee compensation claim.

    START YOUR 2018 BRITISH AIRWAYS CLAIM

  • British Airways Data Breach Compensation Claims

    British Airways has been fined £20 million for a huge data breach. But the money from this fine won’t be used to compensate victims. To get justice, you can make a no-win, no-fee compensation claim.

    START YOUR 2018 BRITISH AIRWAYS CLAIM

Get compensation for the British Airways data breach. — Time is running out you MUST register by JUNE 2021

What happened?

In 2018, British Airways had its IT infrastructure hacked in one of the most severe cyber-attacks in UK history. Almost 400,000 BA customers had their financial details stolen in this data privacy violation. When investigating the data breach, another breach was uncovered at the airline. Since then, BA has experienced further data breaches.

Who has taken action so far?

Following an investigation into the 2018 data breach, British Airways has been fined £20 million by the Information Commissioner’s Office (ICO). The fine reflects the number of people whose information was affected and the likely impact on them. But this payment will not be used to compensate victims. The only way to get justice for the BA data breach is to make a compensation claim.

Why are we taking action?

Big companies like British Airways are legally obliged to keep sensitive passenger information safe. But customer privacy does not look like a priority at British Airways after a series of data protection failures at the airline. We are taking action to hold BA to account.

How can NDC help?

At National Data Claims our partner solicitors can take on your BA compensation claim on a NO-WIN, NO-FEE basis. If you win your case, you will also get 75% of the compensation awarded to you.*

Our partner firm is one of the most experienced multi-claimant law firms in the UK. Its data breach team stands up to large, well-funded companies, and it has all the resources and expertise necessary to take on your case and win.

*If you win your case, you will get 75% of the compensation awarded to you AFTER all costs and fees have been deducted. So you will walk away with 75% of the compensation amount. There are no hidden fees or costs. If you lose your case, you will not have to pay a penny.

START YOUR 2018 BRITISH AIRWAYS CLAIM
START YOUR 2018 BRITISH AIRWAYS CLAIM

A Series of British Airways Data Breaches

British Airways booking website and app (2018)

Almost 400,000 British Airways customers had their personal and financial details stolen. The ICO issued BA with a £20 million penalty for this breach.

British Airways rewards bookings data breach (2018)

Also in 2018, a second data breach was spotted at BA. On this occasion, 77,000 reward bookings customers had their personal and payment information taken.

British Airways e-ticketing system data breach (2019)

Security researchers discovered unencrypted links within the airline’s e-ticketing process. This vulnerability may have exposed sensitive passenger information.

SITA data breach (2021)

In 2021, the SITA bookings and reservations system – which provides services to many airlines worldwide – suffered a “highly sophisticated” attack. BA does not use SITA, but the airline warned its Executive Cub members that their information may have been put at risk.

We are pursuing a no-win, no-fee claim in relation to the two 2018 British Airway’s data breaches.

START YOUR 2018 BRITISH AIRWAYS CLAIM
START YOUR 2018 BRITISH AIRWAYS CLAIM

Why should you claim data breach compensation from British Airways?

Hold British Airways to account for not upholding your data protection rights.

Receive compensation for any losses suffered.

Force airlines to implement better data privacy processes.

Hold British Airways to account

The British Airways data breaches would not have happened if the airline had implemented robust security processes. So, making a claim will not just ensure you are financially compensated for your losses, it could also force BA to take its data responsibilities seriously in the future.

JOIN THE NATIONAL DATA CLAIMS DATA BREACH GROUP ACTION TO GET THE JUSTICE YOU DESERVE.

Start your claim with our expert data breach lawyers

START YOUR 2018 BRITISH AIRWAYS CLAIM
START YOUR 2018 BRITISH AIRWAYS CLAIM

British Airways Data Breach Timeline

21st August 2018 – 5th September 2018

British Airways customer data is accessed in a serious cyberattack.

September 6th, 2018

British Airways admits that customer data has been stolen in a tweet.

September 7th, 2018

It is revealed that about 380,000 transactions are affected in this data breach. Payment card numbers, expiry dates, and CVV security codes are affected.

September 11th, 2018

A RiskIQ report suggests that MageCart was involved in the data breach. This is the cyber criminal organisation thought to be behind the Ticketmaster data hack. Crucially, if RiskIQ, is right about how the attack worked, according to a cybersecurity researcher “BA should have been able to see this”.

October 25th, 2018

A second data breach is uncovered at British Airways. An additional 185,000 transactions are found to have been compromised between April and July 2018. As such, the number of affected people increases from 380,000 to 429,000.

July 8th, 2019

The ICO releases a statement on its “intent to fine” British Airways a staggering £183.39 million for the data breach.

August 2019

Researchers uncover unencrypted links within British Airway’s e-ticketing process.

October 4th, 2019

British Airways customers are given the green light to bring compensation claims against the airline over the data breach.

October 16th, 2020

The ICO fines British Airways £20 million. The reduced fine was issued after the airline made representations to the ICO. The impact of COVID-19 was also taken into account by the ICO. 

February 2021

The date to join the British Airways data breach group action is extended to 3rd June 2021.

FAQs about the British Airways data breaches

What happened in the 2018 BA data breaches?

Inadequate systems and processes resulted in cybercriminals accessing the financial and personal data of 400,000 British Airways customers. When investigating this privacy violation, a further data breach was uncovered.On this occasion, 77,000 reward bookings customers had their personal and payment information stolen.

Who can make a claim for the 2018 data breach?

Customers who booked flights online or via the app between 21 April 2018 and 28 July 2018 and/or 21 August 2018 and 5 September 2018 (using a debit or credit card) can make a British Airways data breach claim. Those customers who are involved in the rewards bookings data breach can also join our action.

How do I know if I am involved in a BA data breach?

British Airways has emailed everyone affected by the data breach. If you do not have that email, you might still be affected as the email could have gone into your spam folder and subsequently been deleted. If you booked flights online or via the British Airways app between 21 April 2018 and 28 July 2018 and/or 21 August 2018 and 5 September 2018 using a debit or credit card you could be affected by this breach.

How can I get evidence that I am involved in the British Airways breach?

If you suspect that you are involved in this breach, but have not been contacted by BA, you can ask the airline if you were put at risk. This is called making a data subject access request (D/SAR).

The ICO has a template you can use to make a SAR.

What other evidence do I need to make a claim?
  • Evidence that you purchased tickets from BA during the data breach periods.
  • Confirmation from BA that you are involved in this breach.
  • Evidence that the card you used to purchase the tickets has been used fraudulently (or has attempted to be used).
  • Evidence that you needed to cancel the card you used to purchase the tickets.
  • Evidence of any distress experienced because of this breach.

You do not need all this evidence to make a claim, but please gather as much as possible.

Am I at risk if British Airways breached my data?

Unfortunately yes. Cybercriminals have used the information stolen to further harm against those affected by the breach.

Will victims of the data breach get some of the ICO fine?

British Airways has been fined £20 million for a huge data breach. But the money from this fine will not be used to compensate victims. To get justice, you can make a no-win, no-fee compensation claim.

Who is responsible for the data breach?

BA was the victim of cybercriminals. But the British Airways data breach would not have happened if the airline had implemented robust security processes.. So, BA is responsible.

Will this claim be successful?

We cannot say for sure, but according to various media reports, British Airways has shown willingness to settle these claims and avoid Court

While there is no guarantee, British Airways has shown willingness to settle these data breach claims and avoid Court.

How much compensation am I likely to get?

Looking at similar cases, compensation of around £2,000 per person seems likely.

How soon will this case be settled?

A BA pay-out is imminent. Time is running out you MUST register by JUNE 2021.

Important Links

About
Resources
Cookies Policy
Privacy Policy
Terms and Conditions

Site Navigation

About
Resources
News
Contact us
Claim

Follow us