Skip to main content

How Disgruntled Employees Can Make You Liable For A Data Breach

blog data breach employees liability
It was a data breach nightmare for Morrisons when a disgruntled employee abused his access to the company’s payroll data. In January 2014, after copying the data onto a personal USB, the employee posted personal details of nearly 100,000 Morrisons workers on a file-sharing website. 

But what happened next was even worse. While the employee received an eight-year prison sentence, the High Court took legal proceedings against the company itself as well. Although Morrisons was found to be compliant with data protection laws, the High Court and Court of Appeal recently agreed that the company was still vicariously liable for the disgruntled employee’s actions.

Especially in the era of strict data protection law under the GDPR, this situation emphasises the importance of being prepared and protected against any possible data breach situation. 

Contact ICB Group today to discuss potential insurance solutions.

T: 01784 608 100

The content of this Profile is of general interest and is not intended to apply to specific circumstances. It does not purport to be a comprehensive analysis of all matters relevant to its subject matter. The content should not, therefore, be regarded as constituting legal advice and not be relied upon as such. In relation to any particular problem which they may have, readers are advised to seek specific advice. Further, the law may have changed since first publication and the reader is cautioned accordingly.
© 2018 Zywave, Inc. All rights reserved.