News Article


Why Worry About GDPR? It’s All Fine!

The dust has Settled on GDPR and maybe some people are wondering what all the fuss was about. The world has not caved in (yet!) and we have not seen an explosion of subject access requests, litigation or Information Commission investigations.

Don’t get complacent

However, now is not the time to be complacent.  This may well be the calm before the storm. Most legal action takes time and unless the ICO or someone else releases a  news report at the outset, you will most likely hear nothing about it until the end, some years later. By that time you may well be under investigation yourself and it may all be too late.

ICO cases

A couple of examples. A post GDPR decision (7th June 2018) of the ICO has been against The British and Foreign Bible Society, based in Swindon, which was been fined £100,000 by the Information Commissioner’s Office after their computer network was compromised as the result of a cyber-attack back in 2016.

Note that as this breach occurred in 2016, the fine was under the old pre GDPR rules, this was as a result of a criminal hack and there was no evidence of financial or data loss.

Fast forward two years and an organisation might expect to receive a GDPR fine of 4% of its last years turnover.  In the case of an organisation of a similar size to the Bible Society that fine might be over £700,000.

This 700% multiplier is the effect of the new post GDPR fining powers.

In a case decided on 11th June 2018 Gloucester Police received a GDPR fine of £80,000. The force was at the time investigating allegations of abuse relating to multiple victims. On 19 December 2016, an officer sent an update on the case to 56 recipients by email but entered their email addresses in the ‘To’ field and did not activate the ‘BCC’ function, which would have prevented their details from being shared with others.

A simple mistake which was again decided the old rules and large firms committing the same breach today might expect a fine many times the one in the case.

Be compliant

It won’t be long before the post GDPR fines become headline news, we are already seeing court cases against some of the major online players and those are just the ones we know about. The advice here is don’t think it’s all fine with GDPR. Get your compliance underway and you will lessen the chance of a breach and be in a better position if you are investigated by the ICO.

Watch our videos

For more information about how we can help you with your claim, call us on 01606 87 22 00, or email us at

The Personal Injury Team

Our team are dedicated to achiving the best possible outcome for our clients. Read more here

Dominic Moss

Senior Partner

Dominic Moss Personal Injury Solicitor 87 22 00

Sarah Allison

Partner 87 22 00

Thomas Owen


Tom Owen Personal Injury Lawyer 87 22 00

Julie Capper

Office Administrator 87 22 00

What our clients say about us

Rate Stonehewermoss Solicitors

Stonehewer Moss Solicitors, Citadel House, Solvay Road, Northwich, Cheshire, CW8 4DP

Solicitors in Northwich covering Chester, Crewe, Knutsford, Macclesfield, Middlewich, Northwich, Runcorn, Sandbach, Warrington, Winsford, and across Cheshire.

Stonehewer Moss Solicitors is a trading style of the Stonehewer Moss Limited, Registered in England No. 542 6583 and PIPLaw
which is a firm of solicitors authorised and regulated by the the Solicitors Regulation Authority No. 471159

Contact Us

Contact Us

To get in touch simply fill out the short form below and we will reply very shortly, and definitely within 24 hours. The online enquiry form is completely safe and secure, and your details will not be available to anyone other than Stonehewer Moss Solicitors.

Contact Form

Get in touch today!

Complete the form below and we'll get back to you as soon as possible to help you with your enquiry. Your personal details are never shared or sold.

Alternatively, call us on 01606 87 22 00, or email us at

This website uses Cookies to improve your browsing experience and to help with our marketing. You can read more about removing Cookies here.

I'm fine with this