DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Defending Data Breach Claims in Ireland

Posted on February 21, 2023 by Dissent

Colin Monaghan, Anthony Strogen, Deirdre Munnelly, and Rosemary Lynch of Mason Hayes & Curran LLP write:

European Union, Ireland February 17 2023

The recent significant Circuit Court decision in the case of Gary Cunniam v Parcel Connect Ltd t/a Fastway Couriers Ireland & Others  now provides useful guidance on the view of the Irish Courts in matters related to data breach claims. Importantly, the judgment will have a tangible impact on data breach claims which are pending or contemplated. We examine the key points of the judgment and what it means for the defence of data breach claims in Ireland.

Background of the claim

The plaintiff’s claim in Cunniam relates to a cyber-attack on the operations of Fastway Couriers in February 2021, in which delivery information relating to approximately 450,000 people was hacked, and was one of a number of claims brought against Fastway Couriers. The claims brought by the plaintiff were for non-material damage only and no defence had been delivered by the three defendant entities, together trading as Fastway Couriers.

The defendants sought a stay of the plaintiff’s proceedings pending the outcome of six preliminary references made to the Court of Justice of the European Union (CJEU). The references cited relate to questions from national courts concerning the application of liability in cases involving a hacking incident or cyber-attack, and the appropriate test for non-material damage. The first of these preliminary references which is likely to be determined is Case C-300/21 – UI v Österreichische Post AG. This is expected to give clarity to the issue of non-material damages in data breach claims under the GDPR.

Read more at Lexology.

Related posts:

  • Fastway Couriers Notifies Irish Data Protection Commission of a Hack
Category: Business SectorHackNon-U.S.

Post navigation

← Ca: Sobeys admits to data breach in fall 2022, alerts customers and employees
Hackers Start Selling Data Center Logins for Some of World’s Largest Corporations →

2 thoughts on “Defending Data Breach Claims in Ireland”

  1. Ciaran says:
    March 1, 2023 at 4:48 am

    This breach was found by a researcher called Alex Gor. He posted his finding and the backstory to the Irish software development sub reddit.

    In essence Fastway were not hacked, they has no security on server open to the internet. Essentially giving away data given to them by other companies who contracted them to make deliveries on their behalf.
    There was no cyber attack, they were not a victim- Fastway were simply reckless.

    [link to reddit redacted as per comment links policy]

    1. Dissent says:
      March 1, 2023 at 8:00 am

      Thanks. I took a look at Gor’s detailed posts on DevelEire subreddit and some of the comments. So it was a leak and not a hack according to Gor, and it’s “shoot the messenger” time? Why is it still being referred to as a cyberattack or hacking incident in the court?

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.