Search for:

Jump straight to:

An unexpected error has occurred

Please enter a search term

Please select

What sectors are you interested in?

We can use your selection to show you more of the content that you’re interested in.

Want to speak to an advisor from your closest office?

Find other offices

Search for:

An unexpected error has occurred

Please enter a search term

Out-Law / Your Daily Need-To-Know

Out-Law News 1 min. read

Vodafone Germany discloses details about data breach affecting 2m customers

16 Sep 2013, 1:05 pm

The personal details of two million Vodafone Germany customers were stolen when the company's IT systems were compromised, the company has confirmed.

Vodafone Germany apologised after hackers stole data stored on its servers, including customers' names, addresses, dates of birth and gender, as well as sort codes and account numbers. However, it said the perpetrators did not have access to credit card information, passwords, PIN numbers, or mobile phone numbers and so could not directly access customers' bank accounts.

The company said that "insider knowledge" was required to carry out the attack. It said police had identified a suspected and conducted a search. It warned customers to be vigilant for fake emails and other "phishing attacks" used by hackers to steal other information needed to access their bank accounts.

"The security of data is a top priority for Vodafone," Vodafone Germany said in a statement, according to an automated translation. "The company has IT systems that meet the highest possible standards. These are regularly updated and expanded. Vodafone will take all necessary steps to further improve the security of the systems and to protect them from future criminal attacks."

The EU's Regulation on the notification of personal data breaches telecoms companies are obliged, under certain circumstances, to inform both regulators and customers about personal data breaches.

The companies have to supply the regulator – generally within 24 hours – with a range of information about the breach, including the estimated date and time of the incident, the nature and content of the personal data concerned and how many individuals are affected.

The telecoms providers also generally have to notify individuals affected by a personal data breach "without undue delay" in cases where the breach is "likely to adversely affect the personal data or privacy" of those individuals.

Factors such as the type of personal data that has been breached, the likely consequences of the breach for individuals, and the circumstances of the breach, such as whether the data has been stolen or where the provider knows the information is in the hands of an unauthorised third party, should be assessed to determine where a breach is likely to adversely affect individuals' privacy, according to the Regulation

Latest News

Pension buy-outs: managing a surplus on winding-up

Modern slavery law in the UK

SFO five-year strategy resets approach to tackling financial crime

Changing attitudes to feminism present challenges for businesses

Improving EDI essential to well-run pension schemes, warns UK’s regulator

You might also like

Out-Law Guide

Extensions of time and liquidated damages

Most contracts for construction works will include an extension of time mechanism, whereby the contractor will be entitled to an extension of time to the agreed completion date – the date by which the works must be completed – in circumstances where there are delays to a project which are not the contractor’s fault or for which the employer has taken the risk.

Construction Contracts

Out-Law Guide

Notice provisions in construction contracts

All construction contracts require parties to notify each other in certain circumstances in order to trigger particular entitlements.

Construction Contracts

Out-Law Guide

Defective work in construction projects

Defective work is a major cause of disputes and litigation. An understanding of the law in relation to defects is therefore of relevance to those involved in construction projects.

Construction Claims

Out-Law News

5G potential for business highlighted in UK funding programme

Show me more
Adam Cain

Legal Director

Adam Cain View Profile

Out-Law News

Advocate general: German credit agency scoring breaches GDPR

Show me more

Out-Law Analysis

Algorithmic pricing raises concerns for EU competition law enforcement

Show me more
Alison Rankine

Senior Associate

View Profile

Out-Law Analysis

As EU Council decides fate of trade talks, what exactly has been agreed so far?

Show me more

Out-Law News

British Airways fined £20m over GDPR breach

Show me more

Out-Law Analysis

Business engagement vital for proposed SCCs for data transfers

Show me more
We are processing your request. \n Thank you for your patience. An error occurred. This could be due to inactivity on the page - please try again.