Ten million customers could be at risk after a data hack at JD Sports. According to the sportswear chain, hackers accessed its systems and could have gotten hold of customer names, addresses, email accounts, phone numbers, order details, and the final four digits of bank cards. The breach affects JD, Size?, Millets, Blacks, Scotts and MilletSport customers.
The compromised information relates to online orders placed between November 2018 and October 2020.
Questions have been raised over why the company stores the personal data of customers who placed online orders fulfilled over four years ago.
At Keller Postman UK, our data breach lawyers have launched an investigation into the JD Sports data breach. We believe that failures to adopt standard security measures may have made this attack easier. If poor security processes did lead to the privacy failure, we will launch a group action to help affected customers in England & Wales claim compensation.
Here are some of the questions our expert data breach solicitors have been asked about the JD Sports data breach so far.
Am I affected by the JD Sports data breach?
You could be involved in the JD Sports data breach if you placed an order online at any of the affected stores between November 2018 and October 2020.
Affected customers are being contacted. If you have received notification that your data was compromised in this breach, register to receive updates on our investigation.
Can I claim compensation for the JD Sports data breach?
You may be able to claim compensation for any distress or financial losses experienced because of this breach. If you live in England or Wales and you received notification that your data was compromised, register with Keller Postman UK.
We will provide updates on this case, and let you know if and when you can claim compensation for the privacy violation.
What is a group action?
A group action claim is where a group of people – sometimes even thousands of people – have been affected by the same issue. Group action cases are also known as class actions, multi-claimant, or multi-party actions.
How much will I have to pay to make a compensation claim with Keller Postman UK?
There are no costs to join our no-win, no-fee claim and if you lose, you won’t pay a penny. If your claim is successful, you may have to pay a ‘success fee’. This fee is taken from the compensation awarded to you.
What should I do if I am worried that my details were involved in this breach?
Victims of data breaches often become the target of cybercriminals and phishing attacks. Similar privacy violations have resulted in fraud, blackmail, and identity theft. As such, customers of the affected brands are at high risk of being targeted by cybercriminals.
Anyone who thinks they might be involved in the JD data breach should take immediate steps to protect themselves.
How did the JD Sports data hack happen?
Details are not yet clear. We do know that cybercriminals hacked a server that contained online order information for 10 million customers. The compromised data relates to online orders placed between November 2018 and October 2020 for the JD, Size?, Millets, Blacks, Scotts and MilletSport brands.
A failure to adopt standard security measures often make such attacks possible. If JD Sports did not have adequate protections in place, it must be held responsible for any loss or distress experienced by its customers because of this breach.
What data was breached?
According to the sportswear chain, the hackers may have accessed customer names, addresses, email accounts, phone numbers, order details, and the final four digits of customer bank cards.
What has JD Sports said about the breach?
JD Sports chief financial officer, Neil Greenhalgh, said:
“We want to apologize to those customers who may have been affected by this incident…We are continuing with a full review of our cyber security in partnership with external specialists following this incident. Protecting the data of our customers is an absolute priority for JD.”
The retailer has also acknowledged the risk and has warned affected customers “to be vigilant about potential scam emails, calls and texts”.