UK GDPRLegal

Levales Solicitors LLP

Security

Authority

ICO

Country

United Kingdom

Date Issued

June 20, 2024

Industry

Legal

Summary

Levales Solicitors LLP received a reprimand from the ICO for failing to implement appropriate security measures under UK GDPR Articles 32(1)(b) and 32(1)(d). A threat actor accessed their cloud server using legitimate credentials and published data affecting 8,234 individuals, with 863 at high risk due to the sensitive nature of the information involved.

Violation Types

SecurityData Breach

Articles Violated

View original enforcement decision

View United Kingdom regulatory profile →Search related breaches →

Related Enforcement Actions

Reddit, Inc.

ICO · UK GDPR · February 22, 2026

€17M

Capita plc and Capita Pension Solutions Ltd

ICO · UK GDPR · October 14, 2025

€16M

TikTok Inc.

ICO · UK GDPR · May 14, 2023

€15M

Advanced Computer Software Group Limited

ICO · UK GDPR · March 25, 2025

€4M

LastPass UK Ltd

ICO · UK GDPR · November 19, 2025

€1M

Unlock full enforcement action details

Enter your work email to access the complete analysis. No spam, ever.

We respect your privacy. Unsubscribe anytime.

Avoid enforcement risk with automated compliance

IQWorks helps organizations automate UK GDPR compliance before regulators come knocking.

Talk to an Expert