Transform Hospital Group Data Breach Claims

Portrait of Robert Godfrey
Robert Godfrey
Partner, Head of Professional Negligence and Dispute Resolution

Specialist weight loss and cosmetic surgery group, Transform Hospital Group, also known as The Hospital Group, were caught in a ransomware attack back in December 2020.

Transform Hospital Group have 11 clinics across the UK and have been endorsed by several celebrities over the years, including Kerry Katona, Tina Malone and Joey Essex.

The company notified the Information Commissioner directly, and publicly announced the breach in a statement released on their website.

If you’re a Hospital Group customer and you’re worried that your personal data has been breached or stolen, get in touch with our Data Breach Solicitors. We’ll let you know if you’ve got a chance of making a successful GDPR data breach claim on a No Win, No Fee basis.

What Data was Breached?

The cyber hackers, known as REvil, claimed to have stolen the personal data of Transform Hospital Group patients, including before and after photographs of their surgery. REvil have carried out ransomware attacks on several high-profile businesses over the years, including Travelex and Grubman Shire Meiselas & Sacks.

On a darknet webpage, REvil said that these “intimate photos of customers” were “not a completely pleasant sight”, and claimed to have over 900 gigabytes of patient photographs.

In a statement issued on their website, Transform Hospital Group confirmed that “no payment card details have been compromised”, but identified “a small minority of individuals” who may have been affected by the ransomware attack.

A ransomware attack is when hackers gain access to a computer network and block users from accessing the system until a ransom is paid. Like REvil, ransomware attackers can also threaten to release the data they’ve accessed.

Protecting Your Personal Data

While it’s not yet known if any photos have been leaked, or what the full effect of the data breach will be, you can still take precautions to protect your personal data if you’re worried.

Transform Hospital Group have contacted all customers about the breach and are “writing separately to anyone who could have been affected by this.” But they’re still encouraging anyone with questions or concerns to get in touch.

If you’re a Hospital Group customer, you might still want to:

  1. Update your password for any account you hold with them, and other accounts you’ve used that password for
  2. Report anything suspicious or threatening e.g. emails that look like phishing attempts
  3. Get in touch with Transform Hospital Group if you’ve got any further concerns

See our 10 Top Tips for Keeping Your Personal Data Safe article for more tips about protecting your data.

GDPR Data Breach Claims

If you find out you have been affected by the Transform Hospital Group data breach, you might be entitled to compensation. Our Data Breach Solicitors offer a free legal assessment of your case, where we’ll let you know whether you’ve got strong grounds for a GDPR compensation claim.

We often deal with data breach claims on a No Win, No Fee basis – ask us about this when you get in touch.

Contact our Cyber Security Solicitors For a Free Case Assessment

We're happy to help

Monday to Friday 8:30am-7:00pm

0808 239 9426

0808 239 9426

We're happy to call you

Simply click below to arrange the assessment

Request a Free Case Assessment

Request a Callback

This data will only be used by Simpson Millar in accordance with our Privacy Policy for processing your query and for no other purpose

Simpson Millar Solicitors are a national law firm with over 500 staff and offices in Billingham, Bristol, Cardiff, Catterick, Lancaster, Leeds, Liverpool, London and Manchester.