The first claims for damages against Ledger SAS have been filled in Germany. These damages relate to breaches of data protection law. Ledger SAS is one of the world´s best-known manufacturers of hardware wallets.

Ledger SAS had a major security breach in their online shop in the year 2020. The breach occured in their e-commerce and marketing database with over one million client email adresses and over 290´000 personal client information records. Since 2020, this information is available for everyone on the internet platform.

Ledger SAS clients have been massively affected since the publcation of their personal data on the platform. They receive a huge number of unsolicited advertising e-mails, phone calls from unknown third parties, as well as phishing e-mails and blackmail e-mails or calls almost daily.

Class action for those affected by the Ledger SAS data breach have been filled. It is to be assumed that Ledger SAS violated provisions of the European General Data Protection Regulation (GDPR). Ledger SAS is liable as a data protection controller and affected persons have a claim for damages. Ledger SAS has so far rejected an out-of-court settlement. For this reason, the first lawsuits have now been filed in court (initially in Germany).