In October 2025, Renault UK confirmed a cyberattack in its supply chain had compromised the data of thousands of customers. Have you been affected?
Register with KP Law today to find out more, including whether you could claim compensation.
In October 2025, it was discovered a cyberattack had taken place – compromising the personal data of customers of car manufacturer Renault and its sister brand Dacia.
In what appears to be a significant cyber security incident, Renault UK has confirmed unauthorised third parties have accessed the data of thousands of customers, which could include:
KP Law is investigating this cybersecurity incident to better understand this breach, including the severity of situation and the impact on the affected customers. If you have been affected, you may be able to help us better understand what happened.
Companies like Renault have a responsibility to protect its customers’ data across its entire supply chain. We are currently seeking information from those affected by this incident. This is to help us understand how people may have been affected and whether a legal claim could be viable.
We’ll keep your information secure, and you won’t be signed up to any formal legal action unless you choose to be.
In data breach incidents like this, cyber criminals can use the personal data stolen to launch highly targeted scams, known as spear phishing attacks.
With access to your contact details and privileged information, such as your vehicle registration, these scams often involve emails and telephone calls that appear genuine but aim to steal even more from you.
If you believe your data may have been accessed, it is vital that you remain vigilant and take steps to protect yourself online.
While each case is judged on its own merits, there are some things we would typically look for when it comes to when claiming compensation following a data breach, cybercrime or other GDPR violation:
With stolen data, cybercriminals can make purchases using your bank and credit cards, apply for credit in your name, set up fraudulent bank accounts and access your existing online accounts.
GDPR failures, cybercrime and data breaches can have a significant impact on you, both mentally and physically. They can cause or exacerbate anxiety, stress and other psychological conditions.
Your questions answered
See our answers to the FAQs we get asked about the Renault/Dacia Data Breach.
In October 2025, it was discovered a cyberattack had taken place – compromising the personal data of customers of car manufacturer Renault and its sister brand Dacia.
In what appears to be a significant cyber security incident, Renault UK has confirmed unauthorised third parties have accessed the data of thousands of customers.
Renault released the following statement after the breach: “One of Renault Group UK’s third-party data processing providers has notified us that that they have been the subject of a cyber-attack, and that some customers’ personal data has been taken from one of their systems.
This includes some or all of: customer names, addresses, dates of birth, gender, phone number, vehicle identification numbers and vehicle registration details.
No financial or password data has been compromised.
The third-party provider has confirmed this is an isolated incident which has been contained, and we are working with it to ensure that all appropriate actions are being taken. We have notified all relevant authorities.
No Renault Group UK systems have been compromised.
We are in the process of contacting all affected customers, advising them of the cyber-attack and reminding them to be cautious of any unsolicited requests for personal information.
We wish to apologise to all affected customers. Data privacy is of the upmost importance to us and we deeply regret that this has occurred.”
Renault or Dacia should have contacted you if your data was accessed. If you haven’t received a notification, but you are worried that your data has been leaked, sign up using our link, and we will investigate on your behalf.
Anyone who thinks they might be involved should take immediate steps to protect themselves. Find out how to do this here.
If you believe that you may have been affected by the Renault/Dacia data breach, register to receive updates on our investigation. We’ll let you know what’s happening, and if and when you can make a data breach compensation claim.
A group action claim is where a group of people – sometimes even thousands of people – have been affected by the same issue. Group action cases are also known as class actions, multi-claimant, or multi-party actions.
There are no costs to join our claim. However, if your claim is successful, you may have to pay a ‘success fee’. This fee is taken from the compensation awarded to you. At KP Law, our success fee is competitive, and we make sure you are fully informed about any potential costs before you officially join our action. If you lose, you won’t have to pay a penny.
