A woman denies blackmailing Grant Thornton for €1 million over a huge data-protection breach

The accountancy firm accidentally sent her thousands of confidential details.

By Aodhan O'Faolain

A WOMAN HAS denied trying to “blackmail” accountancy firm Grant Thornton into paying her €1 million to resolve actions over an alleged data-protection breach.

At the High Court, Justice Paul Gilligan heard that Grant Thornton mistakenly sent data to Gerardine Scanlon in September 2015 including deeds of appointment of receivers on properties of borrowers unconnected to her.

A partner in the firm was appointed receiver over some of Scanlon’s assets in 2013.

After becoming aware of the error, Grant Thornton obtained orders against Scanlon preventing her releasing confidential information about thousands of other parties which it sent to her on a computer disc.

The firm brought the action over her alleged refusal to confirm she would return the information, delete or destroy any copies held by her.

That action was resolved in December 2015 when she agreed before the High Court to hand over the information.

Maurice Collins SC, for Grant Thornton, told Justice Gilligan that Scanlon has not complied with the order and has retained confidential data.

Collins said while a failure to comply with a court order is “very serious”, Grant Thornton does not want to bring a motion seeking to have her attached and possibly committed to prison for being in contempt of court.

The firm was only seeking the return of confidential material, counsel added. Counsel said that it was concerned that information contained on the disk had been given to others.

Counsel said Grant Thornton is facing actions from other parties over the alleged data-protection breach. Information contained on “anonymous letters” had been “dropped into person’s letterboxes”, counsel said.

Counsel also said that during a meeting with Grant Thornton in January of this year at the Green Isle Hotel, Scanlon asked for €1 million to make the cases over the data breach go away.

Counsel said the demand amounted to “a form of extortion against Grant Thornton.”

Smear attempt

Representing herself, Scanlon, from Bruhenny, Churchtown, Mallow, Co Cork, denies the claims she breached the court’s order or that she has retained any confidential information.

While she accepts meeting representatives of the company in January, on a non-prejudice basis, said she denies Grant Thornton’s allegations she tried “to blackmail it” and said the claim is an attempt to “smear my name.”

She also said that she did not have the power to drop any case being brought by the Data Protection Commissioner. She said she was the person who informed Grant Thornton of the breach in the first place.

The claims and Scanlon’s denial were made as the High Court considered a number of pre-trial motions.

In its motion Grant Thornton wants Scanlon’s defence and counterclaim to its action against her struck out on grounds including they have no basis in law, are bound to fail and disclose no cause of action. Scanlon has opposed that application.

In her motion, Scanlon seeks to have other parties including Danske Bank, who appointed the receiver over her assets, the Data Protection Commissioner and the Attorney General joined to the action.

Those parties have opposed being joined to the application. The hearing resumes next week.

Sign up to our newsletter to receive a regular digest of Fora’s top articles delivered to your inbox.