British Airways
€00final
Date Issued
2019-07-08
Regulation
Authority
Information Commissioner (ICO)
Country
United Kingdom
Violation Type
Failure to implement sufficient measures to ensure information security
Currency
EUR
Violation Summary
The ICO notified the British Airways of its intention to issue a fine worth 183.39 million pounds because of an alleged infringement of Art. 31 of the GDPR. The reason for this is related to an incident which the company reported in September 2018, when the British Airways website had diverted the users’ traffic to a dangerous website. The hackers in charge of this website had stolen the personal data of more than 500.000 customers. The company had poor security mechanisms to prevent such cyber-attacks from happening.<strong>Notice:</strong> British Airways is facing a fine of €204,600,000, but this is not yet final. As such, it’s not included in our statistics dashboard.
Articles Violated
Art. 32 GDPR
Other Fines for British Airways
| Date | Regulation | Amount (USD) | Type |
|---|---|---|---|
| 2020-10-16 | GDPR | $23,809,680 | Failure to implement sufficient measures to ensure information security |