• +359 2439 0700
  • This email address is being protected from spambots. You need JavaScript enabled to view it.
  • MON - FRI 9:00 - 17:30

Latest News

Business / Financial / Taxation

Intention to fine British Airways
Intention to fine British Airways

GDPR: Intention to Fine British Airways with more than £183,39 million

User Rating: 5 / 5

Star ActiveStar ActiveStar ActiveStar ActiveStar Active
 

Statement: Intention to fine British Airways more than £183,39 million under GDPR for data breach

Statement in response to an announcement to the London Stock Exchange that the ICO intends to fine British Airways for breaches of data protection law.

Following an extensive investigation the ICO has issued a notice of its intention to fine British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR).

The proposed fine relates to a cyber incident notified to the ICO by British Airways in September 2018. This incident in part involved user traffic to the British Airways website being diverted to a fraudulent site. Through this false site, customer details were harvested by the attackers. Personal data of approximately 500,000 customers were compromised in this incident, which is believed to have begun in June 2018.

The ICO’s investigation has found that a variety of information was compromised by poor security arrangements at the company, including log in, payment card, and travel booking details as well name and address information.

British Airways has cooperated with the ICO investigation and has made improvements to its security arrangements since these events came to light. The company will now have opportunity to make representations to the ICO as to the proposed findings and sanction.

ICO has been investigating this case as lead supervisory authority on behalf of other EU Member State data protection authorities. It has also liaised with other regulators. Under the GDPR ‘one stop shop’ provisions the data protection authorities in the EU whose residents have been affected will also have the chance to comment on the ICO’s findings.

The ICO will consider carefully the representations made by the company and the other concerned data protection authorities before it takes its final decision.

ico.org.uk

Information Commissioner said:

People’s personal data is just that – personal. When an organisation fails to protect it from loss, damage or theft it is more than an inconvenience. That’s why the law is clear – when you are entrusted with personal data you must look after it. Those that don’t will face scrutiny from my office to check they have taken appropriate steps to protect fundamental privacy rights.

Elizabeth Denham

GO 10% Tax Rate NOW

Feel Free to Contact Us

Within 24 hours, a financial advisor will contact you.


Access a Low Tax World within EU1

1 hour FREE Consultation

Do you have lot of questions? Do you want to ask more details? Do you want to expand in Bulgaria? Feel free to contact us.

WE MAKE TAXES LESS TAXING

Every service offered is covered by Professional Liability Insurance and all staff members, internal or external, are bounded with confidentiality agreements. Services offered by TaxManagement are always in line with the legislation and in accordance with EU Commercial Law and EU Tax Legislation.