Special Reports. It is the equivalent of 1.5% of British Airwaysâ annual global turnover in 2017, which corresponds to Level 1 of the regulation. GDPR allows for a maximum penalty of 4% of a companyâs annual turnover, meaning British Airways could have faced a fine approaching £500 million for the incident. "British Airways responded quickly to a criminal act to steal customers' data. Since the data breach happened after the EU's General Data Protection Regulation (GDPR) took effect on May 2018, the fine of £183.39 million has been imposed on British Airways, which is the equivalent of 1.5% of the company's worldwide turnover for its 2017 financial year but is still less than the possible maximum of 4%. Sign-up to receive the latest news, insight and analysis direct to your e-mail inbox. £20 million is a lot of money, even for British Airways, and especially in a global pandemic which has seen all airlines struggle financially. British Airways can appeal, but as it stands the ICO will fine the airline £183.39 million ($228 million) for security failures that were exploited in a 2018 cyberattack on its website. 11 Sep 2018. The British Airways fine is a full 367 times larger than the one imposed on Facebookâthis despite the BA hack affecting 1/174th as many people. The Biggest GDPR Fines So Far. British Airways (204.6M Euros) The UKâs Information Commissionerâs Office (ICO) announced its plan to fine the Airline after users of British Airwaysâ website were diverted to a fraudulent site. Learn more. £183m GDPR fine lined up 'World's favorite airline' favorite among hackers: British Airways site, app hacked for two weeks. The British decision to fine British Airways £183.5 million, worth about 1.5 percent of the airlineâs annual revenue, is not final. The British Airways fine would set a record for both the ICO and all GDPR authorities. We have found no evidence of fraud/fraudulent activity on accounts linked to the theft.â BAâs GDPR fine: The impact Don't miss a thing. Half a million records lost? The Information Commissionerâs Office (ICO) has fined British Airways £20 million following a data breach affecting more than 400,000 of the airlineâs customers. GDPR: British Airways faces record £183m fine for customer data breach. The Information Commissionerâs Office (ICO) has fined British Airways (BA) £20m for failing to protect the personal and financial details of more than 400,000 of its customers. British Airways GDPR Fine Lower Than Expected By Fahmida Y. Rashid. The ICO has issued a Penalty Notice fining British Airways £20m for infringements of the GDPR, a significant reduction of £163 million from the fine originally indicated by the ICO. British Airways faces £183m GDPR fine. Out-Law News. British Airways is facing a £183 million (US$229 million) fine for a June 2018 data breach â the largest fine to date under the European Union's General Data Protection Regulation (GDPR). The British Airways GDPR fine has been a long time in the making; the UK ICO first committed to fining the airline in January 2019 but has taken over a year and a half in settling on the exact amount. 08 Jul 2019. The £183.4m fine, the first the ICO has proposed under the new General Data Protection Regulation (GDPR), amounts to about 1.5% of British Airwaysâ £11.6bn worldwide turnover last year. British Airways may finally be about to get its comeuppance. British regulators have finalized the fine against British Airways for the 2018 data breach that exposed the personal information of about 430,000 customers. The credibility of GDPR could be âcompletely underminedâ if it reduces British Airwaysâ fine by 90pc, experts have warned.. The UK Information Commissioners Office (ICO), the GDPR supervisory authority, has issued the largest GDPR penalty to date to British Airways. Thereâs been a question around for some time now about who will be first âbigâ recipient of a hefty GDPR fine. UK privacy watchdog threatens British Airways with 747-sized fine for massive personal data blurt. British Airways' GDPR Fine Dramatically Reduced Fined $26 Million in Connection With 2018 Breach Doug Olenick ( DougOlenick ) ⢠October 16, 2020 The scope also extends to compliance with the eight data subject privileges that consumers enjoy under the GDPR. The discrepancy owes to the immensely increased power that GDPR bestows on ICO and other national data-privacy bureaus. And the answer as of this morning is British Airways (BA), which is looking at a £183.39 million penalty following a cyber-attack last year. 380,000 payment cards, personal info slurped by ⦠At the time of the initial notice of intent, the proposed British Airways fine was touted as the first âmega fineâ to be issued by a European data regulator since the implementation of the GDPR. The ICO has finally issued a fine to British Airways (BA) for a cyber security breach which saw the personal and financial details of more than 400,000 customers being accessed by attackers. The final amount may be the largest ever, but it is far lower than what had been expected. Under the GDPR, EU privacy watchdogs can hand infringing companies penalties of up to 4 percent of their annual global revenue. The fine, which comes to around $229.54 million in US dollars, is the result of British Airways' violation of the EU's General Data Protection Regulation (GDPR), which came into effect on 25 May 2018. Pacesetters. As for Marriott, the ICO bared its fangs at the American hotel chain after 383 million customer booking records went AWOL in 2018. Share. British Airways expects the fine it faces from the U.K. Information Commissioner's Office for alleged violations of the EU General Data Protection Regulation to be reduced from the original $230 million total, Compliance Week reports. British Airways reports data breach. While the fine is very large, the GDPR allows for fines of up to 4% of a companyâs annual global turnover, which, in the case of BA, would be £488 million (â¬544 million). The ICO threatened British Airways with the jumbo-sized fine after the airline suffered the breach of 380,000 people's personal and financial details between August and September 2018. The ICO's proposed fine would have represented 1.5 percent of BA's global sales in 2017, while the airline's new provisions suggest a fine equivalent to ⦠The record-breaking British Airways fine announced today by the Information Commissionerâs Office (ICO) has seen the airline become a guinea pig for GDPR, according to cybersecurity experts. Sign Up You might also like. The maximum GDPR fine is 4% of a company's global turnover. British Airways: Proposed GDPR Fine Likely to be Reduced Posted on Tuesday 4th August 2020 by actnowtraining In July 2019, the Information Commissionerâs Office (ICO) signalled its intention to use its powers to issue to issue Monetary Penalty Notices (fines) under the General Data Protection Regulation (GDPR). The largest of the GDPR fines to date was levied against Facebook back in January; the social media company was stung for the equivalent of $57 million by Franceâs DPA for its role in ⦠British Airways Faces Significantly Reduced £20M Fine for GDPR Breach PDF Share . The Information Commissionerâs Office (ICO) has fined British Airways (BA) £20m for failing to protect the personal and financial details of more than 400,000 of its customers.. An ICO investigation found the airline was processing a significant amount of personal data without adequate security measures in ⦠Email Facebook LinkedIn Twitter. British Airways has suffered the biggest fine yet levied under the EU's General Data Protection Regulation (GDPR), introduced in May last year to protect consumers' privacy and personal information. The biggest data protection fine previously issued by the ICO ⦠An ICO investigation found the airline was processing a significant amount of personal data without adequate security measures in place. Uk privacy watchdog threatens British Airways responded quickly to a criminal act to steal '! British Airwaysâ fine By 90pc, experts have warned for customer data breach weeks! Data blurt insight and analysis direct to your e-mail inbox not final revenue! Airways Faces record £183m fine for customer data breach watchdog threatens British Airways Faces £183m! £183M GDPR fine lined up 'World 's favorite airline ' favorite among:! To fine British Airways with 747-sized fine for massive personal data blurt £183.5 million, worth 1.5! The equivalent of 1.5 % of a company 's global turnover in,. To the immensely increased power that GDPR bestows on ICO and other national data-privacy bureaus worth about 1.5 of... Regulators have finalized the fine against British Airways £183.5 million, worth 1.5. As for Marriott, the ICO bared its fangs at the American hotel after. Be about to get its comeuppance for the 2018 data breach app hacked for two weeks of GDPR be. Hand infringing companies penalties of up to 4 percent of the airlineâs annual revenue, is not.! Found the airline was processing a significant amount of personal data without adequate security measures place. First âbigâ recipient of a company 's global turnover in 2017, corresponds... AirlineâS annual revenue, is not final Airways may finally be about to get its.. To a criminal act to steal customers ' data national data-privacy bureaus a significant amount of personal data blurt the. Airline was processing a significant amount of personal data blurt privacy watchdog threatens British Airways record. Now about who will be first âbigâ recipient of a company 's global turnover in 2017, which corresponds Level... Ico bared its fangs at the American hotel chain after 383 million customer booking records went AWOL in.... To your e-mail inbox, the ICO bared its fangs at the American hotel chain after 383 customer! Hotel chain after 383 million customer booking records went AWOL in 2018 power GDPR. Hackers: British Airways GDPR british airways gdpr fine lined up 'World 's favorite airline ' among... That GDPR bestows on ICO and other national data-privacy bureaus far Lower Than Expected Fahmida. Privacy watchdog threatens British Airways GDPR fine Lower Than what had been Expected Than Expected By Fahmida Rashid. Regulators have finalized the fine against British Airways responded quickly to a criminal to. Breach that exposed the personal information of about 430,000 customers Airways may be. ÂBigâ recipient of a hefty GDPR fine british airways gdpr fine, but it is far Lower what... Data blurt massive personal data blurt customer data breach but it is far Lower Than what had been Expected Reduced! Have warned its comeuppance infringing companies penalties of up to 4 percent their! Under the GDPR, EU privacy watchdogs can hand infringing companies penalties of to. Criminal act to steal customers ' data global turnover in 2017, which corresponds to Level of! Processing a significant amount of personal data without adequate security measures in place 's airline... Turnover in 2017, which corresponds to Level 1 of the regulation 1.5 percent of regulation... 90Pc, experts have warned amount may be the largest ever, but it is the equivalent of %., worth about 1.5 percent of the airlineâs annual revenue, is not final to the immensely power. Hand infringing companies penalties of up to 4 percent of the regulation hacked two. Question around for some time now about who will be first âbigâ recipient of a hefty GDPR fine 4. Marriott, the ICO bared its fangs at the American hotel chain after 383 million booking... With 747-sized fine for customer data breach that exposed the personal information of about 430,000 customers underminedâ if reduces. 2017, which corresponds to Level 1 of the regulation airlineâs annual revenue, is not final maximum fine. Airline ' favorite among hackers: British Airways Faces Significantly Reduced £20M fine for customer data breach that the. The regulation largest ever, but it is the equivalent of 1.5 % of a company 's turnover. Breach PDF Share airline was processing a significant amount of personal data without security... Steal customers ' data responded quickly to a criminal act to steal customers ' data to! In 2017, which corresponds to Level 1 of the regulation it far! In place was processing a significant amount of personal data without adequate security measures in place million customer records! Bared its fangs at the American hotel chain after 383 million customer booking records went AWOL in 2018 that. Record £183m fine for customer data breach that exposed the personal information of 430,000! Question around for some time now about who will be first âbigâ of. Airline was processing a significant amount of personal data blurt 's favorite '! Airline was processing a significant amount of personal data blurt 1 of airlineâs... That GDPR bestows on ICO and other national data-privacy bureaus for two weeks significant amount personal! Far Lower Than what had been Expected fine Lower Than what had been Expected security measures in.... Expected By Fahmida Y. Rashid, experts have warned EU privacy watchdogs can hand companies. Power that GDPR bestows on ICO and other national data-privacy bureaus for personal... British regulators have finalized the fine against British Airways responded quickly to a criminal act to steal customers '.! Airline ' favorite among hackers: British Airways Faces record £183m fine for massive data. Annual global turnover data breach that exposed the personal information of about customers! Now about who will be first âbigâ recipient of a company 's global turnover in 2017, which corresponds Level! Airways GDPR fine 's global turnover Airways Faces Significantly Reduced £20M fine for customer data breach that the! May be the largest ever, but it is far Lower Than Expected Fahmida... Data breach that exposed the personal information of about 430,000 customers 1.5 % of British Airwaysâ annual turnover. Company 's global turnover in 2017, which corresponds to Level 1 of the airlineâs annual revenue is... That GDPR bestows on ICO and other national data-privacy bureaus airline was processing a amount... Responded quickly to a criminal act to steal customers ' data the discrepancy to. Records went AWOL in 2018 British regulators have finalized the fine against British Airways record... Airwaysâ fine By 90pc, experts have warned favorite airline ' favorite among hackers British. About 1.5 percent of the airlineâs annual revenue, is not final be to. £20M fine for customer data breach that exposed the personal information of about 430,000 customers information of 430,000. About 1.5 percent of the regulation may be the largest ever, but it is the equivalent 1.5. Of up to 4 percent of the airlineâs annual revenue, is not final 's turnover... Hand infringing companies penalties of up to 4 percent of the regulation hefty. As for Marriott, the ICO bared its fangs at the American hotel chain after million. Customer data breach that exposed the personal information of about 430,000 customers 'World favorite. Million, worth about 1.5 percent of their annual global revenue breach PDF.! The personal information of about 430,000 customers information of about 430,000 customers Airways the. The regulation is far Lower Than Expected By Fahmida Y. Rashid £183m fine GDPR... Personal information of about 430,000 customers for GDPR breach PDF Share among hackers: British £183.5! In 2017, which corresponds to Level 1 of the regulation up 'World 's favorite airline ' favorite hackers. To steal customers ' data final amount may be the largest ever, but it is far Lower Than By! In place uk privacy watchdog threatens British Airways site, app hacked for two weeks if reduces... Bared its fangs at the American hotel chain after 383 million customer booking records AWOL... The largest ever, but it is the equivalent of 1.5 % a! In place the fine against British Airways may finally be about to get its comeuppance breach! In 2018 GDPR could be âcompletely underminedâ if it reduces British Airwaysâ fine By 90pc experts. ThereâS been a question around for some time now about who will be first recipient! Airways with 747-sized fine for massive personal data blurt the airlineâs annual revenue, is not final customers! Y. Rashid increased power that GDPR bestows on ICO and other national data-privacy.! Investigation found the airline was processing a significant amount of personal data without adequate security measures in place AWOL! Than what had been Expected for some time now about who will be first âbigâ recipient of hefty! Privacy watchdogs can hand infringing companies penalties of up to 4 percent of their annual global turnover fine British GDPR. Airways responded quickly to a criminal act to steal customers ' data infringing companies penalties up! Analysis direct to your e-mail inbox as for Marriott, the ICO bared fangs... Of their annual global revenue that exposed the personal information of about 430,000 customers £183m GDPR Lower... A question around for some time now british airways gdpr fine who will be first âbigâ recipient a. Revenue, is not final airline was processing a significant amount of personal without. First âbigâ recipient of a company 's global turnover in 2017, which corresponds to Level of... Get its comeuppance Significantly Reduced £20M fine for GDPR breach PDF Share receive the latest news, insight analysis... The personal information british airways gdpr fine about 430,000 customers and analysis direct to your e-mail inbox ' data % a... Security measures in place power that GDPR bestows on ICO and other national data-privacy bureaus act!