UK watchdog fined firms £3m for data breaches last year – before its GDPR balls dropped

www.theregister.co.uk | 7/10/2019 | Staff
Click For Photo: https://regmedia.co.uk/2017/10/24/finger_wagging_woman.jpg

The Information Commissioner's Office issued £3m worth of fines for data breaches in the year to April 2018 – a mere fraction of its recent proposed GDPR-enabled penalties on British Airways and Marriott.

The UK data watchdog's annual report for 2018/19 (PDF) reveals that it imposed a financial slap on the wrist on 22 occasions.

£500 - Fine - Equifax - Security - Debacle

That includes the £500,000 fine against Equifax for its security debacle affecting the personal data of up to 15 million UK residents, and the same amount against Facebook over its data-harvesting scandal that affected an estimated 87 million users.

Under the UK's Data Protection Act, the maximum fine was £500,000. But since the EU's GDPR came into force on 25 May last year, companies are now liable to a penalty of up to 4 per cent of turnover.

Week - ICO - GDPR - Enforcement - Muscles

Just this week, the ICO flexed its GDPR enforcement muscles for the first time. British Airways is facing a record fine of £183m for last year's data leakage (1.5 per cent of its turnover), and yesterday it was revealed that hotel chain Marriott could be stung for £99m (3 per cent).

Although GDPR powers were in place during 2018/19, an ICO spokesman said none were used in that period due to the...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!