In this podcast series, data privacy/data security expert Jonathan Armstrong and Compliance Evangelist Tom Fox use the framework of GDPR to discuss a wide range of issues relating to these topics. They consider what the US compliance and InfoSec security expert needs to know about what is happening in the UK, Europe and beyond.
In this episode, Jonathan and Tom discuss the recently announced proposed fine by the UK Data Protection Regulator against British Airways (BA) after its data breach. The Regulator intends to fine the airline £183.39 million.
Some of the highlights in this episode include:
- This proposed fine represents the largest GDPR fine in the UK.
- As the fine is now open to comment by BA and other national data protection regulators, the amount of the final fine may change.
- What was the role of the ICO as ‘lead regulator’?
- What did BA know and when did it know that it had sustained a data breach?
- What remedial measures did BA engage in after it became aware of the breach?
- What are the lessons to be learned by the data privacy officer?
For additional reading see the Cordery Compliance article, “UK Data Protection Regulator Announces Intention to Fine BA after Data Breach”.
Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here.
For more information please contact Jonathan Armstrong or André Bywater who are London-based lawyers with Cordery where their focus is on compliance issues
Office: +44 (0)207 075 1784
jonathan.armstrong@corderycompliance.com
Office: +44 (0)207 075 1785