Record GDPR Fine of $230M Places Emphasis on Data Security
British Airways appears poised to be the recipient of the largest GDPR fine to-date. The UK Information Commissioner’s Office today issued a statement announcing its intention to levy a record-breaking £183.39M ($230M) penalty against the airline based on security deficiencies it discovered after investigating a data breach. That pattern of enforcement mirrors the long-standing trend in the U.S., wherein a reported data breach leads to a regulatory review of underlying security and the resultant monetary penalties or settlements are based not only on the disclosure of data, but also on the gaps in data security measures uncovered thereafter (whether or not those gaps contributed to the breach).
Read the full article on LinkedIn.