Breach News

Grindr fined EUR 5.7m for GDPR marketing breach Grindr, the self claimed “world’s largest social networking app for LGBTQ” has been fined (July 2024) €5.65m under GDPR, by the Oslo District Court in Norway. Finally responding to a 2020 complaint from the Norwegian Consumer Council, the court found that sensitive personal data was being shared …

Grindr fined EUR 5.7m for GDPR breach Read More »

On 17th October 2023, the 10 most recent ICO fines were: It’s clear most fines relate to marketing activities, whether calls, email or SMS. Want to learn how to protection your organisation? Contact our GDPR DPO specialists:

As at 17 October 2023, the biggest GDPR fines across UK and Europe were: Want to know more about GDPR fines and how to protect your organisation? Contact our GDPR DPO specialists today:

18/9/22 It is thought that Rockstar Games, producers of Grand Theft Auto (GTA), has suffered a security breach. Teapotuberhacker posted 90 short videos, which appears to show footage of the unreleased version of GTA 6. Teapotuberhacker suggested they want to negotiate a deal with Rockstar, otherwise they will release the source code of GTA 5, …

Grand Theft Auto GTA Security Breach – Rockstar Breach Read More »

20/9/22 Morgan Stanley agreed to pay $35m fine to US SEC, down from the original suggestions of $60m in January 2022, over allegations that they failed to secure customer data when disposing of hard drives. Morgan Stanley has denied claims of liability. It is suggested a third party auctioned the devices, without removing the data, …

Morgan Stanley Pays USD 35m SEC Fine – Data Security Asset Disposal Read More »

Rumour has it that Uber has suffered a cyber security breach. News suggests an 18 year old claims having gained access via Slack, and posted images that appear to show full administrative access to Uber’s cloud services. If you have an Uber account, makes sure you change your password, and if you used that password …

Uber Cyber Security Breach 15/9/22 Read More »

Cathay Pacific airway fined £0.5m by ICO for cyber-attack Part of the cost of cyber-attacks 4th March 2020 Cathay Pacific airways has been fined £0.5m (the pre-GDPR maximum) by the UK ICO after a server connected to the internet was hacked and malware installed in early 2018 (i.e. before “GDPR-day” on 25th May 2018). 9.4m …

Cathay Pacific airway fined £0.5m by ICO for cyber-attack Read More »

Morrisons found not vicariously liable for data breach Lucky for Morrisons and everyone else 4th April 2020 The UK’s top court has ruled that Morrisons can’t be held liable for a 2014 data leak affecting the personal payroll data of around 100,000 workers. In the first class action of it’s kind, involving 2,000 of the …

Morrisons found not vicariously liable for data breach Read More »

€50k fine part due to DPO assignment Keeping DPOs independent 28th April 2020 The Belgian Data Protection Authority (28/4/20) fined a company €50k, for: Having a DPO that lacked independence (he was also the director of risk, compliance and audit) Failing to adequately engage the DPO in business matters Failing to appropriate risk assess events …

Beligian DPA GDPR EUR 50k fine for DPO lacking independence Read More »