On 17th October 2023, the 10 most recent ICO fines were: It’s clear most fines relate to marketing activities, whether calls, email or SMS. Want to learn how to protection your organisation? Contact our GDPR DPO specialists:
Breach News
As at 17 October 2023, the biggest GDPR fines across UK and Europe were: Want to know more about GDPR fines and how to protect your organisation? Contact our GDPR DPO specialists today:
6/9/22 ICO has fined UK retailer Halfords £30k for sending 498,179 direct marketing emails unlawfully. The email contained an offer related to a “Fix Your Bike” government scheme, which provides a voucher for up to £50 towards the cost of repairing a bike. We can’t help notice that Halfords may still be quids in. If …
ICO fine Halfords £30k for 500k Fix Your Bike emails. Are Halfords still quids in? Read More »
18/9/22 It is thought that Rockstar Games, producers of Grand Theft Auto (GTA), has suffered a security breach. Teapotuberhacker posted 90 short videos, which appears to show footage of the unreleased version of GTA 6. Teapotuberhacker suggested they want to negotiate a deal with Rockstar, otherwise they will release the source code of GTA 5, …
Grand Theft Auto GTA Security Breach – Rockstar Breach Read More »
20/9/22 Morgan Stanley agreed to pay $35m fine to US SEC, down from the original suggestions of $60m in January 2022, over allegations that they failed to secure customer data when disposing of hard drives. Morgan Stanley has denied claims of liability. It is suggested a third party auctioned the devices, without removing the data, …
Morgan Stanley Pays USD 35m SEC Fine – Data Security Asset Disposal Read More »
Rumour has it that Uber has suffered a cyber security breach. News suggests an 18 year old claims having gained access via Slack, and posted images that appear to show full administrative access to Uber’s cloud services. If you have an Uber account, makes sure you change your password, and if you used that password …
Cathay Pacific airway fined £0.5m by ICO for cyber-attack Part of the cost of cyber-attacks 4th March 2020 Cathay Pacific airways has been fined £0.5m (the pre-GDPR maximum) by the UK ICO after a server connected to the internet was hacked and malware installed in early 2018 (i.e. before “GDPR-day” on 25th May 2018). 9.4m …
Cathay Pacific airway fined £0.5m by ICO for cyber-attack Read More »
Morrisons found not vicariously liable for data breach Lucky for Morrisons and everyone else 4th April 2020 The UK’s top court has ruled that Morrisons can’t be held liable for a 2014 data leak affecting the personal payroll data of around 100,000 workers. In the first class action of it’s kind, involving 2,000 of the …
Morrisons found not vicariously liable for data breach Read More »
€50k fine part due to DPO assignment Keeping DPOs independent 28th April 2020 The Belgian Data Protection Authority (28/4/20) fined a company €50k, for: Having a DPO that lacked independence (he was also the director of risk, compliance and audit) Failing to adequately engage the DPO in business matters Failing to appropriate risk assess events …
Beligian DPA GDPR EUR 50k fine for DPO lacking independence Read More »
£18bn lawsuit filed against EasyJet after cyber-attack Part of the cost of cyber-attacks 26th May 2020 Law firm PGMBM has issued a £18bn “no-win-no-fee” class action claim in the High Court of London against EasyJet, on behalf of affected customers. It was reported that EasyJet became aware of the cyber-attack in January 2020, with crooks …
200526 GBP18bn lawsuit filed against EasyJet after cyber-attack Read More »