The UK has proposed fining British Airways 183.4 million pounds ($230 million) over computer attacks last year that exposed customer data. The penalty, proposed under the UK Data Protection Act, amounts to 1.5 per cent of the airlines 2017 revenue, parent IAG SA said in a statement on Monday. It was issued by the UK Information Commissioners office, which protects data privacy.
We are surprised and disappointed in this initial finding from the ICO, British Airways Chairman and Chief Executive Officer Alex Cruz said in the statement.
A hack that lasted from August 21 through September 5 last year affected at least 380,000 transactions, IAG has said previously, with intruders vacuuming up account numbers and personal information of customers making flight reservations from BAs website and its mobile app.