Using new rules to prevent and impose fines for data breach, Britain’s information regulator on Monday announced a record £183.39 million fine on British Airways (BA) for a 2018 breach that led to its website users diverted to a fraud site.
The highest fine so far was £500,000 imposed on Facebook for its role in the Cambridge Analytica scandal, but the Information Commissioner’s Office (ICO) used new norms under the General Data Protection Regulations (GDPR) that came into force across the EU in 2018 to fine BA.
The ICO’s announcement is an ‘intention to fine’ the amount. BA has 28 days to appeal against it. The airline said it had apologised to customers and would appeal and defend its position vigorously.
