UK Watchdog Investigation of British Airways and Marriott Hotels Security Breaches

Following an incident reported to the ICO in September 2018, the Information Commissioners Office (ICO), the UK’s data protection supervisory authority, investigated and uncovered that the personal data of up to 500,000 BA customers had been unlawfully accessed. The BA’s website had been diverted to a dummy site where customer details were harvested by hackers. Some credit cards long number and security codes had been discolosed causing serious security breaches. On 8th of July 2019, the ICO published a Notice of Intent to fine British Airways 183 million £.

Continue Reading →

Navigating the new EU Data Protection Rules

The General Data Protection Regulation, or “GDPR” – “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. – was published 4 May 2016. Enforceable after a grace period of two year, from the 28th of May 2018.

Continue Reading →

What to retain from the GDPR after BREXIT

Since the UK referendum vote for BREXIT much has been speculated about the situation of the UK with regard to compliance to the GDPR enforceable from 28 May 2018. Although they are uncertainties, the recent UK Information Commissioner speech has reinforced the opinion that UK businesses need to get ready to comply.

Continue Reading →