British Airways are facing a £183 million fine after a data breach in 2018 where the personal data, including names, addresses, credit card numbers and travel details of approximately 500,000 customers was breached.
This will be the largest fine ever imposed by the Information Commissioner’s Office (ICO).
The recently introduced GDPR rules allow a company to be fined up to a maximum of 4% of of its turnover.
British Airways has 28 days to appeal.
October 2020 Update: The ICO has fined British Airways £20m for failing to protect the personal and financial details of more than 400,000 of its customers. Even though the fine was reduced to take into account the economic impact on the airline from Covid-19, it is still the largest penalty the ICO has ever issued.