ICO intends to fine British Airways £183m for data breach

British Airways could face a fine of £183 million as a result of a data breach that was disclosed by the airline on 6th September 2018.  According to Sky News, the carrier today said that it had received notification from the Information Commissioner’s Office (ICO) of the regulator’s intention to issue BA with the record-breaking […]

Data protection authority fines Marriott hotels for data breach

Regulators in Turkey have issued Marriott International with an administrative fine of TL 1.5 million (£213,122) due to the impact of the hotel chain’s five-year-long data breach on the country’s citizens. The data breach, which affected millions of guests globally who were listed on Marriott International’s Starwood Division database, compromised the private data of 1.2 […]

Police data-share put King’s College London in breach of GDPR

A review of cyber-security procedures has concluded that King’s College London violated EU data laws when it shared personal and private data of politically active students with police authorities. King’s College London (KCL) has now handed itself into the Information Commissioner’s Office. The review also concluded that none of the data subjects had “been part […]

Max Schrems to meet Facebook in court on 9th July

Austrian privacy activist, Max Schrems will once again go up against Facebook in the European Court of Justice. The outcome of the case could bring new strength to EU citizens’ data rights, and dictate the way companies around the world move private information around. Central to the case is the way the social network and […]

US data breach action sends risk warning to UK dealers, experts say

In June, Iowa-based software provide, DealerBuilt settled with the FTC over a 2016 data breach which saw a hacker gain unauthorised access to DealerBuilt’s database. The hacker obtained the personal and private data of around 12.5 million consumers, held by 130 dealership clients. According to experts at ecommerce solutions vendor, iVendi, the action taken against […]

Energy grid prioritised in US cyber security  

The past two months have seen the US continue to develop cyber protection of the country’s national energy grid, while New York has passed new data breach notification laws. The Stop Hacks and Improve Electronic Data Security (SHIELD) Act will bring new definition to how and when companies in the Empire State must inform both […]

Uncertainty reigns as CCPA deadline draws near

According to a new study, companies in the US remain largely unprepared for the California Consumer Privacy Act (CCPA) which will come into being at the start of next year. The findings have led the Association of National Advertisers (ANA) to reiterate their preference for a national privacy regulation in the US. The ANA also […]

Lake City cyber-attack leads to IT director’s dismissal

A ransomware attack on Florida’s Lake City has led to the city council’s director losing his job. The Lake City attack resulted in the city’s computer systems being disrupted for three weeks, city manager Joe Helfenberg said. In June, Lake City council elected to pay the $460,000 ransom to the hacking element in return for […]

CCPA: why ‘wait and see’ doesn’t work

By Teresa Troester-Falk, Chief Global Privacy Strategist at Nymity The one-year anniversary of the European Union’s General Data Protection Regulation (GDPR) recently passed, but the global landscape of privacy legislation continues to change on what, at times, feels like a daily basis. Much of the current discussion is now turning to the California Consumer Privacy […]