Quastels
  • Expertise
    • Corporate & Commercial
    • Commercial Real Estate
    • Residential Real Estate
    • Digital Assets & Blockchain
    • Data Protection & Privacy
    • Employment
    • Dispute Resolution
    • Sports
    • Private Client
    • Immigration & Recruitment
  • Team
  • News
  • Careers
  • Contact
Menu
Quastels
  • Home
  • Expertise
  • Team
  • Careers
  • Fees
  • News
  • Contact
Quastels

Data Protection Update: British Airways Fined

  • Home
  • News
  • News
  • Data Protection Update: British Airways Fined
  • 20 October 202025 November 2021
  • Well Studio

Ann-Maree Blake, Data Protection and Corporate Partner

The Information Commissioner’s Office (ICO) has fined British Airways £20 million for an “unacceptable” data breach that affected more than 400,000 customers in 2018.  To date, this is the largest fine issued by the ICO for a GDPR and/or Data Protection Act 2018 breach.

The ICO investigation found that British Airways failed to effectively protect client data.  The breach occurred when hackers infiltrated BA’s systems and stole customer log in, payment card and travel booking details as well as name and address information. The breach went unnoticed for two months.

Information Commissioner Elizabeth Denman told the BBC

“When organisations take poor decisions around people’s personal data, that can have a real impact on people’s lives. The law now gives us the tools to encourage businesses to make better decisions about data, including investing in up-to-date security.”

This latest fine shows that the ICO, in line with other EU privacy watchdogs, is prepared to issue significant penalties under the GDPR and Data Protection Act 2018.  Therefore, although preparations for Coronavirus and Brexit may be consuming your attention and resources, it is imperative that you ensure your organisation’s data protection compliance remains robust.

If you require any advice on Data Protection or GDPR matters, please get in touch with Ann-Maree Blake.

Please note – this article does not constitute legal advice.

Posted in News
© All right reserved
  • +44 (0)20 7908 2525
  • enquiries@quastels.com
  • Quastels LLP, Watson House, 54 Baker Street, London W1U 7BU

We are using cookies to give you the best experience on our website. Find out more in our Cookie Policy and Website Privacy Policy

Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

Find out more in our Cookie Policy, Client Privacy Policy and Website Privacy Policy

Strictly Necessary Cookies

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

If you disable this cookie, we will not be able to save your preferences. This means that every time you visit this website you will need to enable or disable cookies again.

3rd Party Cookies

This website uses Google Analytics to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Enabling this cookie enabled helps us to improve our website.

Please enable Strictly Necessary Cookies first so that we can save your preferences!