British Airways fined US$229 million over massive data breach that saw hackers steal bank details of thousands of passengers

The record fine is being issued by Britain’s data privacy watchdog for the airline’s infringements of EU data protection rules

The personal data of around 500,000 customers was compromised in the hack, which BA publicly revealed in September last year

Reading Time:2 minutes

The fine relates to British Airways’ infringements of EU data protection rules. Photo: EPA

Published: 5:07pm, 8 Jul 2019Updated: 5:23pm, 8 Jul 2019

Britain’s data privacy watchdog has fined the country’s flag carrier more than £183 million (US$229 million) after computer hackers last year stole bank details from hundreds of thousands of passengers.

The Information Commissioner’s Office (ICO) said it had issued a notice of its intention to fine British Airways for infringements of EU data protection rules, or GDPR.

“People’s personal data is just that – personal,” Information Commissioner Elizabeth Denham said in a statement.

“When an organisation fails to protect it from loss, damage or theft it is more than an inconvenience. That’s why the law is clear – when you are entrusted with personal data you must look after it.”

Willie Walsh, CEO of International Consolidated Airlines Group. Photo: AFP

In a separate statement, BA’s parent group IAG said the fine was equivalent to 1.5 per cent of British Airways’ turnover in 2017. Companies can be fined up to four per cent of annual global turnover for breaching EU data protection rules.