The British Airways Data Breach

British Airways is facing a lawsuit that could see the airline paying out hundreds of millions of pounds in compensation following a data breach. The breach is thought to have taken place between 21 August and 5 September when cyber criminals accessed the payment and personal details of approximately 380,000 of the airline’s customers.

This reported major event is a reminder of how important it is to ensure the security of a company’s database and comply with the new GDPR (the EU General Data Protection Regulation).

In order to manage regulatory risks in connection with data, companies must adopt a data protection strategy, that determines, among others, in which countries personal data is collected, what types of data are collected, how data will be used and the means for protecting it.

GDPR comes at a time when cyber-attacks are exceedingly sophisticated. Take actions for securing your company in order to mitigate the risks associated with the collection of personal data.

This update is intended as a summary only and should not be regarded as advice regarding any specific situation. For specific advice please contact our office.