09.07.2019 | KPMG Law Insights

Fine of around 205 million euros for inadequate safety measures

By Sebastian Hoegl, LL.M. (Wellington), Maik Ringel

Fine of around 205 million euros for inadequate safety measures

The UK’s Information Commissioner’s Office (ICO) today announced that it has fined British Airways £183.39 million for failing to take sufficient measures to protect personal data. Last year, approximately 500,000 users of British Airways’ website were redirected by hackers to their own website, allowing them to obtain information including booking details, names, address details and credit card information. In the view of the supervisory authority, this was made possible by inadequate security measures taken by the airline. The latter has announced that it will appeal the fine.

The fine might have been significantly higher if British Airways had not cooperated extensively with the authority and improved its own security measures. In any case, such behavior has led German regulators to reduce fines in the past.

Regardless of the outcome of the further proceedings, the ICO’s decision is in line with the already observed practice of imposing heavy fines, in particular for violations of the provisions of the GDPR to ensure the security of personal data. Their importance in practice can therefore hardly be overestimated. On the other hand, those who, as data controllers, neglect the security of personal data out of disinterest or even for cost reasons will expose themselves to the risk of high fines in the future. In addition to these fines, there are other risks, such as reputational risks or the risk of further regulatory measures, such as the (temporary) prohibition of individual processing operations.”

Explore #more

04.02.2025 | Deal Notifications

KPMG Law advises ROTOP shareholders in connection with an investment by GENUI and SHS Capital

KPMG Law Rechtsanwaltsgesellschaft mbH (KPMG Law) provided legal advice to the shareholders of ROTOP Pharmaka GmbH (ROTOP), a provider of development and manufacturing capacities for…

31.01.2025 | Deal Notifications

KPMG Law supports HWP with majority stake in instakorr GmbH

KPMG Law Rechtsanwaltsgesellschaft mbH (KPMG Law) advised HWP Handwerkspartner Group (HWP) on the acquisition of a majority stake in instakorr GmbH (instakorr). KPMG Law carried…

29.01.2025 | KPMG Law Insights

Green hydrogen from wastewater – legal hurdles in production

Hydrogen provides significantly more energy than gasoline or diesel. If it is produced using renewable energies, hydrogen can make a significant contribution to climate protection.…

29.01.2025 | Deal Notifications

KPMG Law advises HWP on the acquisition of Hydro-Tech GmbH

KPMG Law Rechtsanwaltsgesellschaft mbH (KPMG Law) advised HWP Handwerkspartner Group (HWP) on the acquisition of Hydro-Tech GmbH Hochdruck- und Reinigungstechniken Maler und Betoninstandsetzungsarbeiten (Hydro-Tech). KPMG…

29.01.2025 | KPMG Law Insights

What the Green Claims Directive means for companies – an overview

With the Green Claims Directive, the EU will introduce extensive regulations on the requirements for permissible environmental claims. The aim is to prevent greenwashing so…

27.01.2025 | In the media

Merger control and national security: key considerations for corporate transactions

Financier Worldwide discusses key merger control and national security considerations for corporate transactions with Lisa Navarro, Stuart Bedford, Gerrit Rixen (KPMG Law Germany), Helen Roxburgh…

24.01.2025 | In the media

Guest article in the ESGZ: Opportunities with discrimination risks: AI in the field of human resources

Artificial intelligence (AI) is no longer a dream of the future, but is already changing the world of work at a rapid pace. Companies are…

24.01.2025 | Deal Notifications

KPMG Law advises DKB on joint ventures with Sparkassen-Finanzgruppe in credit processing

KPMG Law advises Deutsche Kreditbank AG (DKB) on the establishment of a joint venture in the field of credit card processing with companies of the…

24.01.2025 | KPMG Law Insights

Tübingen packaging tax statute is constitutional

Tübingen’s packaging tax is constitutional. The Federal Constitutional Court has rejected a constitutional complaint against the packaging tax statutes of the University City of Tübingen.…

22.01.2025 | KPMG Law Insights

The EU packaging regulation sets strict requirements for packaging

The EU has adopted the Packaging Regulation. After the European Parliament adopted the Commission’s draft on April 24, 2024, the EU member states also approved…

Contact

Sebastian Hoegl, LL.M. (Wellington)

Senior Manager
Lawyer
Specialist lawyer for IT law
LL.M. (Wellington)

Heinrich-von-Stephan-Straße 23
79100 Freiburg im Breisgau

Tel.: +49 761 769999-20
shoegl@kpmg-law.com

Maik Ringel

Senior Manager

Münzgasse 2
04107 Leipzig

Tel.: +49 341 22572563
mringel@kpmg-law.com

© 2024 KPMG Law Rechtsanwaltsgesellschaft mbH, associated with KPMG AG Wirtschaftsprüfungsgesellschaft, a public limited company under German law and a member of the global KPMG organisation of independent member firms affiliated with KPMG International Limited, a Private English Company Limited by Guarantee. All rights reserved. For more details on the structure of KPMG’s global organisation, please visit https://home.kpmg/governance.

KPMG International does not provide services to clients. No member firm is authorised to bind or contract KPMG International or any other member firm to any third party, just as KPMG International is not authorised to bind or contract any other member firm.