British Airways are a leading global airline. They operate online with their own website and app and are also present on other flight-finding sites such as Skyscanner.
Considering this, the main victims of this data loss are online British Airways customers.
Between April and September 2018, almost 500,000 customers were affected by a series of breaches which compromised passenger data including names, addresses and financial details.
The Information Commissioners Office, the government body responsible for data protection, has issued a notice of its intention to fine British Airways £183.39m for infringements of the General Data Protection Regulation (GDPR). This has paved the way for customers, who’s personal data was breached, to pursue legal action.
Data breach is a serious matter. Your data is valuable and under law, is protected by a number of laws to ensure that your personal information is not sold, lost or hacked.
British Airways did not thoroughly protect customers when booking – allowing hackers to divert booking website visitors to a scam site where they entered their details under the false pretence of paying for their booked flights. Hackers also accessed data via the BA website and app.
Given the severity of some of these cases – with financial information being shared and many customers forced to change bank accounts and credit cards due to the breach – the potential compensation could be huge.