According to the latest industry research, more than 160,000 data-breaches have been reported to authorities in the 18 months since Europe’s digital privacy regulations came into force.
The figure represents an increase in the number of reported incidents, from an average of 247 breaches per day in the first eight months, to an average of 278 notifications per day in the ten months since.
Under GDPR, organisations can be fined up to four per cent of their annual turnover if they are irresponsible with security following a data breach. Despite this, it’s believed that just one-third of organisations are fully GDPR-compliant.
The total cost of GDPR related fines paid since the legislation was implemented to date is £97 million, with the largest paid fine issued to Google for £42 million by the French data protection authority, CNIL for infringements around transparency and consent.
The UK Information Commissioners Office (ICO) has issued two larger fines relating to data-protection infringements, but currently, neither of the organisations involved have come to a final agreement over the payments and have launched appeals.
In July 2019, British Airways was fined £183 million following cyberattacks against its systems which resulted in personal details of around 500,000 customers being stolen.
Then, just a couple of days after this the ICO fined Marriott Hotels £99 million for a data breach which exposed the personal details of more than 339 million guests across the globe.
For help and advice regarding keeping compliant with the GDPR legislation, contact us today and speak to David Scott on 01904 528200.