• |

Dec. 16, 2020

ICO Hones GDPR Enforcement Approach With Reduced Fines for British Airways, Marriott and Ticketmaster

  • Rebecca Hughes Parker
    Anti-Corruption Report
The U.K.’s Information Commissioner’s Office significantly reduced the penalties from its original notices of intent for both British Airways and Marriott, but the penalty notices, along with a more recent penalty levied on Ticketmaster UK Limited, show that the agency, while refining its approach to GDPR regulatory fines, expects all data controllers to have robust security measures, including around third parties. The cases also shed light on how the agency is considering the economic ramifications of the pandemic in its fines. We analyze the cases and the penalties issued by the ICO as the lead supervisory authority, and how the ICO’s role will change in 2021. See “GDPR Enforcement Lessons and New ICO Guidance on COVID-19” (Apr. 29, 2020).  

To read the full article

Continue reading your article with an ACR subscription.

Most-Read Articles

Spotlight on Trailblazing Women

To mark International Women’s Day 2024, women editors and reporters of ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Jill Abitbol, Managing Editor of the Cybersecurity Law Report and Anti-Corruption Report, features notable women in data privacy, cybersecurity, white collar defense, compliance and anti-corruption law, including Christina Montgomery, Leslie Shanklin, Palmina Fava, Alexandra Ross and Lucinda Low. Enjoy reading their inspiring remarks here.