This week’s news of IAG data breach fine is understood to be the biggest penalty the ICO has issued to date under GDPR, but it’s not the maximum that the airline could have faced.
This is a £33m fine essentially caused by lack of an accurate, up-to-date Single Customer View – the catalyst being inadequate identification of all accounts for deceased customers and (in some cases) writing to old addresses.
The massive 500m record breach of Marriott’s Starwood customer database is just the latest in a very long line of high profile, reputation-threatening data breaches.
The 1-10-100 rule is a quality management concept used to quantify the hidden costs of poor quality. Think of it as Moore’s Law applied to data quality. This rule has stood for nearly 30 years, but with GDPR now enacted it’s outdated. Read how on 360Science.com.
Who should read this? This post is written for Data Controllers and anyone who needs to understand what the obligations of the Data Controller under GDPR are for obtaining consent. We’re talking about customers here, but the same obligations apply to any other personal data that you hold. What do you need to know? Over the last several years, data-driven…
As you should know, the EU General Data Protection Regulation (GDPR) comes into force one year from today, 25th May 2018. As we will still be in the EU then, whatever kind of Brexit we are in for, you only have 12 months to make sure that all your systems support compliance. If you need any incentive to…