In September 2018, leading airline British Airways announced that it had suffered a data breach and that customer data had been lost. Company announcement:
The company released details that the theft had occurred between 21 August 2018 and 5 September 2018, and that as many as 380,000 transactions had been affected. This breach is important not just because of its size and the obvious effect it will have on the people whose data has been compromised, but also due to the fact that was one of the first large instances of data loss since the introduction of the General Data Protection Regulation (GDPR) in the European Union (EU). Official Website: Note: If the link to the EU GDPR website is down refer to the following websites/links for more information about GDPR:
The GDPR came into force in May 2018 in the EU, providing businesses with a modern framework to understand their requirements surrounding data protection, as well as improving the range of powers available to regulators and increasing maximum fines.
How well did British Airways handle the data breach?
Did British Airways act in accordance with the rules of the GPDR in the EU, and what the potential outcome could be?
Be sure to use the course readings to present the points and ideas presented.
Theme 1:  Emerging Technology

Theme 2:  Data Protection

Theme 3:  Privacy

Consumer Privacy Bill of Rights—not the law