In September 2018, leading airline British Airways announced that it had suffered a data breach and that customer data had been lost. Company announcement: https://www.britishairways.com/en-us/information/incident/data-theft/latest-information
The company released details that the theft had occurred between 21 August 2018 and 5 September 2018, and that as many as 380,000 transactions had been affected. This breach is important not just because of its size and the obvious effect it will have on the people whose data has been compromised, but also due to the fact that was one of the first large instances of data loss since the introduction of the General Data Protection Regulation (GDPR) in the European Union (EU). Official Website: https://eugdpr.org/. Note: If the link to the EU GDPR website is down refer to the following websites/links for more information about GDPR:
https://gdpr-info.eu/
https://en.wikipedia.org/wiki/General_Data_Protection_Regulation
https://www.forbes.com/sites/quora/2018/02/14/what-is-general-data-protection-regulation/#64feeef762dd
https://www.cnbc.com/2018/03/30/gdpr-everything-you-need-to-know.html
The GDPR came into force in May 2018 in the EU, providing businesses with a modern framework to understand their requirements surrounding data protection, as well as improving the range of powers available to regulators and increasing maximum fines.
Questions:
How well did British Airways handle the data breach?
Did British Airways act in accordance with the rules of the GPDR in the EU, and what the potential outcome could be?
Be sure to use the course readings to present the points and ideas presented.
Theme 1: Emerging Technology
- Jennifer Golbeck The curly fry conundrum Why social media likes say more than you might think
- Bias already exists in search engine results, and it’s only going to get worse
- Facebook has revealed the hyper-specific internal rules it uses to police content
- Net neutrality rules are likely doomed, but the debate isn’t going away
- California is on the verge of passing a sweeping new online privacy law targeting Facebook, Google and other tech giants
Theme 2: Data Protection
- The Complicated Ethics of Data-Breach Disclosure
- Equifax Breach Exposed More Consumer Data Than First Disclosed
- The cost of data security: Are cybersecurity investments worth it?
- The ethics of Hacking 101
- US v Europe – a cultural gap on the right to be forgotten
- Tracking The Trackers
- What happens to your digital assets when you die?
Theme 3: Privacy
- Technology as a Threat to Privacy: Ethical Challenges to the Information Profession
- FDA medical device plan zeros in on cybersecurity, public-private partnership
- Ethics and advanced medical devices: Do we need a new approach?
Consumer Privacy Bill of Rights—not the law
- European Union hits Google with record $5 billion fine in Android antitrust case
- The 10 Largest Data Security Breaches of 2018 (So Far)
