Test yourself - WebApplication

Test yourself

Read about recent GDPR enforcement actions and find an error in each description. TA S6, TA S11

1. British Airways:
In 2019, the company was fined 183 million pounds (230 million dollars) by the UK’s Information Commissioner’s Office (ICO) for a data breach in which hackers accessed the personal data of about 500,000 customers. The ICO found that the company had failed to take appropriate technical and organizational measures to protecting personal data.
British Airways:

In 2019, the company was fined 183 million pounds (230 million dollars) by the UK’s Information Commissioner’s Office (ICO) for a data breach
in which hackers accessed the personal data of about 500,000 customers.
The ICO found that the company had failed to take appropriate technical and organizational measures to protecting personal data.
(1 p.)

2. Google:
In 2019, Google was fined 50 million pounds (56 million dollars) by the French data protection authority (CNIL) for violating the EU's General Data Protection Regulation (GDPR). The CNIL found that Google had not provided clear and comprehensive informations to users about its data processing activities and had not obtained valid consent for targeted advertising.
Google:

In 2019, Google was fined 50 million pounds (56 million dollars) by the French data protection authority (CNIL) for violating the EU's General Data Protection Regulation (GDPR).
The CNIL found that Google had not provided clear and comprehensive informations
to users about its data processing activities and had not obtained valid consent for targeted advertising.
(1 p.)

3. Marriott International:
In 2019, the company was fined£18.4 million pounds (23 millions dollars) by the ICO for a data breach in which hackers accessed the personal data of about 339 million guests. The ICO found that the company had failed to undertake sufficient due diligence when acquiring the Starwood Hotels and Resorts chain, which had inadequate security measures in place.
Marriott International:

In 2019, the company was fined 18.4 million pounds (23 millions dollars) by the ICO for a data breach in which hackers accessed the personal data of about 339 million guests.
The ICO found that the company had failed to undertake sufficient due diligence
when acquiring the Starwood Hotels and Resorts chain, which had inadequate security measures in place.
(1 p.)

4. Facebook:
In 2018, the company was fined 1.2 million pounds (1.4 million dollars) by the Spanish Data Protection Authority (AEPD) for failing to obtain user consent for targeted advertising, as of required by GDPR.
Facebook:

In 2018, the company was fined 1.2 million pounds (1.4 million dollars)
by the Spanish Data Protection Authority (AEPD) for failing
to obtain user consent for targeted advertising, as of required by GDPR.
(1 p.)

5. Yahoo:
In 2019, Yahoo was fined 250,000 pounds (318,000 dollars) by the ICO for a data breach in which hackers accessed the personal data of about 500,000 UK customers. The ICO found that the company has failed to take appropriate technical and organizational measures to protect personal data.
Yahoo:

In 2019, Yahoo was fined 250,000 pounds (318,000 dollars) by the ICO for a data breach in which
hackers accessed the personal data of about 500,000 UK customers. The ICO found that
the company has failed to take appropriate technical and organizational measures to protect personal data.
(1 p.)