Computing reports Tesco, the supermarket chain that owns Tesco Bank, could have faced fines of up to 1.9 billion GBP under the General Data Protection Regulation for the data breach it recently suffered. Tesco filed a turnover of 48.4 billion GBP at the end of September 2016. Since Tesco is classified as a data controller, it would have been forced to pay up to four percent of its turnover under the GDPR for suffering the breach. The new GDPR rules would have subjected Tesco to further class-action lawsuits for the breach in data privacy. “We're aware of this incident and are looking into the details. The law requires organisations to have appropriate measures in place to keep people's personal data secure. Where there's a suggestion that hasn't happened, the ICO can investigate, and enforce if necessary," a Tesco statement read.
If you want to comment on this post, you need to login.