In its second statement of intent of the week, on 9 July 2019, the UK’s Information Commissioner’s Office (“ICO”) announced its intention to fine Marriott International, Inc (“Marriott”) £99.2m under the General Data Protection Regulation (“GDPR”) for a personal data breach that occurred in relation to the Starwood guest reservation database system.

The breach is

The UK’s Information Commissioner’s Office (“ICO”) today (8 July 2019) announced its intention to fine British Airways (“BA”) £183.39m under the General Data Protection Regulation (“GDPR”) for a personal data breach. This is the highest fine issued so far by a European Union data protection supervisory authority for a personal data breach under the GDPR.

The new European General Data Protection Regulation (GDPR) will come into force throughout the EU on 25 May 2018. The GDPR will replace existing data protection laws throughout the EU and introduce significant changes and additional requirements that will have a wide ranging impact on UK pension schemes. As the GDPR will come into force