Login
Contact Us
personal-information-british-airways

British Airways Asked To Post Personal Information Publicly

Security researcher Mustafa Al-Bassam discovered that the airline’s social media team demanded customers post a trove of personal information publicly on Twitter. This was supposed to help investigate customer service claims. The information they wanted included passport numbers, full addresses, and other sensitive personal information. The airline kept insisting this was to “comply with GDPR”.

Some users complained about the airline’s bizarrely-worded request. Therefore, British Airways began altering its replies to say that customers should send a direct message to them instead.

LEARNING TIP:  Have proper company guidelines and regular staff trainings on data
protection matters to keep your staff informed and updated.

 

Full Story

 

Subscribe to our Newsletter

Your e-mail address is only used to send you our newsletter and information about the activities of GDPR Register. You can always use the unsubscribe link included in the mail.

Latest News
The Estonian data protection startup is utilizing artificial intelligence to comply with GDPR requirements
GDPR Technology

The Estonian data protection startup is utilizing artificial intelligence to comply with GDPR requirements

April 22, 2024
The new directives from the European Union are making life more difficult for Estonian entrepreneurs again
GDPR Personal Data

The new directives from the European Union are making life more difficult for Estonian entrepreneurs again

March 13, 2024
CEO of a privacy startup: The year brings significant changes in the field of data protection
Cyber Security GDPR Personal Data

CEO of a privacy startup: The year brings significant changes in the field of data protection

March 13, 2024
Introducing Marit Kesa – GDPR Register’s new Sales and Customer Success Manager
GDPR Personal Data Privacy Data Breach Technology

Introducing Marit Kesa – GDPR Register’s new Sales and Customer Success Manager

February 19, 2024
New record for GDPR fines: over four billion euros in penalties
Fines GDPR Personal Data Technology

New record for GDPR fines: over four billion euros in penalties

October 31, 2023

Latest Blog Posts

Webinar titled 'Is DPO the new AI officer' discussing the evolving role of data protection officers in the age of AI. Featuring speakers from GDPR Register, Veriff, and Toloka

Is DPO the new AI officer?

April 1, 2025 No Comments

Key Takeaways on AI Compliance and the Role of Privacy Professionals The GDPR Register webinar brought together privacy professionals and AI experts to explore the

Read More »
GDPR Register
Facebook-f Linkedin-in Twitter Youtube

Company

About
Privacy
Cookies
Security

SERVICES

GDPR Register
Terms and Conditions
Find a DPO
Legal Notice

Resources

Book a Demo
BLOG
News
FAQ

Newsletter

Your e-mail address is only used to send you our newsletter and information about the activities of GDPR Register. You can always use the unsubscribe link included in the mail.

Contact Us