Bupa fined £175,000 over data security

data-security-key

The Information Commissioner’s Office punishes the provider after customer data ended up for sale on the dark web.

Bupa has been fined £175,000 by the Information Commissioner’s Officer (ICO) for inadequate security measures relating to customer data.

The ICO revealed that between 6 January and 11 March 2017, a Bupa employee was able to extract the personal information of 547,000 Bupa Global customers and offer it for sale on the dark web.

The employee accessed the information via Bupa’s customer relationship management system, known as SWAN. The system holds customer records relating to 1.5m people.

Acco

Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.

To access these options, along with all other subscription benefits, please contact info@insuranceage.co.uk.

You are currently unable to copy this content. Please contact info@insuranceage.co.uk to find out more.

Sorry, our subscription options are not loading right now

Please try again later. Get in touch with our customer services team if this issue persists.

New to Insurance Age? View our subscription options

Register

Sign up and gain access to five complimentary news articles every month.

Already have an account? Sign in here

Most read articles loading...

You need to sign in to use this feature. If you don’t have an Insurance Age account, please register now.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an indvidual account here: