Bupa has been fined £175,000 by the Information Commissioner’s Officer (ICO) for inadequate security measures relating to customer data.
The ICO revealed that between 6 January and 11 March 2017, a Bupa employee was able to extract the personal information of 547,000 Bupa Global customers and offer it for sale on the dark web.
The employee accessed the information via Bupa’s customer relationship management system, known as SWAN. The system holds customer records relating to 1.5m people.
The Insurance Age team unpick the most recent and most popular stories.Subscribe to our daily newsletter for all the latest news
- Ardonagh confirms the end of all Swinton retail branches
- Aon UK confirms solicitors’ PI cover has been withdrawn
- Ardonagh losses rise to £44.5m in H1 2019
- FSCS set to compensate Alpha Insurance latent defect insurance policyholders
- Sure Thing! to be rebranded following sale to Policy Expert
- Romero Group moves to Applied Epic
- PIB u-turns on pledge to keep Albany Childcare brand