Hong Kong’s privacy commissioner has launched an investigation into the Cathay Pacific airlines data breach that exposed the data of 9.4 million of its customers.
Privacy Commissioner for Personal Data (PCPD) Stephen Kai-yi Wong will check if the company, along with its Hong Kong-based subsidiary Dragon Air, broke any compliance regulations, particularly the fact that it took Cathay more than seven months to reveal to the victims and the public that the breach took place. The PCPD has received 89 complaints relating to the Cathay breach.
“The compliance investigation is going to examine in detail, amongst others, the security measures taken by Cathay Pacific to safeguard its customers’ personal data and the airline’s data retention policy and practice,” Wong said in a statement.
Please register to continue.
Already registered? Log in.
Once you register, you’ll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.