The Record reports:
Advanced, a business that provides IT services to numerous healthcare providers in the United Kingdom, has been fined £3.1 million (about $4 million) by the country’s privacy regulator over a ransomware attack in 2022.
The company had initially faced a fine of £6 million before coming to a voluntary settlement with the Information Commissioner’s Office (ICO) which announced on Thursday that the company’s security failings “put the personal information of 79,404 people at risk.”
Under both the European Union and United Kingdom’s data protection laws, organizations controlling and processing personal data are required to protect that data and can face investigations and fines from regulators in the wake of an incident.
Read more at The Record.
