Photo of Tim Jones

Tim Jones

On 10 March 2022, the Information Commissioner’s Office (ICO) issued a monetary penalty notice to a professional services firm (the Firm) to the tune of £98,000 for a breach of Article 5(1)(f) of the General Data Protection Regulation (GDPR).

The Firm was the victim of a ransomware attack which it first became aware of on