Information Commissioner's Office

Enforcements Actioned


ICO is responsible for taking action to ensure organisations meet their information rights obligations. See the latest actions ICO has enforced.

Digital Growth Experts Limited

24th September 2020

The Information Commissioner’s Office (ICO) has fined Digital Growth Experts Limited (DGEL) £60,000 for sending thousands of nuisance marketing texts at the height of the pandemic.

CPS Advisory Limited

10th September 2020

Swansea company CPS Advisory Ltd was fined £130,000 for making more than 100,000 unauthorised direct marketing calls to people about their pensions.

Decision Technologies Limited

2nd July 2020

Price comparison and technology company fined £90,000 for a contravention of Regulation 22 of the Privacy and Electronic Communications (EC Directive) Regulations 2003.

Black Lion Marketing Ltd

27th March 2020

Black Lion Marketing Ltd fined £171,000 for making unsolicited direct marketing calls.

Cathay Pacific

4th March 2020

Cathay Pacific Airways Limited £500,000 for failing to protect the security of its customers’ personal data. Between October 2014 and May 2018 Cathay Pacific’s computer systems lacked appropriate security measures which led to customers’ personal details being exposed.

CRDNN Limited

2nd March 2020

CRDNN Limited fined with the maximum £500,000 fine for making more than 193 million automated nuisance calls.

DSG Retail Ltd

9th January 2020

The Information Commissioner’s Office (ICO) has fined DSG Retail Limited (DSG) £500,000 after a ‘point of sale’ computer system was compromised as a result of a cyber-attack, affecting at least 14 million people.

Doorstep Dispensaree Ltd

20th December 2019

The Information Commissioner’s Office (ICO) has fined a London-based pharmacy £275,000 for failing to ensure the security of special category data. Doorstep Dispensaree Ltd, which supplies medicines to customers and care homes, left approximately 500,000 documents in unlocked containers at the back of its premises in Edgware. The documents included names, addresses, dates of birth, NHS numbers, medical information and prescriptions belonging to an unknown number of people.

Superior Style Home Improvements Ltd

17th September 2019

Superior Style Home Improvements Ltd issued with enforcement notice after making unsolicited marketing calls to individuals registered with the TPS to try and generate UPVC installation leads.

Hudson Bay Finance Ltd

12th August 2019

Hudson Bay Finance Ltd issued with an enforcement notice for failing to respond to a subject access request.

Making it Easy Ltd

2nd August 2019

Making it Easy Ltd has been fined £160,000 by the Information Commissioner’s Office (ICO) for making spam calls to people registered with the Telephone Preference Service (TPS). The ICO has also issued an enforcement notice to Making it Easy Ltd ordering it to stop its illegal marketing activity.

Life at Parliament View Limited

19th July 2019

Life at Parliament View Ltd fined £80,000 for leaving 18,610 customers’ personal data exposed for almost two years.

British Airways – Latest News

8th July 2019

British Airways could face a fine of £183 million as a result of a data breach that was disclosed by the airline on 6th September 2018.

Metropolitan Police Service

25th June 2019

Enforcement notices served under the 1998 and 2018 Data Protection Acts for sustained failures to comply with individuals’ rights in respect of subject access requests.

Her Majesty’s Revenue and Customs

10th May 2019

Her Majesty’s Revenue and Customs (HMRC) issued with an enforcement notice for failing to get adequate consent to collect callers’ personal data.

True Visions Productions

10th April 2019

ICO fines television company £120,000 for unfair and unlawful filming in maternity clinic.

Shamim Sadiq

05th April 2019

A former GP practice manager has been fined for sending personal data to her own email account without authorisation, following an investigation by the Information Commissioner’s Office (ICO).

London Borough of Newham

04th April 2019

The Information Commissioner’s Office (ICO) has fined the London Borough of Newham £145,000 for disclosing the personal information of more than 200 people who featured on a police intelligence database.  

Grove Pension Solutions Limited

26th March 2019

A Kent pensions company which relied on ‘misleading’ professional advice has been fined £40,000 by the Information Commissioner’s Office for being responsible for sending nearly two million direct marketing emails without consent.

Vote Leave Limited

19th March 2019

The Information Commissioner’s Office (ICO) has fined Vote Leave Limited £40,000 for sending out thousands of unsolicited text messages in the run-up to the 2016 EU referendum.

Jayana Morgan-Davis

15th March 2019

A former administration assistant at a used car dealership has been prosecuted for unlawfully obtaining the personal data of customers and other employees.   

Faye Caughey

15th March 2019

A former administrator at Heart of England NHS Foundation Trust (HEFT) has been prosecuted for accessing medical records without authorisation. 

For more information and the latest news from ICO visit

Contact Us

[email protected].COM OR