Reading Time: 2 minutes

Published:

Anthem fined $115 million: In October 2015, health insurance company Anthem was fined $115 million by the US Department of Health and Human Services (HHS) for a data breach that had exposed the personal information of nearly 80 million customers. The fine was the largest ever issued by the HHS for a data breach.

Ashley Madison fined $1.6 million: In December 2015, the Office of the Privacy Commissioner of Canada (OPC) issued a $1.6 million fine against Ashley Madison, a dating website for people seeking extramarital affairs. The fine was in response to a 2015 data breach that had exposed the personal information of millions of users.

VTech fined $650,000: In January 2015, the Federal Trade Commission (FTC) issued a $650,000 fine against toymaker VTech in response to a data breach that had exposed the personal information of millions of children and their parents. The fine was one of the first issued by the FTC under the Children’s Online Privacy Protection Act (COPPA).

TalkTalk fined £400,000: In October 2015, the UK’s Information Commissioner’s Office (ICO) issued a £400,000 fine against telecommunications company TalkTalk for a data breach that had exposed the personal information of nearly 157,000 customers. The fine was the largest ever issued by the ICO at the time.

Premera fined $6.85 million: In November 2015, US health insurer Premera Blue Cross was fined $6.85 million by the HHS for a data breach that had exposed the personal information of more than 10 million customers. The fine was the second largest ever issued by the HHS for a data breach.

Hilton fined $700,000: In August 2015, the New York Attorney General’s office fined hotel chain Hilton $700,000 for two data breaches that had exposed the credit card information of more than 350,000 customers. The company was also required to implement new data security measures to prevent future breaches.

Wyndham fined $10 million: In December 2015, the FTC fined hotel chain Wyndham Worldwide $10 million for a series of data breaches that had exposed the personal information of more than 600,000 customers. The fine was one of the largest ever issued by the FTC for a data breach.

The University of North Carolina fined $1.5 million: In July 2015, the US Department of Education issued a $1.5 million fine to the University of North Carolina at Chapel Hill for failing to adequately protect student data. The fine was in response to a data breach in which the personal information of more than 3,000 students was exposed.

21st Century Oncology fined $2.3 million: In December 2015, the US Department of Health and Human Services issued a $2.3 million fine to healthcare provider 21st Century Oncology for a data breach that had exposed the personal information of more than 2.2 million patients. The company was also required to implement new data security measures as part of the settlement.

Remember Me