FCA fines Equifax’s U.K. unit $13.3M over 2017 data breach

By Jeff Dale2023-10-13T18:57:00

The Financial Conduct Authority (FCA) fined Equifax’s U.K. unit more than 11 million pounds (U.S. $13.3 million) regarding the company’s 2017 data breach that affected approximately 13.8 million U.K. consumers.

Equifax was originally fined nearly £16 million (U.S. $19.4 million) but qualified for a 30 percent discount under executive settlement procedures, the FCA announced in a press release Friday. The U.K. regulator also noted Equifax received a 15 percent credit for its cooperation and remedial efforts.

Equifax failed to manage and secure U.K. consumer data outsourced to its parent company in the United States, the FCA alleged.

THIS IS MEMBERS-ONLY CONTENT

LEARN MORE

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

News Brief
Blackbaud settles with states for $49.5M over 2020 data breach

2023-10-16T21:16:00Z By Jeff Dale

Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.
Article
Equifax must spend ‘a minimum of $1B’ for data security

2020-01-21T19:40:00Z By Jaclyn Jaeger

A massive data breach that was “entirely preventable” will cost credit-reporting agency Equifax another $1 billion to beef up its cyber-security efforts.
Article
Lesson from Equifax penalty (at least $575M): Breach ‘entirely preventable’

2019-07-22T19:45:00Z By Jaclyn Jaeger

What resulted in the largest-ever breach of consumer data culminated in the largest data breach enforcement action in history.

More from Regulatory Enforcement

Article
DOJ makes good on corporate-friendly enforcement policy with Balt resolution

2026-03-24T19:09:00Z By Adrianne Appel

The ink was barely dry on the U.S. Department of Justice’s new corporate enforcement policy (CEP) when the agency announced it would not prosecute Balt SAS for alleged bribery violations.
Article
BoA settles class-action related to its dealings with Jeffrey Epstein

2026-03-20T18:24:00Z By Adrianne Appel

Bank of America has agreed to settle a class-action lawsuit alleging know-your-customer and other failings in its dealings with convicted sex offender Jeffrey Epstein.
News Brief
SEC’s Uyeda: ‘Enforcement is the wrong way’ to handle off-channel communications

2026-03-19T21:08:00Z By Aaron Nicodemus

The U.S. Securities and Exchange Commission’s Mark Uyeda told an audience of investment advisers that the SEC will no longer prioritize stand-alone enforcement actions for violations of the SEC’s rules on off-channel communications.

FCA fines Equifax’s U.K. unit $13.3M over 2017 data breach

THIS IS MEMBERS-ONLY CONTENT

Related articles

Blackbaud settles with states for $49.5M over 2020 data breach

Equifax must spend ‘a minimum of $1B’ for data security

Lesson from Equifax penalty (at least $575M): Breach ‘entirely preventable’

More from Regulatory Enforcement

DOJ makes good on corporate-friendly enforcement policy with Balt resolution

BoA settles class-action related to its dealings with Jeffrey Epstein

SEC’s Uyeda: ‘Enforcement is the wrong way’ to handle off-channel communications