"In the UK, the most important piece of legislation organisations must worry about is the Data Protection Act and the possibilility of fines by the information commissioner (ICO). The Techworld site offers what they believe to be one of the ten most significant data breaches to hit the UK..."
"Online child products retailer Kiddicare was forced to admit it had exposed real customer data when testing a new website in 2015. In this case, the mistake was only noticed when customers started receiving suspicious SMS text messages asking them to take an online survey and an investigation eventually uncovered an error. As with many UK breaches, the company played down the fact it had let names, addresses and contact details of up to 800,000 people fall into malevolent hands with the excuse that no credit card data had been compromised (which would have been its liability had it done so). "