International airline Cathay Pacific, based in the UK, was issued a £500,000 fine by the Information Commissioner’s Office (ICO) for a data breach that occurred continuously between October 2014 and May 2018. According to the ICO’s notice, approximately 9.4 million data subjects were affected by the breach, which leaked information such as names, nationalities, birth dates, phone numbers, email addresses, and passport numbers for Cathay Pacific customers around the world.