British Airways faces a fine of more than £183 million after computer hackers last year stole bank details from hundreds of thousands of passengers, its parent group IAG said Monday.
In a statement, IAG said the UK Information Commissioner's Office intends to issue the airline with a penalty notice under the UK Data Protection Act, totaling £183.39 million ($229.7 million, 205 million euros).
The airline revealed last September that the credit card details of hundreds of thousands of its customers were stolen in an attack on its website and app.
It said the ICO had indicated it proposes to impose the penalty, which equates to 1.5% of its worldwide turnover for 2017.
"We are surprised and disappointed in this initial finding from the ICO," said Alex Cruz, BA's chairman and chief executive.
"British Airways responded quickly to a criminal act to steal customers' data. We have found no evidence of fraud/fraudulent activity on accounts linked to the theft," he said, adding an apology to customers for any inconvenience caused.
Willie Walsh, International Airlines Group's chief executive, said BA would be making representations to the ICO in relation to the proposed fine.
"We intend to take all appropriate steps to defend the airline's position vigorously, including making any necessary appeals," he said.