A significant penalty has been levied against a major genetic testing company following a substantial data breach affecting user information. The firm, known for providing ancestry and health insights based on DNA analysis, has been ordered to pay £2.3 million as a consequence of the security incident.
The breach, which came to light earlier, exposed sensitive personal data, including information about users’ ancestry and potentially health-related predispositions. Regulatory bodies investigating the matter determined that the company had insufficient safeguards in place to protect this highly confidential information from unauthorized access.
Experts emphasize that genetic data is particularly sensitive due to its immutable nature and the potential for misuse. This hefty fine underscores the critical importance of robust cybersecurity measures for companies handling such personal information. The incident serves as a stark reminder for both businesses and consumers about the risks associated with sharing personal data online and the need for stringent data protection practices. Ensuring user privacy must be a paramount concern, backed by strong security protocols to prevent future breaches of this magnitude.
Source: https://go.theregister.com/feed/www.theregister.com/2025/06/17/23andme_ico_fine/
