The news of cyber security breaches come waves after waves. Cathay Pacific leaks information consist of passengers’ names, nationalities, dates of birth, travel document numbers and historical travel details. The hacking of Marriott’s Starwood reservation system exposes data of up to 500 million guests. Just over a week ago, Hong Kong credit reporting agency TransUnion was forced to suspend its online services over unauthorised access of personal credit information.
 
Hong Kong business has largely ignored the EU General Data Protection Regulation (GDPR) that replaced the preceding data protection laws in all European Union (EU) countries on 25 May 2018. The potential impact of GDPR on Hong Kong business with ineffective cyber security measures could be severe.