There were 62 instances of enforcement action against 47 organisations by the Information Commissioner’s Office (ICO) in 2024, including 8 law enforcement agencies. 32 of these actions related to breaches of the UK GDPR and were brought against 31 organisations, with 27 in the public sector and 4 in the private sector.
There were 62 instances of enforcement action against 47 organisations by the Information Commissioner’s Office (ICO) in 2024, including 8 law enforcement agencies. 32 of these actions related to breaches of the UK GDPR and were brought against 31 organisations, with 27 in the public sector and 4 in the private sector. — This cybersecurity statistic was published by URM in February 2025. The original data appears in Analysis of Fines Imposed by the Information Commissioner’s Office in 2024 . For the full methodology and detailed findings, refer to the original report.
Share or Copy this stat
Frequently Asked Questions
What does this statistic say?
There were 62 instances of enforcement action against 47 organisations by the Information Commissioner’s Office (ICO) in 2024, including 8 law enforcement agencies. 32 of these actions related to breaches of the UK GDPR and were brought against 31 organisations, with 27 in the public sector and 4 in the private sector. This data was published by URM.
Where does this data come from?
This statistic comes from Analysis of Fines Imposed by the Information Commissioner’s Office in 2024 , published by URM on February 1, 2025. You can view the original report at https://www.urmconsulting.com/blog/analysis-of-fines-imposed-by-the-information-commissioners-office-in-2024.
What cybersecurity topics does this cover?
This statistic was published by URM. Browse more statistics from URM.