21 Jul British Airways Uses GDPR to Compel Customers to Post Personal Info on Twitter
British Airways was caught committing a privacy misstep this week as a security researcher discovered that the airlines social media team was asking customers to provide their personal details on Twitter so that they could be assisted with their complaints.
Security researcher Mustafa Al-Bassam noted it strange that British Airways insisted that their customers do this to comply with EU’s new privacy law, the GDPR. However, the airlines then changed its tune and asked that the information be sent as a direct message after a number of customers complained.
Al-Bassam also discovered that British Airways uses tracking cookies in a web browser that then sends the personal information of users checking their flights to third-party sites.
Source: The Verge