SAP Asia Ordered to Pay Financial Penalty Having Failed to Protect Personal Data of Its Former Employees

A decision of the Personal Data Protection Commission (“PDPC”) demonstrates the importance of conveying specific business requirements clearly to external vendors and conducting preliminary testing of any supplied products before use, lest an organisation be held in breach of its data protection obligations under the Personal Data Protection Act (“the Act”). The PDPC found that […]

Quotation and Service Comparison Portal Ordered to Pay Financial Penalty and Issued Direction to Comply

A recent decision of the Personal Data Protection Commission (“PDPC”) demonstrates the importance of implementing internal data protection measures to comply with the Personal Data Protection Act (“the Act”). The PDPC investigated after local media reported that iCompare.sg (“the Portal”) had data that had been put up on the Dark Web. The Portal was created […]

Well-Known Software & Technology Company Fined for Erroneous Disclosure of Payroll Information

In its decision dated 30th July 2021, the Personal Data Protection Commission (“the PDPC”) has fined well-known software and technology company, SAP Asia Pte. Ltd. (“SAP”) $13,500 over its breach of its personal data protection obligations under Section 24 of the Personal Data Protection Act (“PDPA”). The Decision follows a complaint received by the PDPC […]

Sporting Goods Company Issued Warning for Data Protection Breach

The Personal Data Protection Commission (“the Commission”) issued a Warning to Specialized Asia Pacific Pte. Ltd. (“SAP”) for breach its personal data protection obligations under Section 24 of the Personal Data Protection Act (“PDPA”). Specialized Asia Pacific Pte. Ltd. is a wholesale company of sporting products and equipment including bicycles and healthcare equipment, established in […]

A sea change in Singapore’s data privacy law

Singapore’s Personal Data Protection (Amendment) Bill 2020 was passed on November 2, 2020, following extensive public consultations between 2017 and 2020, and came into effect on February 1, 2021. The amendments to the PDPA bring about much-needed updates to align Singapore’s data privacy regime with international standards and best practices. The key amendments in the […]