A recent decision highlights the need to implement reasonable security measures in database servers to safeguard against personal data breaches. On 11 March 2021, Trinity Christian Centre (the “Organisation”) reported a data breach involving ransomware to the Personal Data Protection Commission (“PDPC”). The Organisation sought to expedite proceedings, readily acknowledging the facts and admitting to […]
Tag: personal data protection
Tuition Agency Fined for Breach of Personal Data
Champion Tutor Inc. is a tuition agency with more than 10 years of experience in matching students with tutors in Singapore through its online marketplace website. It was fined SGD 10,000 for breach of its personal data protection obligations. This is its second fine in two years over its breach of its personal data protection […]
What to Expect When the Personal Data Protection Act B.E. 2562 Is Fully Enforced in June 2022
Incidents of unauthorized disclosure of personal information to third parties has raised concern over personal data security across the globe. In 2015, the General Data Protection Regulation (“GDPR”) was published, being the first personal data protection law passed to protect all European Union citizens. To comply with international standards, Thailand has adopted the provisions of […]
Recent Decisions of the Singapore Personal Data Protection Commission
The Personal Data Protection Commission (“PDPC”) recently meted out financial penalties to two errant entities which were found to be in breach of Section 24 of the Personal Data Protection Act 2012 (“PDPA”). Royal Caribbean Cruises (Asia) Pte. Ltd. Royal Caribbean Cruises (Asia) Pte. Ltd. (the “Organisation”) voluntarily informed the PDPC that the systems of […]
Singapore: Recent Decisions of the Personal Data Protection Commission
The Personal Data Protection Commission (‘PDPC’) carried out certain investigations recently under Section 50(1) of the Personal Data Protection Act 2012 (‘PDPA’), and subsequently issued a warning and financial penalty on the respective errant entities below: L’Oréal Singapore Pte. Ltd., Case No. DP-1812-B3091 L’Oréal Singapore Pte. Ltd. (“L’Oréal”) operated a website which had a login […]
How Start-Ups are Safeguarding against Hazardous Data Privacy Issues
As the digital economy expands at a rapid pace, companies continue to collect massive amounts of data and have come to be more dependent on this data to fuel their businesses. From e-commerce firms to healthtech firms, reams of data amassed from consumers are being used to better their offering of products and services. With […]
Singapore – Breach The Obligations Imposed By The PDPA, And Face Penalties
In two recent decisions issued by the Personal Data Protection Commission (‘PDPC’), investigations were carried out under Section 50(1) of the Personal Data Protection Act 2012 (‘PDPA’) and financial penalties were imposed on the errant entities. The circumstances which lead to this step by the PDPC are set out below: 1. O2 Advertising Pte. Ltd., […]