The following case reiterates the need for a proper password protection policy and periodic security checks to guard against data breaches under Singapore’s Personal Data Protection Act (“the Act). Singapore Red Cross Society (“Red Cross”) ran a website that permitted the community to schedule appointments to donate blood. To this end, Red Cross kept personal […]