Data Protection Enforcement Cases


Date

Topic

04 Jul 2019

Breach of the Openness Obligation by AgcDesign

Directions, including a financial penalty of $5,000, were imposed on AgcDesign for breaches of the PDPA. The organisation failed to appoint a data protection officer and did not have written policies and practices necessary to ensure its compliance with the PDPA.

04 Jul 2019

Breach of the Protection, Openness and Transfer Limitation Obligations by Spize Concepts

Directions, including a financial penalty of $20,000, were issued to Spize Concepts for breaches of the PDPA. Amongst the breaches, the organisation failed to appoint a data protection officer and did not make reasonable security arrangements to prevent the unauthorised disclosure of customers’ personal data.

04 Jul 2019

Breach of the Protection Obligation by SME Motor

Directions were issued to SME Motor for failing to make reasonable security arrangements to prevent the unauthorised disclosure of individuals’ personal data. The lapses resulted in personal data of other customers being disclosed on the reverse side of an invoice document.

20 Jun 2019

Breach of the Protection Obligation by AIA

A financial penalty of $10,000 was imposed on AIA for failure to take reasonable security arrangements in its letter generation process.

20 Jun 2019

Breach of the Openness Obligation by Xbot

A warning was issued to Xbot for failing to put in place data protection policies to comply with the provisions of the PDPA.

Last updated on 04 Jul 2019