Data Protection Enforcement Cases


Date

Topic

22 Jan 2019

Breach of the Protection Obligation by COURTS

A financial penalty of $15,000 was imposed on COURTS for failing to put in place reasonable security arrangements to protect the personal data of its customers from unauthorised disclosure on its online portal.

15 Jan 2019

Breach of the Protection Obligation by SingHealth and IHiS

A financial penalty of $250,000 and $750,000 was imposed on SingHealth and IHiS respectively for the failure to make reasonable security arrangements to protect personal data of individuals.

03 Jan 2019

Breach of the Protection Obligation by Toppan Forms

A financial penalty of $5,000 was imposed on Toppan Forms for failing to put in place reasonable security arrangements to protect the personal data from unauthorised disclosure.

03 Jan 2019

Breach of the Protection Obligation by Bud Cosmetics

A financial penalty of $11,000 was imposed on Bud Cosmetics for failing to put in place reasonable security arrangements to protect the personal data of its customers from unauthorised disclosure. Directions were also issued to the organisation to engage qualified personnel to conduct a security audit, develop an IT security policy, and implement a training policy.

13 Dec 2018

Breach of Protection Obligation by Funding Societies

A financial penalty of $30,000 was imposed on Funding Societies for failing to make reasonable security arrangements to prevent the unauthorised disclosure of the personal data of its members.

Last updated on 22 Jan 2019