PDPC Fines Retail Mall For Failing To Secure Data

Jones Day is a global law firm with more than 2,500 lawyers across five continents. The Firm is distinguished by a singular tradition of client service; the mutual commitment to, and the seamless collaboration of, a true partnership; formidable legal talent across multiple disciplines and jurisdictions; and shared professional values that focus on client needs.

Explore Firm Details

The inadequate security allowed a hacker to send phishing emails to more than 24,000 users who subscribed to the mall's rewards program.

Singapore Privacy

Authors

On July 6, the Personal Data Protection Commission ("PDPC") imposed a S$15,000 fine on a retail mall for failing to adequately secure personal data that the mall was storing on its server. The inadequate security allowed a hacker to send phishing emails to more than 24,000 users who subscribed to the mall's rewards program. In addition to the fine, the company must implement a host of new security measures and conduct training for its staff.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Authors

Daniel J. McLoon

Mauricio Paez

Richard Johnson

Jonathon Little

Kevin Lyles

Todd McClelland

Jeff Rabkin

Lisa M. Ropple

Adam Salter

Michiru Takahashi

Undine Von Diemar