Penalties for data breaches should hit firms harder in the pocket
Harsher fines make for stronger deterrents, and this is crucial, given the increasing digitalisation of businesses
Add BT as a preferred source
Claudia Chong
THE recent data breaches at Lazada and Eatigo, as well as privacy lapses at other tech firms in Singapore, affirm the need for stiffer financial penalties and regulation by the authorities.
Singapore's amended data protection law, passed in Parliament on Monday, gives the Personal Data Protection Commission (PDPC) the power to impose harsher fines and to hold organisations accountable. This will bring the city-state up to speed with other jurisdictions.
Under the key changes to the bill, a company that infringes the Personal Data Protection Act (PDPA) can be fined up to 10 per cent of its annual turnover in Singapore or S$1 million, whichever is higher. The current cap for financial penalties is S$1 million.
TRENDING NOW
On the board but frozen out: The Taib family feud tearing Sarawak construction giant apart
Thai and Vietnamese farmers may stop planting rice because of the Iran war. Here’s why
MAS convenes bank CEOs over AI cyberthreats; boards told to own risks, not leave to IT teams
Is it time to scrap COE categories for cars?
