Penalties for data breaches should hit firms harder in the pocket
Harsher fines make for stronger deterrents, and this is crucial, given the increasing digitalisation of businesses
Add BT as a preferred source
Claudia Chong
DeeperDive is a beta AI feature. Refer to full articles for the facts.
THE recent data breaches at Lazada and Eatigo, as well as privacy lapses at other tech firms in Singapore, affirm the need for stiffer financial penalties and regulation by the authorities.
Singapore's amended data protection law, passed in Parliament on Monday, gives the Personal Data Protection Commission (PDPC) the power to impose harsher fines and to hold organisations accountable. This will bring the city-state up to speed with other jurisdictions.
Under the key changes to the bill, a company that infringes the Personal Data Protection Act (PDPA) can be fined up to 10 per cent of its annual turnover in Singapore or S$1 million, whichever is higher. The current cap for financial penalties is S$1 million.
Decoding Asia newsletter: your guide to navigating Asia in a new global order. Sign up here to get Decoding Asia newsletter. Delivered to your inbox. Free.
Copyright SPH Media. All rights reserved.
TRENDING NOW
Shelving S$5 billion office redevelopment plan proved ‘wise’ as geopolitical risks mount: OCBC chairman
Why where you park your joint venture matters: Lessons from a US$689 million shareholder dispute
China pips the US if Asean is forced to choose, but analysts warn against reading it like a sports result
Singaporeans can now buy record amount of yen per Singdollar
