Blog Image
Profile Image Verifile
August 14 2017

Singapore privacy regulator reminds that paper needs privacy, too

In May, Singapore's privacy commissioner sanctioned two companies for failing to take reasonable security measures to protect the personal data of their customers in extremely low tech ways.
 
The Singapore Personal Data Protection Commission issued enforcement measures on a furniture store and an Asia-Pacific Star Private Ltd. (APS) for mishandling paper receipts that contained customer personal information. Both companies violated section 24 of the Personal Data Protection Act of 2012, which places on organizations an obligation to make reasonable security arrangements to protect the personal data in its possession or under its control and to prevent unauthorized access, collection, use, disclosure, copying, modification, disposal or similar risks.