Michael Standaert reports:
Hong Kong’s data protection authority concluded that a medical center and an insurance broker engaged in the “deceitful” collection and sale of the personal data of more than 360,000 people over a two-year period, according to an investigation report released April 9.
Allan Chiang, Privacy Commissioner for Personal Data for the Hong Kong Special Administrative Region, said the case serves as a warning to companies of the higher fines and criminal sanctions possible under 2012 amendments to the Personal Data (Privacy) Ordinance (11 PVLR 1117, 7/9/12) and new guidance that took effect April 1 on provisions of the amendments related to direct marketing activities.
Read more on Bloomberg BNA. The Standard also reports on the findings.