Ph: NPC orders lender Familyhan to take down customer database following complaints

Back End News reports:

The Philippines’ National Privacy Commission (NPC) has ordered Familyhan Credit Corp. to immediately stop processing the personal data of more than 6,000 borrowers following an investigation of complaints that the online lender has put at risk the privacy of the data subjects in violation of the Data Privacy Act of 2012 (DPA).

The Commission also ordered Familyhan to immediately take down its master database online to prevent more people from gaining unauthorized access to it.

The database stores sensitive information of the lender’s customers — names, passport numbers, email addresses, current addresses of borrowers based in Hong Kong and Singapore, and residential addresses of borrowers in the Philippines.

Read more on Back End News. The CDO was sent January 15, but the database was still online and available as of January 18. So what will the NPC do next?

Toys “R” Us Canada customers notified of breach of personal information
Gatineau gymnastics centre warns members of possible data breach
Data breach in 42 Latvian municipalities: DVI imposes 300,000 euro fine on ZZ Dats
Resource: NY DFS Issues New Cybersecurity Guidance to Address Risks Associated with the Use of Third-Party Service Providers
Bombay High Court Orders Department of Telecommunications to Block Medusa Accounts After Generali Insurance Data Breach
Cyber-Attack On Bectu’s Parent Union Sparks UK National Security Concerns

Related: