K.C. Vijayan reports:
The Personal Data Protection Commission imposed a $3,000 financial penalty on DataPost, a business printing and mailing solutions provider, for a data breach that led to leaks of personal financial information.
The commission, which probed the case, said the sensitive nature of the data was an aggravating factor. But it was mitigated by the small scale of the breach as personal data belonging to only two persons was disclosed to a single recipient.
“The data breach could have been avoided if DPL (DataPost) had taken some simple additional measures,” said the commission in decision grounds issued on Tuesday.
Read more on Straits Times.