Irene Tham reports:
It will soon be mandatory for organisations to inform customers of personal data breaches as soon as they are discovered – if a proposed revision to the law gets the green light.
Organisations must also report the breach to the privacy commission within 72 hours.
The move by the Personal Data Protection Commission (PDPC) follows the lead of mature jurisdictions in the United States, Canada and Australia. The revision comes three years after Singapore’s Personal Data Protection Act came fully into force in July 2014.
Read more on The Straits Times.