Reddoorz was fined $74,000 by the Personal Data Protection Commission (PDPC) for the massive data breach of 5.9 million customer data records in 2020. Data such as customer’s name, date of birth, contact number, email address and so on were compromised during the breach.
The explanation given by Reddoorz that it failed to manage its inventory of infrastructure access keys due to the high employee turnover was deemed unacceptable by PDPC, on top of the wrong labeling of the access keys which were subsequently not included under the security review.
The fine on Reddoorz was much lower than the $1 million fine that was imposed on SingHealth and its provider back in 2018 even though the number of customer records breached was higher. This was due to factors such as Reddoorz’s cooperation in investigations; periodic security reviews conducted; and also the pandemic’s severe impact on the hospitality sector which Reddoorz operated in.
With the spate of cyber breaches over the past 2 years since the pandemic began, more fines will likely be meted out in the coming months to companies who fell prey to such breaches.
With companies moving online ever since the pandemic began, they will do well to ensure that they are adequately covered in this area to mitigate potential losses as a result of cyber breaches or hacks. Contact MAKinsure to safeguard your company’s assets today!