pdpc_decisions_version_detail (view)
1 row where "date" is on date 2018-05-03 and title = "Breach of the Protection Obligation by NTUC Income"
This data as json, CSV (advanced)
Suggested facets: _commit_at (date), date (date), timestamp (date), tags (array), _changed_columns (array)
| _commit_at | _commit_hash | _id | _item | _version | _commit | description | tags | date | pdf-url | nature | title | url | timestamp | pdf-content | decision | _item_full_hash | _changed_columns |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2023-10-01T11:02:10+08:00 | fbd32491db44d3d0c97aa12a99cefd61ec954264 | 191 | 191 | 1 | 952 | A financial penalty of $10,000 was imposed on NTUC Income for lapses in its print process which resulted in an unauthorised disclosure of personal data of 212 individuals. | [
"Protection",
"Financial Penalty",
"Finance and Insurance"
] |
2018-05-03 | https://www.pdpc.gov.sg/-/media/Files/PDPC/PDF-Files/Commissions-Decisions/Grounds_of_Decision_NTUC_Income_Insurance_Co-operative_030518.pdf | Protection | Breach of the Protection Obligation by NTUC Income | https://www.pdpc.gov.sg/all-commissions-decisions/2018/05/breach-of-the-protection-obligation-by-ntuc-income | 2018-05-03 | PERSONAL DATA PROTECTION COMMISSION [2018] SGPDPC 10 Case No DP-1706-B0894 In the matter of an investigation under section 50(1) of the Personal Data Protection Act 2012 And NTUC Income Insurance Co-operative Ltd … Organisation DECISION NTUC Income Insurance Co-operative Ltd NTUC Income Insurance Co-operative Ltd [2018] SGPDPC 10 Tan Kiat How, Commissioner— Case No DP-1706-B0894 Date: 3 May 2018 Background 1 This matter deals with a flaw in the design of the Organisation’s processes surrounding the printing of various types of letters resulting in the unauthorised disclosure of personal data of 214 of the Organisation’s clients (the “Impacted Clients”). Material Facts 2 The Organisation is an insurance co-operative that offers various types of insurance plans to its policyholders. 3 On 21 June 2017, a customer (the “Complainant”) of the Organisation lodged a complaint (the “Complaint”) with the Personal Data Protection Commission (“PDPC”) alleging that she received a duplex printed letter from the Organisation correctly addressed to her, but the reverse of which was a letter addressed to another client of the Organisation. Subsequently, on 30 June 2017, the Organisation submitted a voluntary notification of a breach of the Personal Data Protection Act 2012 (the “PDPA”) which confirmed the Complainant’s allegations and provided details surrounding the Complaint. 2 NTUC Income Insurance Co-operative Ltd 4 On 5 June 2017, the Organisation printed a batch of 426 letters that were sent out to its clients. These letters were no more than a page long. The vast majority of the 426 letters (the “Policy Letters”) that the Organisation printed were letters reminding its clients to pay their insurance premium (“Premium Reminder Letters”). This batch of letters also included 6 letters (“Policy Cancellation Letters”) informing the relevant clients of the termination of their insurance policies with the Organisation, and 32 letters recording the relevant clients’ non-acceptance of the Organisation’s offer of… | Financial Penalty | bed61db05f60a9ee91df93b1594e6b3f45923cb9 | [
"pdf-content",
"timestamp",
"decision",
"pdf-url",
"tags",
"nature",
"url",
"title",
"date",
"description"
] |
Advanced export
JSON shape: default, array, newline-delimited
CREATE VIEW pdpc_decisions_version_detail AS select
commits.commit_at as _commit_at,
commits.hash as _commit_hash,
pdpc_decisions_version.*,
(
select json_group_array(name) from columns
where id in (
select column from pdpc_decisions_changed
where item_version = pdpc_decisions_version._id
)
) as _changed_columns
from pdpc_decisions_version
join commits on commits.id = pdpc_decisions_version._commit;