My Dimbulah coffee conversation today highlighted the importance of data protection policy and related action plan for your company.

Let me cite two examples discussed.

1. You would fill in your name, identification number and mobile number in exchange for a pass, at the security counter of a building you are visiting. Security guard decided to go for a toilet break leaving the attendance register there. Someone then takes a picture of one page of the register and send to Data Protection Agency. The management of building got penalised.

2. You applied for a credit card with the bank. For some reasons your application failed. Have you ever tried to ask for the info back? Or can you demand the bank to confirm your info has been destroyed?

Pls, try to spend some time to read the stuff the Singapore govt had sent to every biz. I too have ignored the letter. Now, where shall I go to find the material?