Hong Kong is considering amendments to its Personal Data Ordinance that would give companies five days to report a data breach and empower the privacy commissioner to fine offenders a portion of their global turnover, the South China Morning Post reports. Currently, companies are under no obligation to report a data breach. Under the proposal, the commissioner could impose an administrative fine based on the severity of the incident. The move follows a March 2018 hacking of Cathay Pacific Airways that impacted 9.4 million customers but was not reported until October of that year.
If you want to comment on this post, you need to login.