Insurance Business Asia reports Singapore-based insurance company AIA has been fined SG$10,000 by the Personal Data Protection Commission for a recent data breach. AIA was sending out insurance plan notices to 245 customers, but a mailing error sent all the letters to just two people. The flood of letters contained the personal information of other customers. Full names, policy numbers, premium amounts and due dates of the intended recipients were all revealed in the letters. In a statement, the PDPC said AIA was in breach of data protection provisions under the Personal Data Protection Act 2012. “This was a technical error that occurred in 2017, which we take full responsibility for,” an AIA spokesperson said. “We take this incident as learning, and have further strengthened our internal processes to avoid such incidents happening again.”
If you want to comment on this post, you need to login.