PCPD – Security Measures of Restaurants Collecting Customer Information during COVID-19

Hong Kong's Privacy Commission for Personal Data published an investigation report on its findings related to complaints against 14 restaurants over their mandated COVID-19 contact-tracing data collection and storage. The PCPD found the restaurants were compliant with data retention rules as outlined in both the Personal Data (Privacy) Ordinance and Hong Kong's Restaurant Entry Requirement. However, 11 restaurants were in violation of the ordinance's rules on data security related to collection methods. Each violator was given an enforcement notice and related guidance for rectification moving forward.



Approved
CDPO, CDPO/BR, CDPO/FR, CIPM, CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPT, LGPD
Credits: 2

Submit for CPEs