Info of 5.9 mn customers of RedDoorz leaked in Singapore

Singapore: In Singapore's largest data breach, the personal information of nearly 5.9 million Singaporean and South-east Asian customers of a hotel booking site was found to have been leaked, according to a media report on Monday.

The Personal Data Protection Commission (PDPC) has imposed a penalty of SGD 74,000 on Commeasure, a local firm which operates the website RedDoorz.

However, the amount is much lower than the combined SGD 1 million fine imposed on SingHealth and Integrated Health Information Systems for the 2018 data breach which affected 1.5 million people, The Straits Times newspaper reported.

According to PDPC, the amount of the fine was finalised taking into consideration the hardship on the hospitality sector caused by the COVID-19 pandemic.

"In deciding the amount of financial penalty to be imposed, we also considered that the organisation, which operates in the hospitality industry, had been severely impacted by the Covid-19 pandemic," the PDPC said in its judgment issued last Thursday.

"This is the largest data breach that has occurred since the Personal Data Protection Act came into effect," it said.

Commeasure found out about the breach on September 19 last year after an American cyber-security firm alerted the company.