Singtel vendor Tech Mahindra fined $10k for data breach

Irene Tham reports:

Singapore’s privacy watchdog has fined India-based Tech Mahindra $10,000 for failing to protect the personal details of 2.78 million Singtel customers from unauthorised changes, which inadvertently caused the personal data of one customer to be leaked online.

The Personal Data Protection Commission (PDPC) started investigating Singtel and its technology vendor Tech Mahindra after customers reportedly noticed someone else’s NRIC number, account number and billing address on the My Singtel app and the telco’s website.

Read more on Straits Times.

Related Documentation: Decision of the Data Protection Commission

About the author: Dissent