Thailand: Issued first PDPC administrative fine against company selling goods online for breach of the Personal Data Protection Act

Issued first PDPC administrative fine against company selling goods online for breach of the Personal Data Protection Act

On 21 August 2024, the Thai Personal Data Protection Committee (PDPC) imposed its first administrative fine for breach of the Personal Data Protection Act against an unnamed company trading goods online. In particular, the PDPC imposed a TBH 7 million fine and ordered corrective actions on the company after finding it had disclosed personal data without consent to unauthorised persons, specifically, a call center that used personal data to commit fraud.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Data protection regulation

Regulated Economic Activity

platform intermediary: e-commerce

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2024-08-21

in force

On 21 August 2024, the Thai Personal Data Protection Committee (PDPC) imposed its first administrat…

Description

Issued first PDPC administrative fine against company selling goods online for breach of the Personal Data Protection Act

Scope

Complete timeline of this policy change