Information Regulator slaps Dis-Chem with enforcement notice after May 2022 data breach

Jan

Who's the Boss?
Staff member
Joined
May 24, 2010
Messages
13,493
Reaction score
11,092
Location
The Rabbit Hole
“Should DisChem fail to abide by the Enforcement Notice within the stipulated timeframe, it will be guilty of an offence, on which the Regulator may impose an administrative fine of an amount not exceeding R10 million or be liable upon conviction to imprisonment or both.”
Thats going to hurt, good thing they sell band aids
 
Dis-Chem hits back at privacy watchdog for data breach findings

Dis-Chem has hit back at the Information Regulator after the privacy watchdog slammed the pharmacy group with an enforcement notice over a data breach last May.

The regulator ordered Dis-Chem to sharpen its security processes or face penalties, including a fine of up to R10 million, imprisonment, or both.
 
The people not boycotting Dischem will just fund the fine.
Raises an interesting point. Dischem leaked personal information of 3.7 Million people, and the EFF do not care. Yet Clicks runs 1 hair advert and they lose their minds and go into protest riot/looting mode.

I guess peoples right to privacy is less important than people right to not be offended by a hair commercial.
 
Dis-Chem hits back at privacy watchdog for data breach findings

Dis-Chem has hit back at the Information Regulator after the privacy watchdog slammed the pharmacy group with an enforcement notice over a data breach last May.

The regulator ordered Dis-Chem to sharpen its security processes or face penalties, including a fine of up to R10 million, imprisonment, or both.
They raise a valid point: Why is PCI-DSS relevant when the repo did not contain cardholder data? Sounds like juvenile 30 percenters working for the IR.
 
Raises an interesting point. Dischem leaked personal information of 3.7 Million people, and the EFF do not care. Yet Clicks runs 1 hair advert and they lose their minds and go into protest riot/looting mode.

I guess peoples right to privacy is less important than people right to not be offended by a hair commercial.

Race grifters aren't concerned about the welfare of anything or anyone except their bank account balances and how much they can bleed out of their victi *ahem* I mean their followers.
 
Raises an interesting point. Dischem leaked personal information of 3.7 Million people, and the EFF do not care. Yet Clicks runs 1 hair advert and they lose their minds and go into protest riot/looting mode.

I guess peoples right to privacy is less important than people right to not be offended by a hair commercial.
EFF followers are uneducated. How do you explain the risk of a data breach to them? You can’t.

But racism is understood best by the uneducated, simple minded and desperate. So it’s a far easier card to pull for control.
 
“The affected records in this database were limited to names and surnames, e-mail addresses, and cellphone numbers of the data subjects,” the regulator stated.

[…]

“The company confirms that the data held by the third-party provider was restricted to mailing details only and did not contain any sensitive medical, financial, or banking information.”

So then guilty by self admission. Nobody said they leaked medical data or banking details.
The fine is justified. It should be higher. Nobody will take data security seriously until some lovely fines are issues.

Now somebody has my name, email address and phone number. I wonder what they can do with that…
 
So then guilty by self admission. Nobody said they leaked medical data or banking details.
The fine is justified. It should be higher. Nobody will take data security seriously until some lovely fines are issues.

Now somebody has my name, email address and phone number. I wonder what they can do with that…
They haven’t been fined anything. It’s the threat of a possible fine if they don’t comply.
 
Dis-Chem hits back at privacy watchdog for data breach findings

Dis-Chem has hit back at the Information Regulator after the privacy watchdog slammed the pharmacy group with an enforcement notice over a data breach last May.

The regulator ordered Dis-Chem to sharpen its security processes or face penalties, including a fine of up to R10 million, imprisonment, or both.
The question that should be put to Pansy, is why she took so many months to come to what appears to be an erroneous conclusion.

It's as if Pansy decided to close her investigation into Dischem without even doing a proper investigation in all the time that has passed since Dischem's disclosure of the breach.

I'm sure Pansy would say that she needs more funding to do a better job, but what is she doing with the funding she has and is the money being used properly.

Is Pansy really a good choice for this very important job, and has she assembled a competent team?
 
I’m surprised there hasn’t been a civil class action as yet against these companies with the regulator as a respondent too.
 
Top
Sign up to the MyBroadband newsletter