Cyber-security chief urges healthcare sector to change how IT security incidents are reported.
Details of attack were lost due to use of different platforms like WhatsApp, e-mail.
Exercises simulating data breaches help organisations better respond to online attacks, COI told.
Also, a new system will ensure SingHealth has the latest contact details of patients.
Healthcare institutions' round-the-clock operations cited as challenge.
IHiS bosses told action was taken to plug gaps but no one verified that this had been done.
Senior manager says he was under stress as mum was hospitalised soon after cyber attack.
A more secure way of accessing the Internet was meant to be put in place to protect public medical systems some time this year, but had to be pushed back to next year because of technical issues.
There does not appear that there are horizontal legal issues that cannot be solved by carefully planning for and incorporating data protection by design considerations early in the system architecture and design stage.
The PDPC will enforce the Guidelines from 1 Sep 2019. Organisations will have to take immediate steps to review its practices and make the necesssary changes.
Published: 30 Aug 2018