Case Notes

year Category By Provisions/DPPs/COPs/Guidelines By Topic/Subject Matter keyword:

Case No.:2025DB03 New!

A former employee of a pet grooming company accessed the online retail system via the accounts of existing employees – DPP 4 – security of person... <more>

Areas of Concern:DPP4

Case No.:2025DB02 New!

Unauthorised access to membership database – DPP 4 – security of personal data... <more>

Areas of Concern:DPP4

Case No.:2025DB01 New!

Loss of portable storage device containing personal data – DPP 4 – security of personal data... <more>

Areas of Concern:DPP4

Case No.:2024A03 New!

Refusal of data correction request by data user – whether justified – whether data sought to be corrected is expression of opinion – the role of ... <more>

Areas of Concern:Proper Handling of Data Correction Request by Data Users, DPP6

Case No.:2025C03 New!

A data access request made by a customer to a dental clinic... <more>

Areas of Concern:DPP6

Case No.:2025C02 New!

A bank mistakenly treated a customer’s request to change the office address as a change of correspondence address... <more>

Areas of Concern:DPP2

Case No.:2025C01 New!

A property management company posted a notice containing a tenant’s personal data on the door of his residence... <more>

Areas of Concern:DPP3

Case No.:2022A01 New!

This case related to DPP3 - Use of personal data , exemptions... <more>

Areas of Concern:DPP3, Exemptions

Case No.:2024A02 New!

Jurisdiction of AAB – Specified investigation – Administrative Appeals Board Ordinance (Cap. 442) (“Administrative Appeals Board Ordinance”)... <more>

Areas of Concern:Part 9A of the Ordinance

Case No.:2024A01 New!

This case related to Proper Handling of Data Access Request and Charging of Data Access Request Fee by Data Users... <more>

Areas of Concern:DPP6, Section 28(3)