Singapore Court of Appeal’s clarification on scope of private actions under the Personal Data Protection Act: implications for organisations that suffer data breaches
Sumyutha is a Legal Director in the Singapore office, specialising in insurance-related dispute resolution and advisory work, with a key focus on cyber risk, incident response and data privacy matters.
Sumyutha has wide experience in a broad range of insurance matters (both contentious and non-contentious) on behalf of all major global insurers and reinsurers, with a specialist focus on cyber insurance, complex financial lines, and property & casualty matters.
The key focus of Sumyutha’s practice is cyber risk, incident response and data privacy matters. Sumyutha advises corporates on all aspects of responding to cyber incidents, assisting them investigate, manage and mitigate the consequences to their businesses, and advising them on legal and regulatory implications of these incidents.
On the cyber insurance front, Sumyutha has experience advising insurers on complex coverage issues, and drafting and reviewing cyber policy wordings. She has also spent time in the market on secondment with a global insurer in a claims and advisory role, providing support across financial lines particularly in respect of cyber risk.
Expérience
Advised global insurer on coverage following claim for indemnity in respect of multimillion claim arising from unilateral termination of a technology contract.
Advised regional insurer on data privacy laws across Southeast Asia in connection with launch of cyber insurance offerings.
Advised global insurer on localising various cyber insurance policies for use across various countries in Asia, providing specialised advice on key terms, market standards and other, more sensitive aspects of the draft wordings concerning data regulation, collection and protection.
Advised reinsurers on policy coverage with respect to three separate claims made by one of the largest banking groups in Malaysia under its Bankers Blanket Bond / Professional Indemnity Policies.
Advised global insurer on policy coverage following multiple cyber breaches of a listed insured entity's IT systems, which involved considering complex issues of aggregation. Subsequently advised on allocation of significant expenses incurred by insured as incident response expenses, data recovery costs and cyber extortion expenses.
Acted as coverage and monitoring counsel for concurrent arbitration and litigation proceedings in South Korea in relation to USD18 million claim arising from a power generation plant explosion.
Singapore Court of Appeal’s clarification on scope of private actions under the Personal Data Protection Act: implications for organisations that suffer data breaches