Thailand introduces new cybercrime law to tackle data misuse
A new cybercrime law aims to tackle cybercrime at its roots by preventing the misuse of personal data, as stated by the Personal Data Protection Committee (PDPC).
PDPC Secretary General, Police Colonel Surapong Plengkham, announced yesterday, April 21, that the Royal Decree on Measures for the Prevention and Suppression of Cybercrime 2025 has been officially published in the Royal Gazette.
A primary aspect of the law, effective from April 13, is the protection of personal data, with strict penalties for violators.
Sharing data without consent could result in up to one year of imprisonment and a fine of up to 100,000 baht. Those involved in the buying or selling of such data may face up to five years in prison, a fine of 500,000 baht, or both.
This decree represents a significant advancement in addressing cybercrime by preventing the exploitation of personal data, particularly by online scammers and call centre gangs.
The law also extends to the data of deceased persons. Using or allowing others to use such information for criminal or technological offences will result in legal consequences.
Pol. Col. Surapong noted that the new decree enhances the existing Personal Data Protection Act (PDPA), which aims to prevent the malicious use of personal data.
He advised the public to refrain from sharing sensitive information and to report any suspicions of their personal data being compromised or misused.
Additionally, the PDPC has launched the PDPC Eagle Eye Centre, which collaborates with the Cyber Police’s Cyber Eye Centre to monitor personal data breaches continuously and enforce the law effectively, reported Bangkok Post.
In similar news, Thailand’s National Cyber Security Agency (NCSA) issued a warning to logistics firms, urging them to strengthen customer data protection following a cyberattack that exposed a significant security vulnerability in one operator’s system.
This alert coincided with the launch of an investigation by the Personal Data Protection Commission into the breach.
Air Vice Marshal Amorn Chomchoey, Secretary General of the NCSA, highlighted the vast amount of sensitive consumer data handled by delivery firms, particularly in the rapidly growing e-commerce, mobile app, and courier sectors. He emphasised that leaked delivery addresses present a more immediate threat than standard registration data.
Latest Thailand News
