wordpress blog stats
Connect with us

Hi, what are you looking for?

Data from TraceTogether, used by 80% of Singapore’s population, can be used for criminal investigations

The Singapore government has confirmed that data from its coronavirus contact tracing app TraceTogether can be used by law enforcement for criminal investigations. Speaking in the country’s parliament on Monday, Desmond Tan, Minister of State for Home Affairs, said the Singapore government is empowered under the Criminal Procedure Code to obtain TraceTogether data for criminal investigations. 

Tan was responding to a question by Christopher De Souza, a politician for Holland-Bukit Timah Group Representation Constituency (GRC). De Souza had asked whether TraceTogether data will be used for criminal investigations and whether there are any legal provisions and safeguards when the authorities use such data. 

Gerald Giam of the Workers’ Party asked if this violates the TraceTogether privacy statement, which stated that data shared with the Ministry of Health will only be used for contact tracing of people possibly exposed to COVID-19. In response, Tan said that while TraceTogether is conceived and implemented for contact tracing, the government does not “preclude the use of TraceTogether data in circumstances where citizens’ safety and security is or has been affected, and this applies to all other data as well“. 

Privacy policy changed to reflect police access

TraceTogether’s privacy policy was changed on January 4 i.e. Monday to add a paragraph about how police can invoke the law to use data collected by the app. The update says that “authorised police officers can request users to upload their TraceTogether data for criminal investigations”. 

“TraceTogether data may be used in circumstances where citizen safety and security is or has been affected. Authorised Police officers may invoke Criminal Procedure Code (CPC) powers to request users to upload their TraceTogether data for criminal investigations. The Singapore Police Force is empowered under the CPC to obtain any data, including TraceTogether data, for criminal investigations.” — An update to the privacy safeguards made on January 4 on the TraceTogether website

Tan said that stringent measures were in place to safeguard personal data on the app, including access to only authorised officers for authorised purposes. Public officers who recklessly or knowingly disclose the data without authorisation, or misuse the data, may be fined up to S$5,000 or jailed up to two years, or both, Under the Public Sector (Governance) Act. 

Advertisement. Scroll to continue reading.

In a strange response to a follow-up question from De Souza about data deletion of witnesses, Tan said the data of witnesses and not criminals would be extracted. Here is a transcript of the conversation:

Christopher De Souza: In an investigation, there are suspects and there are witnesses. In the event that TraceTogether information is used of a witness, would there be the possibility of deletion of this information if the investigation does not yield anything or if it comes to a close? I’m trying to draw the difference between a witness and a suspect. 

Desmond Tan: Data will only be taken from the individual… In a criminal case where here is a suspect and a witness. We will extract the data from the witness. However for individuals that are suspects or under investigation, data will not be extracted for the purpose of security.

Earlier this year, Vivian Balakrishnan, Minister-In-Charge of the Smart Nation Initiative, had said that TraceTogether data would be extracted only if the user is infected by COVID-19. 

About TraceTogether; mandatory use for accessing public venues

Singapore’s TraceTogether app and wearable — released in March and June respectively — uses Bluetooth signals to identify phones in proximity. It then tracks when one was in proximity to another person by recording the timestamps. The app uses the country’s own internally developed contact-tracing protocol Bluetrace. “The protocol relies on a centralised reporting structure wherein a user’s entire contact log is uploaded to a server administered by a government health authority,” according to Engadget. 

The app and token is now used by 80% of the country’s 5.7 million population, per BBC; downloads surged after authorities began pushing for mandatory check-ins via the apps in nearly all public venues. In the past few months, the Singapore government had said it would gradually make checking in with the app or token at all public venues mandatory, via a feature called TraceTogether SafeEntry. The TraceTogether app includes a function for users to scan SafeEntry QR Codes that are displayed at venues. The token comes with a QR Code that can be scanned to get entry.

SafeEntry was going to become the only way to access any public venue, including restaurants, workplaces, schools and shopping malls; nationwide distribution of tokens on September 14. Last month, the deadline for implementation was moved from December to early 2021. The government itself had set one of the requirements of moving to the next phase of reopening — allowing larger gatherings for religious, marriage, and in commercial areas — as achieving a 70% onboarding of the TraceTogether app and token.

Advertisement. Scroll to continue reading.

As of December 21, the 70% or 3.8 million people were using the TraceTogether app or token. In October, the Singapore government said TraceTogether SafeEntry should exclusively be used to resume large activities and reopen the economy.

The Smart Nation and Digital Government Office of the country said: “In order to resume larger-scale activities and further reopen our economy in a safer manner, TT-only SE will be progressively expanded to more venues. The use of TT-only SE will provide added assurance that everyone present at these larger-scale activities is better protected by effective contact tracing through participation in the TT Programme.”

Written By

I cover health, policy issues such as intermediary liability, data governance, internet shutdowns, and more. Hit me up for tips.

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



When news that Walmart would soon accept cryptocurrency turned out to be fake, it also became a teachable moment.


The DSCI's guidelines are patient-centric and act as a data privacy roadmap for healthcare service providers.


In this excerpt from the book, the authors focus on personal data and autocracies. One in particular – Russia.  Autocracies always prioritize information control...


By Jai Vipra, Senior Resident Fellow at Vidhi Centre for Legal Policy The use of new technology, including facial recognition technology (FRT) by police...


By Stella Joseph, Prakhil Mishra, and Yash Desai The Government of India circulated proposed amendments to the Consumer Protection (E-Commerce) Rules, 2020 (“E-Commerce Rules”) which...

You May Also Like


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ