In light of recent cybersecurity issues, Singapore-based Global Travel has engaged global cyber artificial intelligence (AI) company Darktrace to help better protect confidential traveller information.
While the locally-owned TMC already complies with Singaporean data privacy regulations under the Personal Data Protection Act (PDPA), Darktrace helps the organisation better secure its confidential information with the help of AI.
The AI, a self-learning technology, sits at the core of Global Travelâ€™s digital systems, and watches for anomalies amid the noise of everyday activity 24/7. Should a potential threat slip through perimeter defences, Darktrace is able to isolate the activity, and notify the system user, who will then be able to suspend the activity and investigate the problem.
James Chua, general manager, Global Travel, called Darktrace a â€śnecessary investment to better serve his customers, and differentiate the company from the rest of the fieldâ€ť, as he can reassure his clients that their data is absolutely safe with Global Travel.
When asked what security protocols there were pre-Darktrace, Chua said: â€śWe relied very much on endpoint protection â€“ better known as antiviruses and firewalls. But these did not have a round-the-clock monitoring system in place, and only prevented external attacks.â€ť In comparison, Darktrace watches the goings-on from within.
However, cyber threats may not necessary be external, for data leaks are most likely to happen at the customer-facing stage, Chua pointed out, especially from staff members who obtain sensitive information from customers. And cyber threats can take the form of phishing emails that staff or clients unknowingly click, which will be able to retrieve and steal confidential information.
â€śIn the unlikely event something happens, Darktrace will be able to isolate, track the source, and give us time to investigate without incurring any possible damage (in a matter of seconds),â€ť said Chua.
â€śAs for the traveller whoâ€™s had their data stolen, they should contact their assigned sales manager as soon as possible, so we can conduct due diligence,â€ť he added.
But of course, itâ€™s best that such cybersecurity issues be a non-event, he stressed. To lower risk exposure, Global Travel conducts IT education sessions on a monthly basis, where topics range from spotting potential security threats to training their staff on how to better secure data.
In addition, Global Travel has also hired an assigned data protection officer, who has been tasked with being fully aware of the legislations and policies currently in play, and matching it with the companyâ€™s policy governance.
â€śAs a TMC, we deal with many different nationalities. We canâ€™t just comply with Singaporeâ€™s PDPA. IATA, and the various airlines, have their own set of regulations, plus we cannot ignore Europeâ€™s GDPR. While thereâ€™s no mandate we need to follow, itâ€™s all about putting a programme in place to serve our customers better.
â€śOur approach is simple, we just want to prevent any threat from happening,â€ť concluded Chua.