Unscrupulous mobile repair technician facing jail time for distributing private, explicit content from five customers' phones
In a recent court case, a phone repair shop employee in Singapore was sentenced to six months in jail for accessing and possessing intimate images of customers without their consent. The incident, which occurred over a period of two years, highlights the growing concern of unauthorised data access in the phone repair industry.
Low Jwen Sern, a sales assistant at Fangli Trading, a phone repair shop located at Block 727, Clementi West Street 2, was found guilty of accessing and possessing intimate images of five customers. Investigations revealed that Low transferred at least 71 intimate or explicit photos and eight videos from these customers, although he admitted that there were others he could not recall due to deleting the media.
Deputy Public Prosecutor Jeremy Bin sought a jail term of six to seven months, citing Low's deliberate targeting of Apple devices to evade detection, showing clear premeditation. The court heard that Low's actions were a breach of trust and a violation of the women's privacy.
The incident led to a woman's husband discovering that her photos had been forwarded, ultimately leading to Low's arrest. From 2022 to 2024, Low routinely browsed customers' devices left for repair, looking for intimate and explicit content of women. On one occasion, he accessed the phone's photo gallery and WhatsApp chats, finding between 12 and 15 intimate images of the man's wife. The victim's husband noticed a prompt indicating the images had been forwarded when he collected his phone.
While the exact prevalence of unauthorised data access by phone repair employees is unclear, repair shops generally have legal and ethical obligations to protect customer data. Many repair shops implement technological and organisational safeguards to protect personal data, such as restricting employee access on a 'need-to-know' basis, using role-based access controls, and employing secure data handling and destruction procedures to prevent unauthorised access or misuse of data.
In the United States, while there is no phone repair shop–specific federal law explicitly regulating customer data privacy in repair contexts, general data protection and privacy laws apply. These include aspects from laws like the Federal Trade Commission (FTC) regulations against unfair or deceptive trade practices, which can cover misusing customer data, and, where applicable, state-level data breach notification laws requiring notification if personal data is exposed.
Repair shops often are governed by policies enforcing confidentiality agreements and employee training to ensure compliance with privacy principles and prevent unauthorised data access or disclosure. Furthermore, some businesses use workforce management and access control software that enforces privacy and data protection practices within shops, indicating growing attention to data security internally.
Low pleaded guilty to one count of possessing intimate images without consent, with four other charges taken into consideration. He could have been jailed for up to two years, fined, or both.
This case serves as a reminder for consumers to inquire about a repair shop’s privacy policies and data handling practices before entrusting devices containing sensitive information. Consumers should also be vigilant and check their devices for any unusual activity after they have been repaired.
- The technology-driven crime committed by Low Jwen Sern, a phone repair shop employee in Singapore, showcases how the growing concern of unauthorized data access in the phone repair industry is not limited to just Singapore, but could potentially be a general-news issue globally.
- As a result of Low's sentencing, it is crucial for consumers to consider the privacy policies and data handling practices of repair shops before entrusting them with devices containing sensitive information, especially in the context of crime-and-justice cases like this one.
