35.—(1) A data subject may request an approved member of a licensed credit bureau to correct an error or omission in any data of the data subject that —
(a)
has been processed by the licensed credit bureau; and
(b)
is in the possession or under the control of the approved member.
(2) Upon receiving a request under subsection (1), the approved member must —
(a)
as soon as practicable after receiving the request, inform the licensed credit bureau of the request;
(b)
within such period as the Authority may specify by written notice to the approved member or the class of approved members to which that member belongs, conduct and complete an investigation to ascertain the integrity of the data; and
(c)
unless the approved member is satisfied on reasonable grounds that a correction should not be made, within such period as the Authority may specify by written notice to it —
(i)
correct the data in its possession or under its control; and
(ii)
inform the licensed credit bureau in writing of its assessment that a correction to the data should be made.
(3) Where a licensed credit bureau has been informed by its approved member under subsection (2)(c)(ii) that a correction to the data should be made, the licensed credit bureau must, within such period as the Authority may specify by written notice to it —
(a)
correct the data that is in the possession or under the control of the licensed credit bureau; and
(b)
send the corrected data to every approved member of the licensed credit bureau to which the licensed credit bureau disclosed the data within a year before the date the correction was made.
(4) Any person that contravenes subsection (2) or (3) shall be guilty of an offence and shall be liable on conviction to a fine not exceeding $250,000 and, in the case of a continuing offence, to a further fine not exceeding $25,000 for every day or part of a day during which the offence continues after conviction.