Submitted by Observing
Let us talk plainly about data in Barbados.
Earlier this year, Digicel confirmed that customer information, including names, physical addresses, email addresses and phone numbers had been shared externally. The company described it as an ‘error’ and said no financial information or passwords were involved.
That may be true, but it misses the bigger point.
A phone number, email address and home address are not small things. In 2026, those three pieces of information can open the door to a person’s wider life. They can help someone find your social media pages, confirm where you live, connect you to relatives, identify your workplace, trace your habits, and build a profile convincing enough to fool you or someone close to you. It really isn’t that hard.
So when we now hear that people are being targeted through WhatsApp, Facebook, phishing messages and account takeovers, we have to really ask ourselves…what is really going on??? Especially when almost all if not all of them are Digicel customers?
A reality also kicks in. Once personal data is out there, it does not politely disappear.
Beyond that…there is the accountability issue.
What exactly happened after the Digicel leak? Who was held responsible? What changed? The CEO left the post afterwards, and ordinary customers were left to speculate because, as usual, the public explanation was thin. Do the recent significant increase in scam attempts have anything to do with this?
And no, this is not just about Digicel. We still remember the Electoral Commission breach from a few years ago. Again, where was the accountability? Where were the consequences? Where was the public assurance that lessons were learned?
Barbados has a Data Protection Act, but a law on paper is not enough. The real test is enforcement. The real test is whether organisations face consequences when people’s personal information is mishandled.
Because data is not just data. It is power. It is leverage. It can be a weapon. And when thousands of records are exposed in digital form, searchable and shareable, the damage can continue long after the press release fades.
So the question is simple: are we serious about data protection in Barbados, or are we only serious after something goes wrong or our bank accounts are drained and our friends and family are scammed?
A ‘developing’ country should pay attention to all things that development brings. Especially when it exposes its peoples to what they may not be accustomed to.








The blogmaster invites you to join the discussion.