Personal Data Protection Act 2012

For more information : http://www.pdpc.gov.sg

The Personal Data Protection Act 2012 (PDPA) governs the collection, use and disclosure of personal data by private organizations.

The PDPA contains 2 sets of requirements :

·       Personal data protection  (enforced on 2 July 2014),
·       Do Not Call (DNC) Registry (enforced on 2 Jan 2014)

The personal data protection requirements cover personal data stored in electronic and non-electronic forms.

Non-compliance Penalty

Do Not Call Provisions	Data Protection Provisions
·       Fine (S$10,000 max.) ·       Imprisonment (3 years max), ·       Or both	·       Fine (S$5,000 max.), ·       Financial penalty up to S$1 million,  ·       Imprisonment (12 months max), ·       Or both, ·       Civil suit (sue for damages)

 

Recommended Roadmap to Comply

·       Appoint a Data Protection Officer (DPO),
·       Map out your personal data inventory,
·       Implement data protection processes,
·       Communicate policies & processes to employees & stakeholders,
·       Establish an internal audit policy & processes.

 

How BESH Consultants can assist you to comply

·       Assess your current “gaps” to comply,
·       Design & document compliance manual to your needs,
·       Train & brief your DPO on his / her responsibilities & implementation strategy,
·       Track implementation progress.  

 

Contact US TODAY.