Services
Services
View our comprehensive services to suit your business needs
PDPA/GDPR Compliance
Explore how we can help organizations address their data protection compliance.
Digitalization
Take your business to the next level and stay relevant in this digital age.
Others
Additional services we offer.
Cyber Security
Data Protection Software
Prevent corporate sensitive & personal data from leaving the organization systems
Penetration Test
Identify (and fix) vulnerabilities in your systems before the bad guys do
Smart Contract Audit
Have solidity experts test your blockchain smart contract before going live
Training
PDPA Corporate Compliance & Awareness (SFC)
SkillsFuture Credit supported PDPA training for organizations
Privacy Training
Remove your digital footprint, not just for privacy enthusiasts!
Open Source Intelligence (OSINT Singapore) Training 2020
Highly recommended for private investigators and personnel doing KYC/due diligence
Resources
Blog
PODCAST
Contact
About Us
What where who are we
Work With Us
We welcome all collaboration opportunities
FAQs
view frequently asked questions
Contact Us
Drop us a message here

PDPA Consultancy & Training

TRAINING INFORMATION

Tailored PDPA Training To Suit Your Business

What’s In It For Me

You will gain an overview and understanding of the 9 core PDPA obligations
Learn on the legislative and regulatory requirements of PDPA
Learn how to identify existing PDPA non-compliance at the workplace
Regardless of which industry your organization is in, our training is crafted to meet your specific organizational needs

Course Overview
The course will provide you with a good overview and understanding of the PDPA and how it may be applied to the organisations for compliance. Areas covered in the training include key legislative and regulatory requirements of PDPA and how you can help ensure compliance and alignment with PDPA, as well as immediate implementable cyber hygiene practices at the workplace.

The course will be conducted using lecture slides, pop quizzes, case studies and a throughout review of a pre-training workplace audit. You will be awarded a Certificate of Completion upon successful course completion and PDPC’s corporate e-learning assessment.

Who Should Attend
The suitable students for this programme are likely to be:

Compliance Managers or Data Protection Officers (DPOs)
Human Resource, Admin, IT personnel, Sales and Business Development Executive / Managers who need to be involved in data protection matters

Course Objectives

Competent employees with fundamental understanding of the 9 obligations & DNC provisions
On-site training for hands-on approach instead of traditional classroom based
Ability to review existing policies & processes for compliance
Implementation of course knowledge and cyber hygiene practices in daily operations
Learn how to Develop & Map out the organization’s Data Processing Inventory Mapping (DPIM)
PDPA compliance for employee awareness and training requirement

Course Breakdown (Click on each module to expand topic coverage)

Module 1: Introduction

What is PDPA
Who needs to comply
Collection of NRIC

Module 2: Terms in PDPA

Module 3: Consent, Purpose & Notification

Module 4: Care of Personal Data

Accuracy Obligation
Protection Obligation
Administrative Measures
Physical Measures
Technical Measures
Enforcement Case Study
Retention Limitation Obligation
Ceasing to Retain Personal Data
Enforcement Case Study
Transfer Limitation Obligation
Requirements for Transfer of Data Overseas
Enforcement Case Study

Module 5: Access & Correction, Accountability & Appointment of DPO

Module 6: Do Not Call

Do Not Call Provisions
Specific Message
Clear & Unambiguous Consent
Do Not Call Registry
Checking the DNC Registry
Sender of Specified Message
Requirements When Sending a Specified Message
Exemption Order in Brief
Enforcement Case Study

Module 7: Securing Electronic Personal Data

Module 8: Disposal of Personal Data in Physical and Electronic Medium

Why Secured Disposal is Important
Disposing Electronic Data
Securely Disposing Electronic Data
Securely Disposing Physical Copies of Data

Module 9: Cyber Hygiene

Module 10: PDPA Compliance Tools

PDPA Assessment Tool for Organisations (PATO)
Self Assessment Report
Highlighting Potential Gaps
Recommendations & Action Plan
Data Protection Notice Generator
Generating Data Protection Notices

Module 11: Data Processing Inventory Mapping (DPIM)

Data Inventory Map
Data Flow Diagram
Pros & Cons

Module 12: Data Breach Management

Module 13: Data Protection Impact Assessment (DPIA)

Module 14: Data Protection Management Programme (DPMP)

What is a DPMP
Policy
People
Process
Maintenance

Module 15: Competency Assessment (PDPC e-Learning)

Course Assessment

Trainer Profile

Andy Prakash co-founded AntiHACK.me, Singapore’s first bug bounty platform, working with the top community of white hat hackers to identify and report vulnerabilities in businesses’ websites, mobile applications and systems.

As the Chief Information Officer, he has given speeches and conducted masterclasses for ACE startups, co-working spaces, Echelon by e27 (2019), Chamber of Commerce and even Interpol 2019.

He has since exited the cybersecurity startup for an undisclosed sum and now focuses on Data Privacy Consultancy and PDPA training. He is the designated DPO for numerous companies in Singapore and handles Data Privacy matters on a day to day basis.

He has also been featured on numerous media outlets like Channel News Asia, Channel 8 and Berita Harian, on cyber security and its various associated topics.

Links:

https://www.channelnewsasia.com/news/technology/singapore-start-up-antihackme-catches-computer-bugs-10686008

https://www.8world.com/news/singapore/article/darknet-934386

https://www.youtube.com/watch?v=MaHBA7iKU0M

https://www.beritaharian.sg/ekoniaga/rekrut-penggodam-bantu-firma-perbaiki-keselamatan-siber

https://www.8world.com/news/singapore/article/20180918-sg-international-cyber-week-322161