Frame-14

Privacy Ninja

        • DATA PROTECTION

        • Email Spoofing Prevention
        • Check if your organization email is vulnerable to hackers and put a stop to it. Receive your free test today!
        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • AntiHACK Phone
        • Boost your smartphone’s security with enterprise-level encryption, designed by digital forensics and counterintelligence experts, guaranteeing absolute privacy for you and up to 31 others, plus a guest user, through exclusive access.

        • CYBERSECURITY

        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$3,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Secure your digital frontiers with our API penetration testing service, meticulously designed to identify and fortify vulnerabilities, ensuring robust protection against cyber threats.

        • Network Penetration Testing
        • Strengthen your network’s defenses with our comprehensive penetration testing service, tailored to uncover and seal security gaps, safeguarding your infrastructure from cyber attacks.

        • Mobile Penetration Testing
        • Strengthen your network’s defenses with our comprehensive penetration testing service, tailored to uncover and seal security gaps, safeguarding your infrastructure from cyber attacks.

        • Web Penetration Testing
        • Fortify your web presence with our specialized web penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats.

        • RAPID DIGITALISATION

        • OTHERS

The Data Protection Act of Singapore and how it affects businesses

Data protection act
DPA affects businesses in Singapore, especially when personal data is in line.

The data protection in Singapore is covered by the Personal Data Protection Act, which provides the baseline standard of protection for every individual’s data. It comprises various requirements mandatory for businesses in Singapore in governing the collection, usage, disclosure, and its care or management.

PDPA also provides the establishment of the national Do Not Call (DNC) registry, where people may register their mobile and telephone numbers if they opt not to be bothered by telemarketing messages from organizations.

Personal Data Protection Act’s objectives

The Personal Data Protection Act acknowledges organizations’ need to collect, use, or disclose personal data for reasonable and legitimate purposes and the protection of individuals’ personal data.

With this, it is necessary to establish a data protection regime that serves as a safeguard for the personal data collected and used from any misuse and maintain trust by individuals to these organizations that they entrust their sensitive information.

PDPA also aims to strengthen Singapore’s position as a trusted hub for businesses through regulations among organizations for the flow of personal data.

Also Read: National Cybersecurity Awareness Campaign of Singapore: Better Cyber Safe than Sorry

Data protection Act

Scope of the Personal Data Protection Act

The Data Protection Act covers Electronic and non-electronic formats that store personal data. However, according to Personal Data Protection Commission (PDPC), it generally does not apply to:

  • Any individual acting in his/her capacity as an employee with an organization.
  • Any individual acting on a personal or domestic basis.
  • Any public agency in relation to the collection, use, or disclosure of personal data.
  • Business contact information such as an individual’s name, position or title, business telephone number, business address, business email, business fax number and similar information.

Obligations of organizations under the Data Protection Act of Singapore

Organizations are mandatorily required to comply with all of the data protection obligations laid in the PDPA if they undertake the collection, usage, or disclosure of any individual’s personal data. Also, under the Do Not Call (DNC) registry, organizations must make necessary effort to make sure that those individual who are signed under the DNC registry must be excluded from their telemarketing messages.

How does the Personal Data Protection Act impact businesses?

When organizations fail to comply with the obligations laid under the PDPA, there are consequences imposed by the PDPA. Looking at the PDPC’s undertakings and decisions, we can infer that they take data breaches seriously. The fines for those organizations who were negligent on their obligations to protect personal data range up to 1,000,000 SGD.

With this, businesses that collect data for their daily operations are under a thin thread when it comes to their data protection practices because, as what we have learned from the PDPC decisions, even if the breach was caused by an employee’s simple mistake such as typing the wrong recipient, a hefty fine will be imposed to that organization.

Solution

Every business should establish a data protection policy to ensure that the legal obligations provided in the PDPA are met. This policy should take into account the way a business processes information and business’ general data needs.

According to BDB Pitmans, the following are policies that should be incorporated in every business:

  • good information handling can improve your business’s reputation by increasing customer and employee confidence in you;
  • good information handling should also reduce the risk of a complaint being made against you.
  • keeping the information you have about your customers secure will help protect your and their information; and
  • sending out a mailing from incorrect or out-of-date records could not only annoy your customers but also wastes your time and money.

Also Read: Revised Technology Risk Management Guidelines of Singapore

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us