How To Make A PDPC Complaint: With Its Importance And Impact
What is Personal Data?
Personal data refers to data, whether true or not, about an individual who can be identified from that data; or from that data and other information to which the organisation has or is likely to have access. Personal data in Singapore is protected under the Personal Data Protection Act 2012 (PDPA).
The PDPC complaint also establishes a data protection law that comprises various rules governing the collection, use, disclosure and care of personal data. It recognises both the rights of individuals to protect their personal data, including rights of access and correction, and the needs of organisations to collect, use or disclose personal data for legitimate and reasonable purposes.
How does the PDPC complaint work?
The PDPC complaint will ensure a baseline standard of protection for personal data across the economy by complementing sector-specific legislative and regulatory frameworks. This means that organisations will have to comply with the PDPC complaint as well as the common law and other relevant laws that are applied to the specific industry that they belong to, when handling personal data in their possession.
The PDPC complaint takes into account the following concepts:
- Consent – Organisations may collect, use or disclose personal data only with the individual’s knowledge and consent (with some exceptions);
- Purpose – Organisations may collect, use or disclose personal data in an appropriate manner for the circumstances, and only if they have informed the individual of purposes for the collection, use or disclosure; and
- Reasonableness – Organisations may collect, use or disclose personal data only for purposes that would be considered appropriate to a reasonable person in the given circumstances.
Complaints and Reviews
In order to ensure that we get all the information related to your complaint or review application, please click on the relevant links below. The links will guide you in lodging a complaint or applying for a review with us, and the process should take approximately 10 minutes.
For breaches on collection, use, disclosure and protection of personal data, or reviews on access and correction
DO NOT CALL
For unsolicited marketing calls, text messages or faxes
UNLICENSED LOANS / ONLINE GAMBLING
For marketing calls and text messages related to unlicensed loans or online gambling.
Report a Personal Data Protection Concern
The PDPC complaint also encourages individuals who have concerns about the ways in which an organisation has handled their personal data to first approach the organisation to clarify the reasons for the organisation’s actions and seek an amicable resolution of the matter.
|Tips on Raising Personal Data Protection Concerns to an Organisation:|
(a) Raise your concerns as soon as possible. If you take too long, it may be difficult for the organization to address your concerns.
(b) Please keep records of all correspondence with the organization and any information related to your concerns.
(c) When communicating with the organization, be clear about your concerns and what you want the organization to do.
You may use the following template to contact the organisation about your concerns and to state the remedy that is sought:
- Template Letter
If you need further assistance, please lodge a complaint here.
Personal Data Protection Complaint
Click on the button below to make a complaint if you have a concern on how your personal data has been handled by an organisation or for reviews related to access and correction. The process should take 5-10 minutes to complete.
Our officers may contact you via email or telephone should there be any clarification required on the information provided.
If you have any supporting documents in hardcopy and are unable to submit those through the online system, you may send the documents to us via post at the following address:
Personal Data Protection Commission
10 Pasir Panjang Road
#03-01 Mapletree Business City
Attn: Officer-in-charge, Enforcement