HK and SG Sign MOU to Strengthen Cooperation in Personal Data Protection

Hong Kong’s and Singapore’s data protection authorities furthered relations by signing a Memorandum of Understanding (MOU) to strengthen cooperation in personal data protection in the two jurisdictions, at the sidelines of the 51st Asia Pacific Privacy Authorities Forum in Tokyo.

As part of the enhanced cooperation, Hong Kong and Singapore also jointly developed a Guide to Data Protection by Design for ICT Systems.

Public Consultation on Proposed Data Portability and Data Innovation Provisions

The PDPC has issued a public consultation on the proposed data portability and data innovation provisions, in which interested parties are invited to submit their views by 17 July 2019. The proposed data portability provision will provide individuals with greater control over their personal data and enable greater access to more data by organisations to facilitate data flows and increase innovation, while the proposed data innovation provision makes it clear that organisations can use data for appropriate business purposes without individuals’ consent.

Model AI Governance Framework Wins WSIS Prize 2019

Singapore has won a top award at the prestigious World Summit on the Information Society (WSIS) Prizes 2019, and the PDPC's Model AI Governance Framework is part of this winning initiative.

Docukit Data Protection App Now Available

ICONZ-Webvisions has provided a new tool - Docukit Data Protection App - for DPOs to manage personal data and IT systems.

DPOinBox (Basic Edition) Now Available

Straits Interactive has provided a free tool - DPOinBox - for DPOs to develop and implement their data protection management programme.

Data Protection Notice Generator Now Available

The PDPC has introduced a free-to-use tool for generating basic data protection template notices to help an organisation inform their stakeholders, such as customers, employees, job applicants, donors, service users and volunteers, on how it manages their personal data.

Breach of the Protection Obligation by AIA

A financial penalty of $10,000 was imposed on AIA for failure to take reasonable security arrangements in its letter generation process.

Breach of the Openness Obligation by Xbot

A warning was issue to Xbot Pte. Ltd for failing to put in place data protection policies to comply with the provisions of the PDPA.

No Breach of Protection Obligation by Cigna Europe Insurance Company S.A.-N.V.

Cigna Europe Insurance Company S.A-N.V. was found not in breach of the PDPA in relation to allegations that it had failed to take reasonable security arrangements to prevent unauthorised disclosure of the personal data of its policy members.

Breach of the Protection Obligation by InfoCorp

Personal data of participants in a registration exercise via InfoCorp’s website were disclosed to other participants. A $6,000 financial penalty was imposed.

Breach of the Openness and Protection Obligations by DS Human Resource

In a data breach involving unauthorised access and deletion of its database by a hacker, a financial penalty of $33,000 was imposed on DS Human Resource.

E-Learning Programme

Get to know the essentials of the PDPA through this interactive learning tool developed by the PDPC. Modules 1 to 5 cover the basics you will need to know about the key terms and organisations’ obligations under the PDPA, and offer ways in which data protection officers can develop good data protection policies and practices.

Guide to developing a Data Protection Management Programme (DPMP)

DPMP is a systematic framework to help organisations establish a robust data protection infrastructure. It covers management policies and processes for the handling of personal data as well as defines roles and responsibilities of the people in the organisation in relation to personal data protection.

Guide to Data Protection Impact Assessments (DPIA)

Introduces key principles and illustrations for conducting a Data Protection Impact Assessment, which is a process that identifies, assesses and addresses personal data protection risks.

If you want to reach out, please contact us online or call +65 6377 3131.