dec
pdpc

Follow us on:

fb linkedin youtube

Accountable personal data protection practices help to build trust and promote cross border relationships.




Evelyn Goh,
Director (Policy & Technology),
PDPC

Worldwide interoperability for personal data becomes one of the priorities across jurisdictions, alongside measures for balanced approach for accountable AI and more. These will prove to be relevant in this increasingly connected world. 

(Article contributed by CIPL)
A local risk-consultancy firm won a bid against well-known international competitors for a high-value forensics technology project from an EU MNC thanks to the client’s preference for the DPTM.

Announcements

Memorandum of Understanding with Office of the Australian Information Commissioner (OAIC)

PDPC signed a MOU with the Office of the Australian Information Commissioner (OAIC) to drive awareness, participation and industry adoption of APEC CBPR, and further deepen collaboration in areas such as exchanging best practices in data protection, developing competencies of DPOs, and mutual assistance in joint enforcement efforts.

Second Edition of Model AI Governance Framework

This accountability-based framework helps chart the language and frame the discussions around harnessing AI in a responsible way. It provides detailed and readily-implemented guidance to private sector organisations to address key ethical and governance issues when deploying AI solutions.

Response to Public Consultation on Data Portability and Data Innovation

The PDPC issued a response note to the public consultation on data portability and data innovation provisions, in which the PDPC earlier considered introducing as part of the PDPC's review of the PDPA.

New Resources

Compendium of Use Cases

Complementing the Model AI Governance Framework, this Compendium demonstrates how local and international organisations across different sectors and sizes implemented or aligned their AI governance practices with all sections of the Model Framework.

Implementation and Self-Assessment Guide for Organisations (ISAGO)

As a companion guide to the Model AI Governance Framework, this guide helps organisations assess the alignment of their AI governance practices. This is a result of the collaboration with WEF C4IR to drive further AI and data innovation.

Commission's Decisions

March 2020
Breach of the Protection Obligation by SSA Group International

A warning was issued to SSA Group International for failing to put in place reasonable security arrangements to prevent the unauthorised access of 53 individuals’ course registration information which were publicly available via its webpage.

Breach of the Protection and Accountability Obligations by MCST 3593 and Breach of the Protection Obligation by New-E Security

Both MCST 3593 and New-E Security failed to put in place reasonable security arrangements to prevent the unauthorised disclosure of CCTV footage of a common property at Marina Bay Residences. MCST 3593 also failed to appoint a data protection officer and put in place policies and practices necessary for the organisation to comply with the PDPA.

Breach of the Protection and Accountability Obligations by MCST 4375 and Breach of the Protection Obligation by A Best Security Management

Both MCST 4375 and A Best Security Management failed to put in place reasonable security arrangements to prevent the unauthorised disclosure of CCTV footage of an individual injured by a falling glass door at Alexandra Central Mall. MCST 4375 also failed to put in place policies and practices necessary for the organisation to comply with the PDPA.

Read more Commission's Decisions here

Help and Resources for DPO

A listing of information on DP consulting services, legal advisors for personal data protection, data protection training providers, data protection solutions, outsourced DPO functions service providers and cyber security services.

Use the free online self-assessment tool to gauge your organisation’s level of compliance with the PDPA.





A free-to-use tool for generating basic data protection template notices to help your organisation inform your stakeholders on how their personal data is managed.



If you want to reach out, please contact us online or call +65 6377 3131.