Enforcement Cases

The Personal Data Protection Commission (PDPC) publishes decisions relating to organisations that are found to have contravened the data protection provisions under the Personal Data Protection Act (PDPA). These decisions provide valuable insights and lessons so that organisations can implement measures to prevent similar occurrences. They also serve to remind individuals and organisations of their respective rights and obligations under the PDPA. In the longer term, the publication of cases aims to promote accountability among organisations to build and strengthen consumer trust and confidence.

The PDPC also takes a proactive approach in assisting organisations to comply with the PDPA. Apart from conducting outreach activities and issuing advisory guidelines, PDPC has also developed a suite of practical resources from competency development to capacity building that is available for download.

Most recent 25 decisions