Personal Data Protection Act - 2012

What is PDPA

The Personal Data Protection Act (PDPA)?provides a baseline standard of protection for personal data in Singapore. It complements sector-specific legislative and regulatory frameworks such as the Banking Act and Insurance Act.

What covers under PDPA

The PDPA covers personal data stored in electronic and non-electronic formats.?

It generally does not apply to:

• Any individual acting on a personal or domestic basis.
• Any individual acting in his/her capacity as an employee with an organisation.
• Any public agency in relation to the collection, use or disclosure of personal data.
• Business contact information such as an individual’s name, position or title, business telephone number, business address, business email, business fax number and similar information.

Is PDPA mandatory in Singapore?

Yes, It is mandatory for small-size, mid-size and enterprise segments.

Penalty - What happens if PDPA is breached

Organisations failed to comply with PDPA may be fined up to SGD 1 million or organisation’s annual turnover in Singapore exceeds SGD 10 million, 10% of the organisation’s Singapore turnover

How Scrut Automation can help you get compliant with PDPA.

It is a cumbersome process for any organization to get certified with PDPA when they do not have a compliance team in place. The efforts and time required in this entire process are not a cake walk. However, all this efforts, time and money can be eliminated with the help of Scrut Automation

You can also book a quick call to discuss Infosec Compliance by?Clicking here.