Under the Personal Data Protection Act (PDPA), enforced by the Personal Data Protection Commission (PDPC), corporations can now face up to a S$1 million fine for failure to protect the personal data it is responsible for. With enforcement of privacy laws becoming more stringent globally and regulators pushing for greater deterrents to prevent unlawful use of personal data, it is more important than ever for all businesses and organisations to understand what they must do to comply with privacy legislation. This two page summary outlines key elements of privacy law in Singapore and serves as both a guide on taking the first steps to PDPA compliance and a refresher for those who may already be well on the road.
Explanations of some of the key terminology of the PDPA
What the legislation covers and who must comply
Penalties for breaching the PDPA
Practical steps you can take towards PDPA compliance