Jul 13, 2021
The Personal Data Protection (Amendment) Act 2020, also known as the Enhanced PDPA, seeks to strengthen organisational accountability and consumer protection while encouraging companies to optimise the use of personal data for innovation.The Enhanced PDPA took effect from 1 February 2021 with the following three key amendments:
A notifiable data breach is one that results in or is likely to result in significant harm to an affected individual involving prescribed personal data; OR is likely to be of a significant scale (usually involving 500 or more individuals).
The Personal Data Protection Commission (PDPC) must be notified as soon as is practicable, and in any event within three calendar days of the organisation’s assessment; AND affected individuals must also be notified if the data breach is likely to cause them significant harm.
Knowingly or recklessly committing any unauthorised disclosure of personal data, use of personal data for wrongful gain or causing a wrongful loss to any person, or re-identification of anonymised data.
Maximum fine of SGD5,000 or maximum 2 years imprisonment, or both.
Contract Necessity
Notification
Legitimate Interests
Business Improvements
Research Purposes
References:
https://www.pdpc.gov.sg/news-and-events/announcements/2021/01/amendments-to-the-personal-data-protection-act-take-effect-from-1-february-2021
https://www.pdpc.gov.sg/Enhanced-PDPA-for-Businesses
Amendments to the Personal Data Protection Act In Force
https://www.alpadis-group.com/2021/02/03/pdpa-amendments-take-effect-from-february-2021/
Executive Search
LEADERSHIP TRAINING & CONSULTANCY
FP GLOBAL PTE. LTD. Licence Number: 22C0953