Presentation is loading. Please wait.

Presentation is loading. Please wait.

Singapore data protection compliance 13 September 2012.

Published bySpencer Bennett Modified over 9 years ago

Similar presentations

Presentation on theme: "Singapore data protection compliance 13 September 2012."— Presentation transcript:

1 Singapore data protection compliance 13 September 2012

2 www.olswang.com1 Singapore Personal Data Protection Bill Where are we? Revised bill published 10 Sept First reading in Parliament 11 Sept Expected to become law before end 2012 s68 transitional provisions – up to 2 years for sunrise (18 months proposed) Why? Not driven by human rights (cf EU DP Law - Art 8 ECHR) Primary reason international competitiveness Need for ‘equivalency’ for art 27 transfers Plus some populist consumer protection measures: DNC

3 www.olswang.com2 The basics (s3) “collection, use and disclosure” key actions regulated by Act extra-territorial ‘link’ in prior draft now removed “organisation responsible for personal data under its possession or control” s11(2) “by organisation” entities formed or recognised by Singapore law; or Resident, having office or place of business in Singapore “of personal data” data about an individual who can be identified from that data from that data and other data available to organisation nb business contact exclusion

4 www.olswang.com3 Express obligations (s12) Organisations shall: (a)develop and implement policies and practices that are necessary for the organisation to meet the obligations of the organisation under this Act; (b)develop a process to receive and respond to complaints that may arise with respect to the application of this Act; (c)communicate to its staff information about the organisation’s policies and practices referred to in paragraph (a); and (d)make information available on request about (i)the policies and practices referred to in paragraph (a); (ii)the complaint process referred to in paragraph (b). Designate individuals to be responsible for compliance - s 11(3)

5 www.olswang.com4 “Collection, use and disclosure” Collection Consent: express and ‘deemed’ (Part IV, Div 1) Use Purpose: reasonable and communicated (Part IV, Div 2) Individual access and correction (Part IV, Div 3) Ensure accuracy (s23) Protection: “reasonable security arrangements” (s24) Not retained longer than necessary (s25) Disclosure Not transferred outside Singapore unless ‘comparable protection’ (s26) More detail to follow. We expect outcome to be same as EU list. Otherwise Singapore won’t qualify for transfers from EU!

6 www.olswang.com5 Other provisions Officers of body corporate may be personally liable (s52) Vicarious liability of employers (s53) Fines $10,000, plus $1,000 per day. Imprisonment up to 3 years (s56) Data protection commission and admin body set up (Part II) Enforcement (Part VII) ADR may be used for individual complaints Commission directions, may be enforced in court Right of private action Appeal process (Part VIII) Do not call registry (Part IX) Specific rules for telemarketing Calls and texts Power of Commission to investigate (s50 and Schedule 9)

7 Ensuring compliance

8 www.olswang.com7 Keep it simple Audit and analysis Recommendations Documents Process changes Training

9 Don’t panic! For more information please contact: Rob Bratby +65 9832 2898 rob.bratby@olswang.com

Download ppt "Singapore data protection compliance 13 September 2012."

Similar presentations

VOLUNTARY PRINCIPLES ON SECURITY & HUMAN RIGHTS. What are the Voluntary Principles? Tripartite, multi-stakeholder initiative Initiated in 2000 by UK Foreign.

VOLUNTARY PRINCIPLES ON SECURITY & HUMAN RIGHTS. What are the Voluntary Principles? Tripartite, multi-stakeholder initiative Initiated in 2000 by UK Foreign.
Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.

Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.
Presentation to the Association of Municipal Administrators of New Brunswick 2013 Annual Conference Shediac, NB – June 14, 2013.

Presentation to the Association of Municipal Administrators of New Brunswick 2013 Annual Conference Shediac, NB – June 14, 2013.
Freedom of Information Act 2000 and the PCT Audit Procedure Background: The Act was passed in November 2000. The Act will be fully in force by January.

Freedom of Information Act 2000 and the PCT Audit Procedure Background: The Act was passed in November The Act will be fully in force by January.
Department of Arts and Culture Briefing on the Use of Official Languages Bill to the Select Committee on Education and Recreation Date:15 August 2012.

Department of Arts and Culture Briefing on the Use of Official Languages Bill to the Select Committee on Education and Recreation Date:15 August 2012.
The International Security Standard

The International Security Standard
Article XXXVI – Signature, ratification, acceptance, approval or accession 1. – This Protocol shall be open for signature in Berlin on 9 March 2012 by.

Article XXXVI – Signature, ratification, acceptance, approval or accession 1. – This Protocol shall be open for signature in Berlin on 9 March 2012 by.
Presentation of the ECB Framework Regulation Organisational aspects

Presentation of the ECB Framework Regulation Organisational aspects
HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)
PIPA PRESENTATION PERSONAL INFORMATION PROTECTION ACT.

PIPA PRESENTATION PERSONAL INFORMATION PROTECTION ACT.
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
September 14, 2005 1 35 U.S.C. 103(c) as Amended by the Cooperative Research and Technology Enhancement (CREATE) Act (Public Law 108-453) Enacted December.

September 14, U.S.C. 103(c) as Amended by the Cooperative Research and Technology Enhancement (CREATE) Act (Public Law ) Enacted December.
6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.
Hong Kong Privacy Code on Human Resource Management

Hong Kong Privacy Code on Human Resource Management
Data Protection and Records Management

Data Protection and Records Management
Managing Personal Information - Australian Companies Outsourcing to India and the Philippines Professor Margaret Jackson and Marita Shelly.

Managing Personal Information - Australian Companies Outsourcing to India and the Philippines Professor Margaret Jackson and Marita Shelly.
Www.oaic.gov.au Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.
The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.

The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.

The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.

Similar presentations

Ads by Google