SINGAPORE - The Personal Data Protection Act has been in effect since Jan 2 this year, but it will not be enforced until next year as the Government wants to gather more feedback from the industry on its finer details. As such, more guidelines are also expected to be issued over time as more areas open up for clarification. The Act is aimed at safeguarding personal information from being stolen or indiscriminately collected and used for marketing purposes.
Get the full story from The Straits Times.
Here is an overview from the Personal Data Protection Act:
What is Personal Data?
Personal data refers to data, whether true or not, about an individual who can be identified from that data; or from that data and other information to which the organisation has or is likely to have access. Personal data in Singapore is protected under the Personal Data Protection Act 2012 (PDPA). What is the Personal Data Protection Act?
The PDPA establishes a data protection law that comprises various rules governing the collection, use, disclosure and care of personal data. It recognises both the rights of individuals to protect their personal data, including rights of access and correction, and the needs of organisations to collect, use or disclose personal data for legitimate and reasonable purposes.
The PDPA provides for the establishment of a national Do Not Call (DNC) Registry. The DNC Registry will allow individuals to register their Singapore telephone numbers to opt out of receiving marketing phone calls, mobile text messages such as SMS or MMS, and faxes from organisations. Objectives of the Personal Data Protection Act
Today, vast amounts of personal data are collected, used and even transferred to third party organisations for a variety of reasons. This trend is expected to grow exponentially as the processing and analysis of large amounts of personal data becomes possible with increasingly sophisticated technology.
With such a trend comes growing concerns from individuals about how their personal data is being used. Hence, a data protection regime to govern the collection, use and disclosure of personal data is necessary to address these concerns and to maintain individuals' trust in organisations that manage data.
By regulating the flow of personal data among organisations, the PDPA also aims to strengthen and entrench Singapore's competitiveness and position as a trusted, world-class hub for businesses.