10 May 2021Dharma SadasivanThe Personal Data Protection (Amendment) Act 2020 (the “Amendment Act”) was passed in Parliament on 02 November 2020, and is partially in force as of 01 February 2021. The Amendment Act marks the first comprehensive review of the Personal Data Protection Act 2012 (“PDPA”) since its enactment, and is the culmination of a series of consultations between the Ministry of Communications and Information (“MCI”), the Personal Data Protection Commission (“PDPC”) as well as public and industry stakeholders.
This article, the final in a 3-part series, highlights some key updates to the PDPA introduced by the Amendment Act, and focuses on updates relating to offences and enforcement, as well as miscellaneous key updates. Post date. Edit this to change the date post was posted. Does not show up on published site. 10/5/2021 03 May 2021Dharma SadasivanThe Personal Data Protection (Amendment) Act 2020 (the “Amendment Act”) was passed in Parliament on 02 November 2020, and is partially in force as of 01 February 2021. The Amendment Act marks the first comprehensive review of the Personal Data Protection Act 2012 (“PDPA”) since its enactment, and is the culmination of a series of consultations between the Ministry of Communications and Information (“MCI”), the Personal Data Protection Commission (“PDPC”) as well as public and industry stakeholders.
This article, Part 2 of a 3-part series, highlights some key updates to the PDPA introduced by the Amendment Act, and focuses on updates relating to individual rights, and in particular, access rights, preservation of data, and a new data portability obligation. Post date. Edit this to change the date post was posted. Does not show up on published site. 3/5/2021 26 April 2021Dharma SadasivanThe Personal Data Protection (Amendment) Act 2020 (the “Amendment Act”) was passed in Parliament on 02 November 2020, and is partially in force as of 01 February 2021. The Amendment Act marks the first comprehensive review of the Personal Data Protection Act 2012 (“PDPA”) since its enactment, and is the culmination of a series of consultations between the Ministry of Communications and Information (“MCI”), the Personal Data Protection Commission (“PDPC”) as well as public and industry stakeholders.
This article, Part 1 of a 3-part series, highlights some key updates to the PDPA introduced by the Amendment Act, and focuses on updates relating to issues of consent, protection, and data breach notification. Post date. Edit this to change the date post was posted. Does not show up on published site. 26/4/2021 03 August 2018Dharma SadasivanOn 02 August 2018, the Singapore Personal Data Protection Commission (the "Commission") released its decision in Re: Management Corporation Strata Title Plan No. 4436 [2018] SGPDPC 18 ("Re: MCST 4436").
In this case, the Commission turned its attention to a conflict between section 21(3) of the Personal Data Protection Act 2012 (the "PDPA"), which prohibits organizations from releasing personal data under certain circumstances notwithstanding the individual's general right of access to their own personal data, and section 47 of the Building Maintenance and Strata Management Act ("BMSMA"), which requires management corporations to supply information to certain classes of persons. Post date. Edit this to change the date post was posted. Does not show up on published site. 3/8/2018 28 May 2018Dharma SadasivanThe European Union's General Data Protection Regulation ("GDPR") was approved by the EU Parliament on 14 April 2016 and came into effect on 25 May 2018.
The GDPR is most significant piece of privacy regulation to emerge in the EU in over 20 years. Post date. Edit this to change the date post was posted. Does not show up on published site. 28/5/2018 6 December 2017Dharma SadasivanI previously wrote about the dual nature of data intermediaries. In that post, I discussed how, under certain circumstances, a data intermediary may simultaneously be an organization in its own right, in relation to a particular set of personal data.
Post date. Edit this to change the date post was posted. Does not show up on published site. 6/12/2017 3 August 2017Dharma SadasivanA "data intermediary" is defined in the Personal Data Protection Act 2012 ("PDPA") as an organization which processes personal data on behalf of another organization but does not include an employee of that organization. In practice, it generally refers to a third party that executes a function for your organization as though it were part of your organization. An example of this is a web hosting service such as Amazon Web Services ("AWS").
Post date. Edit this to change the date post was posted. Does not show up on published site. 3/8/2017 |
We're Here To HelpOur team welcome any comments or questions and will gladly assist you with your enquiry. You can call us on +65 6899 9888 or fill out our simple contact form. DisclaimerThe materials in these articles have been prepared for general informational purposes only and are not legal advice or a substitute for legal counsel. If you require legal advice for your particular circumstances, please consult a suitably qualified legal counsel. This information is not intended to create, and receipt of it does not constitute, an attorney-client relationship. You should not rely or act upon this information without seeking professional counsel. Whilst we endeavour to ensure that the information in these articles is correct, no warranty, express or implied, is given as to its accuracy and we do not accept any liability for any error or omission. Subscribe to our NewsletterSubscribe to our quarterly newsetter to keep up to date with a wealth of insights from the BR Law, BR Family Assets and BR Corporate services team.
Categories
All
Archives
May 2024
|