As we’ve previously mentioned on “5 Facts You Should Know About PDPA”, the Personal Data Protection Act, 2012 (PDPA), sets the rules on data protection in Singapore by regulating the flow of personal data among organisations. The PDPA in Singapore takes into account an individual’s right to data protection and an organization’s commercial right to collect, use, or disclose personal data for a reasonable purpose.

Putting it simple: the Personal Data Protection Act, 2012 (PDPA) provides a framework for companies to follow for personal data protection. It comprises various rules governing the collection, use, disclosure and care of personal data. PDPA makes it mandatory for every organization to have privacy and internal data security policies. 

Now that you completed reading our first post of the series “Everything You Need to Know About Cyber Policy Compliance”, it’s time to get a better understanding of how corporate policies are built and created.