Personal Data and Data Protection

About This Course

At the end of the 2-day module, participants will be able to:
• Understand the purpose for which the Personal Data Protection Act (PDPA) was enacted in Singapore, i.e., what it is intended to achieve
• Compare and contrast how the purpose of the PDPA compares and contrasts with the purpose of data protection legislation elsewhere in ASEAN and in Europe
• Understand what is, and what is not, personal data within the scope of the PDPA and the position of sensitive personal data
• Understand the information life-cycle, examine the nine obligations under the PDPA and discover where they fit in that life-cycle
• Understand the role of data intermediaries, the due diligence that needs to be done concerning them and contractual considerations when hiring them
• Understand why an organisation needs a data protection committee and the importance of ‘tone at the top’
• Understand what a data protection management programme (DPMP) is, its elements and why a DPMP is important
• Examine risk management elements in connection with a DPMP
• Understand how to maintain/ sustain a data protection programme after it has been implemented and the importance of doing so
• Understand data security best practices
• Understand incident response and reporting best practices
• Formulate a basic data protection plan (from threat detection to incident response and remediation)