Pdpa(kewal)
KewalPradhan
1,533 views
19 slides
Jul 05, 2013
Slide 1 of 19
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
About This Presentation
No description available for this slideshow.
Slide Content
1
Personal Data
Protection Act
(“PDPA”)
Singapore
Personal Data
Protection Act
(“PDPA”)
Singapore
2
Agenda 1. PDPA Introduction
2. Nine Obligations relating to the Collection, Use or Disclosure
3. Do not Call (“DNC Registry”)
4. Appeals & Penalty
5. In Conclusion
Agenda 1. PDPA Introduction
2. Nine Obligations relating to the Collection, Use or Disclosure
3. Do not Call (“DNC Registry”)
4. Appeals & Penalty
5. In Conclusion
3
1. PDPA Introduction
a. PDPA objective is to
governs
the
collection, use, disclosure
and care of
person data
by
organisations
.
b. In a manner that recognises and balances both
i. The right of
individuals
to protect their
personal data
ii. The need of
organisations
to collect, use or disclosepersonal data
for genuine &
reasonable
commercial and operational
purposes
.
c. Organisations will be given a transitional
18 months
to
comply
with the
PDPA, before the data protection provisions enter i nto force (from
2-
Jan-2013
projected
mid-2014
).
1. PDPA Introduction
a. PDPA objective is to
governs
the
collection, use, disclosure
and care of
person data
by
organisations
.
b. In a manner that recognises and balances both
i. The right of
individuals
to protect their
personal data
ii. The need of
organisations
to collect, use or disclosepersonal data
for genuine &
reasonable
commercial and operational
purposes
.
c. Organisations will be given a transitional
18 months
to
comply
with the
PDPA, before the data protection provisions enter i nto force (from
2-
Jan-2013
projected
mid-2014
).
4
1. PDPA Introduction (cont..)
Definitions Definitions Definitions Definitions of important terms of important terms of important terms of important terms a.a.a. a. Individuals Individuals Individuals Individuals
- “a natural person, whether living or deceased”
b.b.b. b. Personal data Personal data Personal data Personal data
- “data, whether true or not, about an individual wh o can be identified from
that data; or other information to which the organi sation have likely to access.
c.c.c. c. Organisations Organisations Organisations Organisations
- “any individual, corporate bodies such as company an d unincorporated
bodies of persons such as associations”.
d.d.d. d. Collection Collection Collection Collection
---- “any act or set of acts through which an organisati on obtains control over or
possession of personal data”.
e.e.e. e. UseUseUse Use
- “any act or set of acts by which an organisation u se personal data. A particular use
of personal data may occasionally include collection collection collection collectionor disclosure disclosure disclosure disclosurethat is necessarily part
of the use”.
f.f.f. f. Disclosure Disclosure Disclosure Disclosure
---- “any act or set of acts by which an organisation d iscloses, transfers or else
makes available personal data that is under its pos session to any other organisation”.
g.g.g. g. Purpose Purpose Purpose Purpose
- “does not refer to activities which an organisatio n may intend to undertake but
its objectives or reasons relating to personal data” .
h.h.h. h. Reasonableness Reasonableness Reasonableness Reasonableness
- “any act based on what a reasonable person would co nsider
appropriate in the circumstances”
1. PDPA Introduction (cont..)
Definitions Definitions Definitions Definitions of important terms of important terms of important terms of important terms a.a.a. a. Individuals Individuals Individuals Individuals
- “a natural person, whether living or deceased”
b.b.b. b. Personal data Personal data Personal data Personal data
- “data, whether true or not, about an individual wh o can be identified from
that data; or other information to which the organi sation have likely to access.
c.c.c. c. Organisations Organisations Organisations Organisations
- “any individual, corporate bodies such as company an d unincorporated
bodies of persons such as associations”.
d.d.d. d. Collection Collection Collection Collection
---- “any act or set of acts through which an organisati on obtains control over or
possession of personal data”.
e.e.e. e. UseUseUse Use
- “any act or set of acts by which an organisation u se personal data. A particular use
of personal data may occasionally include collection collection collection collectionor disclosure disclosure disclosure disclosurethat is necessarily part
of the use”.
f.f.f. f. Disclosure Disclosure Disclosure Disclosure
---- “any act or set of acts by which an organisation d iscloses, transfers or else
makes available personal data that is under its pos session to any other organisation”.
g.g.g. g. Purpose Purpose Purpose Purpose
- “does not refer to activities which an organisatio n may intend to undertake but
its objectives or reasons relating to personal data” .
h.h.h. h. Reasonableness Reasonableness Reasonableness Reasonableness
- “any act based on what a reasonable person would co nsider
appropriate in the circumstances”
5
2. Nine Obligations
relating to the Collection,
Use & Discloseof Personal data
1) The Consent Consent Consent ConsentObligation
2) The Purpose Purpose Purpose PurposeLimitation Obligation
3) The Notification Notification Notification NotificationObligation
4) The Access Access Access Access & Correction & Correction & Correction & Correction Obligation
5) The Accuracy Accuracy Accuracy AccuracyObligation
6) The Protection Protection Protection ProtectionObligation
7) The Retention Retention Retention RetentionLimitation Obligation
8) The Transfer Transfer Transfer TransferLimitation Obligation
9) The Openness Openness Openness OpennessObligation
2. Nine Obligations
relating to the Collection,
Use & Discloseof Personal data
1) The Consent Consent Consent ConsentObligation
2) The Purpose Purpose Purpose PurposeLimitation Obligation
3) The Notification Notification Notification NotificationObligation
4) The Access Access Access Access & Correction & Correction & Correction & Correction Obligation
5) The Accuracy Accuracy Accuracy AccuracyObligation
6) The Protection Protection Protection ProtectionObligation
7) The Retention Retention Retention RetentionLimitation Obligation
8) The Transfer Transfer Transfer TransferLimitation Obligation
9) The Openness Openness Openness OpennessObligation
6
2. Nine Obligations
(cont..)
1) Consent obligation Consent obligation Consent obligation Consent obligation a. An organisation must obtain the
consent
of the individual before
collecting, using or disclosinghis personal data fo r a purpose.
I.I.I.I. Provision Provision Provision Provision of of of of Consent Consent Consent Consent
i. Cannot tie-up by means of
product
or
service
ii. Cannot attempt by providing
false information
to collect, use or disclose personal
data.
II.II.II. II. Deemed of Deemed of Deemed of Deemed of Consent Consent Consent Consent
i. An individual
voluntarily
provided his personal data
ii. The individual was aware of the
purpose
for which the personal data was collected
III. III.III. III. Withdrawal of Withdrawal of Withdrawal of Withdrawal of Consent Consent Consent Consent
i. An individual must give
reasonable
notice of the
withdrawal
to the organisation
ii. On receipt of notice, the organisation must info rm the
consequences
iii. An organisation will not
disallow
an individual from withdraw, although this does
not affect any
legal consequences
from such withdrawal
IV.IV.IV. IV. Collection, use & disclose Collection, use & disclose Collection, use & disclose Collection, use & disclose
Without Without Without Without
Consent Consent Consent Consent
i. Generally
available
to public
ii. National interest
2. Nine Obligations
(cont..)
1) Consent obligation Consent obligation Consent obligation Consent obligation a. An organisation must obtain the
consent
of the individual before
collecting, using or disclosinghis personal data fo r a purpose.
I.I.I.I. Provision Provision Provision Provision of of of of Consent Consent Consent Consent
i. Cannot tie-up by means of
product
or
service
ii. Cannot attempt by providing
false information
to collect, use or disclose personal
data.
II.II.II. II. Deemed of Deemed of Deemed of Deemed of Consent Consent Consent Consent
i. An individual
voluntarily
provided his personal data
ii. The individual was aware of the
purpose
for which the personal data was collected
III. III.III. III. Withdrawal of Withdrawal of Withdrawal of Withdrawal of Consent Consent Consent Consent
i. An individual must give
reasonable
notice of the
withdrawal
to the organisation
ii. On receipt of notice, the organisation must info rm the
consequences
iii. An organisation will not
disallow
an individual from withdraw, although this does
not affect any
legal consequences
from such withdrawal
IV.IV.IV. IV. Collection, use & disclose Collection, use & disclose Collection, use & disclose Collection, use & disclose
Without Without Without Without
Consent Consent Consent Consent
i. Generally
available
to public
ii. National interest
7
2. Nine Obligations
(cont..)
2) Purpose limitation obligation Purpose limitation obligation Purpose limitation obligation Purpose limitation obligation a. An organisation may collect, use or discloseperso nal data about an
individual only for
purposes purposes purposes purposes
that a
reasonable
person would consider
appropriate in the circumstances.
b. Main objective is to ensure that organisations co llect, use and disclose
personal data
only onlyonly only
for purposes that are reasonable.
Example Example Example Example::::
A fashion retailer is conducting a membership drive . It states in the
membership registration form that the
purposes purposes purposes purposes
for which it may use the
details provided by individuals who register includ ing providing them with
updates on new products and promotions.
In this case, providing updates on new products and promotions may be a
reasonable purpose by fashion retailers.
2. Nine Obligations
(cont..)
2) Purpose limitation obligation Purpose limitation obligation Purpose limitation obligation Purpose limitation obligation a. An organisation may collect, use or discloseperso nal data about an
individual only for
purposes purposes purposes purposes
that a
reasonable
person would consider
appropriate in the circumstances.
b. Main objective is to ensure that organisations co llect, use and disclose
personal data
only onlyonly only
for purposes that are reasonable.
Example Example Example Example::::
A fashion retailer is conducting a membership drive . It states in the
membership registration form that the
purposes purposes purposes purposes
for which it may use the
details provided by individuals who register includ ing providing them with
updates on new products and promotions.
In this case, providing updates on new products and promotions may be a
reasonable purpose by fashion retailers.
8
2. Nine Obligations
(cont..)
3) Notification obligation Notification obligation Notification obligation Notification obligation a. An organisation must
notify
the individual of the
purpose(s)
for which it
intends to collect, use or disclose the individual’ s personal.
b. The
circumstances
in which it will be collecting the personal data.
c. The
amount
of personal data to be collected.
d. The
frequency
at which the data will be collected.
Example: Example: Example: Example:
Maya signs up for a spa membership over the Interne t. The terms and
conditions for the spa membership outline and expla in how Maya's personal
data will be used and disclosed.
For example, it states that Maya's address details will be used for sending her a
spa membership card and other communications from t he spa. Maya clicks on
the “Accept” button at the bottom of the terms and c onditions, to indicate her
acceptance of, and agreement to, the terms and cond itions.
In this case, the spa has obtained Maya's consent f or collection, use and
disclosure of her personal data in connection with the stated purposes.
2. Nine Obligations
(cont..)
3) Notification obligation Notification obligation Notification obligation Notification obligation a. An organisation must
notify
the individual of the
purpose(s)
for which it
intends to collect, use or disclose the individual’ s personal.
b. The
circumstances
in which it will be collecting the personal data.
c. The
amount
of personal data to be collected.
d. The
frequency
at which the data will be collected.
Example: Example: Example: Example:
Maya signs up for a spa membership over the Interne t. The terms and
conditions for the spa membership outline and expla in how Maya's personal
data will be used and disclosed.
For example, it states that Maya's address details will be used for sending her a
spa membership card and other communications from t he spa. Maya clicks on
the “Accept” button at the bottom of the terms and c onditions, to indicate her
acceptance of, and agreement to, the terms and cond itions.
In this case, the spa has obtained Maya's consent f or collection, use and
disclosure of her personal data in connection with the stated purposes.
9
2. Nine Obligations
(cont..)
4) Access & Correction Obligation Access & Correction Obligation Access & Correction Obligation Access & Correction Obligation a. An organisation
must
, upon request provide an individual with his or
her personal data and also Information about the wa ys in which the
personal data may have been used or disclosed
during the past year
.
b. Upon
correction request
from individual, the organisation is required to
consider whether correction should be made, it will be based on
reasonable grounds
.
c. Correct the data as soon as
practicable
and send the corrected personal
datato every other organisation to which the person al data was disclosed by the organisation
within a year
before the date the
correction request was made.
Example Example Example Example::::
Maya makes an access request to her spa, requesting information relating to
how her personal data has been used or disclosed. T he request was made on
5th February 2013. The spa is only required to prov ide information on how her
personal data has been used or disclosed with the p ast year – that is, the period
from 6th February 2012 to the date of the request, 5th February 2013.
2. Nine Obligations
(cont..)
4) Access & Correction Obligation Access & Correction Obligation Access & Correction Obligation Access & Correction Obligation a. An organisation
must
, upon request provide an individual with his or
her personal data and also Information about the wa ys in which the
personal data may have been used or disclosed
during the past year
.
b. Upon
correction request
from individual, the organisation is required to
consider whether correction should be made, it will be based on
reasonable grounds
.
c. Correct the data as soon as
practicable
and send the corrected personal
datato every other organisation to which the person al data was disclosed by the organisation
within a year
before the date the
correction request was made.
Example Example Example Example::::
Maya makes an access request to her spa, requesting information relating to
how her personal data has been used or disclosed. T he request was made on
5th February 2013. The spa is only required to prov ide information on how her
personal data has been used or disclosed with the p ast year – that is, the period
from 6th February 2012 to the date of the request, 5th February 2013.
10
2. Nine Obligations
(cont..)
5) Accuracy obligation Accuracy obligation Accuracy obligation Accuracy obligation a. An organisation must make a
reasonable
effort to ensure that personal
data collected by or on behalf of the organisation is
accurate
and
complete
if the personal data is likely to be -
i. To be used by the organisation to
make a decision
that affects the
individual to whom the personal data relates
ii. To be
disclosed
by the organisation to another organisation.
Example Example Example Example::::
Nick applies for a home loan from a bank. The bank asks Nick to provide
relevant details such as his name, address, current employment status and
income, in order to assess whether to provide the l oan to Nick.
Related to this, the bank asks Nick to provide supp orting documents including
an identity document and his most recent payslip, i n order to verify the
information provided by Nick. It also asks Nick to declare that the information
he has provided is accurate and complete.
In this scenario, the bank has made a reasonable ef fort to ensure that the
personal data collected from Nick is accurate and c omplete.
2. Nine Obligations
(cont..)
5) Accuracy obligation Accuracy obligation Accuracy obligation Accuracy obligation a. An organisation must make a
reasonable
effort to ensure that personal
data collected by or on behalf of the organisation is
accurate
and
complete
if the personal data is likely to be -
i. To be used by the organisation to
make a decision
that affects the
individual to whom the personal data relates
ii. To be
disclosed
by the organisation to another organisation.
Example Example Example Example::::
Nick applies for a home loan from a bank. The bank asks Nick to provide
relevant details such as his name, address, current employment status and
income, in order to assess whether to provide the l oan to Nick.
Related to this, the bank asks Nick to provide supp orting documents including
an identity document and his most recent payslip, i n order to verify the
information provided by Nick. It also asks Nick to declare that the information
he has provided is accurate and complete.
In this scenario, the bank has made a reasonable ef fort to ensure that the
personal data collected from Nick is accurate and c omplete.
11
2. Nine Obligations
(cont..)
6) Protection obligation Protection obligation Protection obligation Protection obligation a. An organisation must protect personal data in its possession or under its
control by making
reasonable
security arrangements to
prevent
unauthorised access, collection, use, disclosure, c opying, modification,
disposal or similar risks.
b. It might be useful for organisations to undertake a risk assessment
exerciseto ascertain whether their information secu rity arrangements are adequate. Example: Example: Example: Example:
In the employment context, it would be reasonable t o expect a greater level of
security for highly confidential employee appraisal s as compared to more
general information about the projects an employee has worked on.
2. Nine Obligations
(cont..)
6) Protection obligation Protection obligation Protection obligation Protection obligation a. An organisation must protect personal data in its possession or under its
control by making
reasonable
security arrangements to
prevent
unauthorised access, collection, use, disclosure, c opying, modification,
disposal or similar risks.
b. It might be useful for organisations to undertake a risk assessment
exerciseto ascertain whether their information secu rity arrangements are adequate. Example: Example: Example: Example:
In the employment context, it would be reasonable t o expect a greater level of
security for highly confidential employee appraisal s as compared to more
general information about the projects an employee has worked on.
12
2. Nine Obligations
(cont..)
7) Retention limitation obligation Retention limitation obligation Retention limitation obligation Retention limitation obligation a. An organisation must
cease
to retain documents containing personal
data, or
remove
the means by which the personal data can be
associated with particular individuals as soon as i t is reasonable to
assume that:
i. The
purpose
for which the personal data was collected is
no longer
being served by retention of the personal data.
ii. Retention is
no longer
necessary for legal or business purposes
iii. personal data should
not
be kept by an organisation “just in case”
it may be needed.
Example: Example: Example: Example:
A dance school has collected personal data of its t utors and students. It
retains and uses such data (with the consent of the individuals), even if a
tutor or student is no longer with the dance school , for the purpose of
maintaining an alumni network. As the dance school is retaining the
personal data for a valid purpose, it is not requir ed to cease to retain the
data under the Retention Limitation Obligation.
2. Nine Obligations
(cont..)
7) Retention limitation obligation Retention limitation obligation Retention limitation obligation Retention limitation obligation a. An organisation must
cease
to retain documents containing personal
data, or
remove
the means by which the personal data can be
associated with particular individuals as soon as i t is reasonable to
assume that:
i. The
purpose
for which the personal data was collected is
no longer
being served by retention of the personal data.
ii. Retention is
no longer
necessary for legal or business purposes
iii. personal data should
not
be kept by an organisation “just in case”
it may be needed.
Example: Example: Example: Example:
A dance school has collected personal data of its t utors and students. It
retains and uses such data (with the consent of the individuals), even if a
tutor or student is no longer with the dance school , for the purpose of
maintaining an alumni network. As the dance school is retaining the
personal data for a valid purpose, it is not requir ed to cease to retain the
data under the Retention Limitation Obligation.
13
2. Nine Obligations
(cont..)
8) Transfer limitation obligation Transfer limitation obligation Transfer limitation obligation Transfer limitation obligation a. An organisation shall
not transfer
any personal data to a country or
territory outside Singapore unless organisation pro vide a standard of
protection
to personal data.
b. Transferring organisations must further ensure th at receiving
organisations have in place
appropriate
internal policies governing its
employees, agents and sub-contractors whom have acc ess to any
personal data received by the receiving organisatio n from a transferring
organisation.
2. Nine Obligations
(cont..)
8) Transfer limitation obligation Transfer limitation obligation Transfer limitation obligation Transfer limitation obligation a. An organisation shall
not transfer
any personal data to a country or
territory outside Singapore unless organisation pro vide a standard of
protection
to personal data.
b. Transferring organisations must further ensure th at receiving
organisations have in place
appropriate
internal policies governing its
employees, agents and sub-contractors whom have acc ess to any
personal data received by the receiving organisatio n from a transferring
organisation.
14
2. Nine Obligations
(cont..)
9) Openness obligation Openness obligation Openness obligation Openness obligation a. An organisation must
implement
the necessary policies and procedures
in order to meet its
obligations
under the PDPA and shall make
information.
b. To
develop
a process to receive and respond to
complaints
that may
arise with respect to the application of the PDPA.
c. To
communicate
with its staff informing about its data protection
policies and practices
d. To make information
available
on request about its data protection
policies and practices and its process to receive a nd respond to
complaints.
2. Nine Obligations
(cont..)
9) Openness obligation Openness obligation Openness obligation Openness obligation a. An organisation must
implement
the necessary policies and procedures
in order to meet its
obligations
under the PDPA and shall make
information.
b. To
develop
a process to receive and respond to
complaints
that may
arise with respect to the application of the PDPA.
c. To
communicate
with its staff informing about its data protection
policies and practices
d. To make information
available
on request about its data protection
policies and practices and its process to receive a nd respond to
complaints.
15
3.
Do Not Call Registry
(“DNC Registry”)
a. This Act provides for the setting up of a DNC Reg istry, which will allow
individuals to register their phone numbers to
opt-out
of marketing or
premium service messages from organisations.
b. Organisations will be required by law to check wi th the
registry
and
ensure that they do not send messages to the
numbers registered
unless they have obtained clear and explicit consen t.
c. Exceptions such as messages
without commercial elements
would not
be covered by the DNC Registry at this stage.
1For Example message on
-Promoting Political, National Programs
-Voluntary service like requesting donations, chari table causes
-To provide information like warranty, security, go ods deliver
-To conduct Market research or market survey
3.
Do Not Call Registry
(“DNC Registry”)
a. This Act provides for the setting up of a DNC Reg istry, which will allow
individuals to register their phone numbers to
opt-out
of marketing or
premium service messages from organisations.
b. Organisations will be required by law to check wi th the
registry
and
ensure that they do not send messages to the
numbers registered
unless they have obtained clear and explicit consen t.
c. Exceptions such as messages
without commercial elements
would not
be covered by the DNC Registry at this stage.
1For Example message on
-Promoting Political, National Programs
-Voluntary service like requesting donations, chari table causes
-To provide information like warranty, security, go ods deliver
-To conduct Market research or market survey
16
3. Do Not Call Registry (cont..)
a. DNC registry accepts registration of Singapore te lephone numbers,
including mobile, fixed-line, residential and busin ess numbers but
Overseas telephonenumbers is
not
registered.
b. Sending of Business-to-Business (B2B)marketing me ssages is not
currently covered by the requirements relating to t he DNC registry
Example Example Example Example::::
John calls an employee of ABCD
Childcare Pte Ltd (“ABCD”), Mary,
through her Business contact number
(which John obtained from ABCD’s
website) to promote a product which
he thinks ABCD would purchase for use
at its childcare centres.
Such a call is not a specified message
for the purposes of the Do Not Call
Provisions.
PDPA PDPA PDPA PDPA ---- Do Not Call Do Not Call Do Not Call Do Not Call - Phone calls
- Fax messages
Spam Control Act Spam Control Act Spam Control Act Spam Control Act
- Email
- Text messages
- MMS messages
Physical mail Physical mail Physical mail Physical mail
3. Do Not Call Registry (cont..)
a. DNC registry accepts registration of Singapore te lephone numbers,
including mobile, fixed-line, residential and busin ess numbers but
Overseas telephonenumbers is
not
registered.
b. Sending of Business-to-Business (B2B)marketing me ssages is not
currently covered by the requirements relating to t he DNC registry
Example Example Example Example::::
John calls an employee of ABCD
Childcare Pte Ltd (“ABCD”), Mary,
through her Business contact number
(which John obtained from ABCD’s
website) to promote a product which
he thinks ABCD would purchase for use
at its childcare centres.
Such a call is not a specified message
for the purposes of the Do Not Call
Provisions.
PDPA PDPA PDPA PDPA ---- Do Not Call Do Not Call Do Not Call Do Not Call - Phone calls
- Fax messages
Spam Control Act Spam Control Act Spam Control Act Spam Control Act
- Text messages
- MMS messages
Physical mail Physical mail Physical mail Physical mail
17
3. Do Not Call Registry (cont..)
3. Do Not Call Registry (cont..)
18
4. Appeal
&
Penalty
Enforcement
Appeal Appeal Appeal Appeal a. After the Sunrise Period, the DPC (Data protectio n commission) is
authorised to conduct investigations to review comp laints, or initiate
investigations on its own accord.
i. Appeal from direction or decision of Commission
ii. Appeals to High Court and Court of Appeal
Penalty Penalty Penalty Penalty
a. A District Court will have
authority
and
power
to impose the full penalty
or punishment in respect of the offence.
b. Any personal guilty of offenses under this act sh all be liable on
conviction to a fine not exceeding $10,000 or to im prisonment for a
term not exceeding 3 years or both.
c. In case of a continuing offence, to a further fin e not exceeding $1,000
for every day.
d. For Organisation a financial penalty of an amount not exceeding $1
million.
4. Appeal
&
Penalty
Enforcement
Appeal Appeal Appeal Appeal a. After the Sunrise Period, the DPC (Data protectio n commission) is
authorised to conduct investigations to review comp laints, or initiate
investigations on its own accord.
i. Appeal from direction or decision of Commission
ii. Appeals to High Court and Court of Appeal
Penalty Penalty Penalty Penalty
a. A District Court will have
authority
and
power
to impose the full penalty
or punishment in respect of the offence.
b. Any personal guilty of offenses under this act sh all be liable on
conviction to a fine not exceeding $10,000 or to im prisonment for a
term not exceeding 3 years or both.
c. In case of a continuing offence, to a further fin e not exceeding $1,000
for every day.
d. For Organisation a financial penalty of an amount not exceeding $1
million.
19
5. In Conclusion a.Purpose & Objective of PDPA.
b.Rule and Regulation of DNC registry
c.The DNC Registry is expected to be ready for publ ic registration by
early
2014
&Personal data protection coming into force in
mid 2014
.
d.The requirement of at least
one
designated individual within each
organisation to be responsible for compliance with the PDPA (“Data
Protection Officer”)
5. In Conclusion a.Purpose & Objective of PDPA.
b.Rule and Regulation of DNC registry
c.The DNC Registry is expected to be ready for publ ic registration by
early
2014
&Personal data protection coming into force in
mid 2014
.
d.The requirement of at least
one
designated individual within each
organisation to be responsible for compliance with the PDPA (“Data
Protection Officer”)
Categories
GovernmentDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 1,533
- Slides 19
- Favorites 3
- Age 4563 days
Related Slideshows
28
ORDENAMIENTO JURÍDICO MUNICIPAL - AUTOR JOSÉ MARÍA PACORI CARI
corporacionhiramservicioslegales
29 views
16
ROADMAP_PENGELOLAAN_SAMPAH_BANDA ACEH.pptx
FachrurRazi37
31 views
146
Urban and Regional Development Plan formulation and Implementation Guidelines, 2014 - IIA-IIB.pdf
dvraghuramtp
46 views
41
LGU-PPG -powerpoint presentation in politics
pabloeloisa89
25 views
7
Democracy and Governance in the organisation.pptx
YayaBojang
29 views
0
Lesson 1 The Rizal Law - Republic Act 1425
Roby923903
24 views