Singapore Enacts Mandatory Data Breach Notifications

Data Breach Notifications

Singapore’s Personal Data Protection Commission (PDPC) issued a statement on March 1 announcing its plan to introduce mandatory data breach notifications as part of a set of proposed amendments to the country’s Personal Data Protection Act (PDPA). The proposed amendments come in response to the PDPC’s recent review of the PDPA in order “to ensure that it keeps pace with the evolving needs of businesses and individuals, and balances safeguarding individuals’ interests and enable the legitimate use of personal data by organisations.” The details of the mandatory breach notification have not yet been made public, but the amendment will likely require organizations to notify the PDPC and affected data subjects when a certain level of a breach has occurred.

Source: Yodi S. Hailemariam - Drinker Biddle & Reath LLP | National Law Review

Singapore Enacts Mandatory Data Breach Notifications