Review of Recent PDPC Decisions - September 2020

Decisions published by the Personal Data Protection Commission in September 2020 highlight the importance of imposing contractual data protection obligations on vendors that will possess or access personal data. Organisations should also implement a password management policy, conduct properly-scoped pre-launch testing of IT features and cease retaining personal data that are no longer necessary.

Read more

Review of PDPC August Decisions

Decisions published by the Personal Data Protection Commission in August 2020 highlight the importance of having security measures - reasonable and appropriate to the type of personal data processed and nature of processing undertaken - in order to protect data in compliance with the Personal Data Protection Act 2012. Organisations using IT systems to collect and process personal data must conduct rigorous pre-launch testing and regular security reviews.

Read more

Public Consultation on the Proposed Amendments to the Personal Data Protection Act

The MCI and PDPC published a consultation paper on the proposed amendments to the Personal Data Protection Act (PDPA) and related amendments to the Spam Control Act (SCA). The proposed amendments strengthen organisations' accountability, introduce additional bases for collecting, using and disclosing personal data, impose a data portability obligation, harmonise PDPA and SCA provisions, and fortify available enforcement measures.

Read more

Review of Recent PDPC Decisions - March 2020

March 2020 decisions of the Personal Data Protection Commission emphasise the importance of complying with data protection obligations under the Personal Data Protection Act 2012. This includes appointing a Data Privacy Officer and putting into place data protection policies and security arrangements for the protection of personal data. In addition, data controllers must ensure that its data intermediaries will comply with the provisions of the PDPA.

Read more

Recent PDPC Decisions - February 2020

Recent decisions of the Personal Data Protection Commission once again emphasise the importance of security measures to protect personal data in any organisation's possession or control. Measures should include comprehensive security testing and anticipating likely scenarios such as coding errors, vulnerability or cyber-attacks.

Read more


Go to Page: