Singapore's Personal Data Protection Commission (PDPC) yesterday issued Advisory Guidelines to provide clarity to the Personal Data Protection Act 2012 (PDPA), which will be enforced from 2 July 2014.
The Key Concepts and Selected Topics guidelines will help organisations adjust their business processes or implement necessary data protection processes to comply with the PDPA.
Leong Keng Thai, chairman of PDPC, said: "The Advisory Guidelines aim to provide greater clarity to organisations and individuals on the provisions of the PDPA. For businesses, it is important that they prepare in advance and review their own operations and processes to comply with the provisions."
The Key Concepts guidelines provide interpretations and definitions of important terms used in the PDPA and key obligations of organisations. The guidelines also elaborate on the Data Protection and Do Not Call Provisions in the PDPA. For instance, organisations can only send marketing messages to Singapore telephone numbers after they check the Do Not Call Registry or obtain clear and unambiguous consent from the individuals.
To better understand how PDPA applies to specific issues and domains, organisations can turn to the Selected Topics guidelines. Key topics highlighted in these guidelines include data for research, collection of personal data through Closed-Circuit Televisions (CCTVs), and the use of NRIC numbers.
These guidelines incorporated public feedback submitted during the public consultation conducted from February to April 2013.
Full details of the guidelines can be found on http://www.pdpc.gov.sg/resources/advisory-guidelines .
Sign up for CIO Asia eNewsletters.