Singapore to introduce mandatory data breach notification law
Singapore plans to introduce a mandatory data breach notification regime to protect its industry and citizens from high-risk information leaks, according to local reports.
The city-state’s Personal Data Protection Commission (PDPC) has reportedly announced that as part of a review of the Personal Data Protection Act, a new law will force companies to disclose data breaches.
A date has not yet been set for the introduction of the regime, but a spokeswoman for the PDPC has confirmed to local media that the bill will go ahead.
Writing in the Straits Times, director of corporate communications Karen Low noted that “a robust and trusted data protection ecosystem is crucial to Singapore’s economic competitiveness”.
She wrote: “It is why we are reviewing the Personal Data Protection Act (PDPA) to ensure that it keeps pace with the evolving needs of businesses and individuals, and balances safeguarding individuals’ interests and enables the legitimate use of personal data by organisations.
“As part of this review, the PDPC held two rounds of public consultations over the last two years. We intend to introduce a mandatory data breach notification regime as part of the proposed amendments to the PDPA.” ..Read More..