[email protected] +44 (0)208 123 7708
Proteus-Cyber Nextgen Data Privacy

Proteus-Cyber
Data Privacy Software

  • Home
  • Solutions
      Proteus®NextGen Enterprise™
    • NextGen Privacy
      Data privacy management

      Key Capabilities

      • Automated survey templates
      • PIA/DPIA & TIA assessment
      • Comprehensive Data mapping
      • Automated risk assessment
      • Vendor risk management
      • Consent management
      • Privacy by design
      • Predefined privacy policy document templates
      • Breach notification
      • Automated control selection
      • Continuous control testing
      • Security training
      • Cookie scanning | Cookie consent
      • Multilingual
    • NextGen Data Discovery
      AI data analysis and classification

      Key Capabilities

      • AI data discovery
      • Data Analysis
      • Data Visualisation
      • Data Linking
    • NextGen Vendor Management
      3rd party risk management

      Key Capabilities

      • Automated pre-filled surveys
      • Transfer impact assessment
      • Automated vendor risk
      • Automatic Schrems II contracts
      • Predefined vendor document templates
      • Transfer Impact Assessment Data Mapping
      • Contract management
      • Legal basis for sharing data
    • NextGen Consent
      Cookie scanning and website privacy notice

      Key Capabilities

      • Cookie scanning
      • Website consent
      • Privacy policies
    • NextGen DSAR
      Subject / consumer request management

      Key Capabilities

      • Off the shelf web interface
      • Supports any privacy legislation
      • Pre-defined GDPR & CCPA templates
      • NextGen DSAR workflow management
      • NextGen consumer messaging interface
      • Automated consumer data collection
    • NextGen Privacy Automation
      Automatic control selection

      Key Capabilities

      • Automatic control selection
      • Encode your legal position
    • NextGen Proactive Protection
      Continuous testing of controls

      Key Capabilities

      • Test each and every control
    • NextGen Privacy Research
      Free to use data privacy research

      Key Capabilities

      • Privacy regulation research
      • Regulation comparison tool
      • Latest privacy news tracking
      • Latest Threat Intelligence
      • Breach modelling and ROI calculator
    • Proteus®NextGen Express™
    • Proteus®GDPReady™
      Simple dedicated GDPR solution

      Key Capabilities

      • Simple GDPR surveys
      • Off the shelf DSAR web interface
      • Pre-defined GDPR templates
      • GDPReady DSAR workflow management
      • Data subject messaging interface
      • Automated data subject info retrieval
    • Proteus®CCPAready™
      Simple dedicated CCPA solution

      Key Capabilities

      • Simple CCPA surveys
      • Off the shelf consumer requests
      • Pre-defined CCPA templates
      • Consumer request workflow management
      • CCPAReady consumer messaging interface
      • Automated consumer data retrieval
    • Proteus®NextGen Schrems II™
    • Proteus®Schrems II™
      Schrems ii decision | Schrems ii implications | Standard Contractual Clauses

      Key Capabilities

      • Automatic Schrems II contracts
  • Solutions
  • Free Resources
      Proteus®NextGen Data Privacy™
    • NextGen Privacy Research
      Free to use data privacy research

      Key Capabilities

      • Privacy regulation research
      • Regulation comparison tool
      • Latest privacy news tracking
      • Latest Threat Intelligence
      • Breach modelling and ROI calculator
    • Articles
      Current and historical articles

      Key Capabilities

      • Defusing the GDPR time bomb
      • GDPR - And they’re off...
      • GFT and Proteus-Cyber partner to deliver world class data protection management
      • The Cost of a Data Breach by Alex Igel Proteus Cyber.
      • Why Data Privacy & Cyber Security Are Business Issues Of The Highest Priority by Alex Igel Metrics Management
      • Proteus-Cyber Ltd- GDPR/LGDP Management Software
      • Proteus-Cyber Ltd- PIA/TIA Assessment
      • Six practical steps to Schrems II compliance
      • Proteus-Cyber Ltd- Threat Intelligence Tools for Data Privacy Protection
      • Proteus-Cyber Ltd- Privacy Impact Assessment GDPR
      • Proteus-Cyber Ltd- Threat Intelligence Tools - Update
    • Privacy standards
      Data privacy regulations

      Key Capabilities

      • EU GDPR
      • US CCPA
      • Brazil LGPD
      • Australian Privacy Act
      • Germany BDSG
      • Canada Pipeda
      • Thailand PDPA
      • Singapore PDPA
      • Swiss FADP
      • New York SHIELD
      • New York NYDFS
      • Andorra Adequacy
      • Argentina Adequacy
      • Canada Adequacy
      • Faeroese Adequacy
      • Guernsey Adequacy
      • Isle of Man Adequacy
      • Israel Adequacy
      • Japan Adequacy
      • Jersey Adequacy
      • New Zealand Adequacy
      • Switzerland Adequacy
      • Uruguay Adequacy
      • CPRA
      • ADPPA
  • Privacy News
  • Company
    • About Us
    • FAQ
    • Contact Us
  • Contact Us
Privacy regulation research
  • Regulation comparison tool
  • Privacy news
  • Breach/ROI calculator
  • Threat Intelligence
  • Keyword search
  • Show
  • Clear filters
  • Singapore PDPA X

PART IPRELIMINARY

1. - Short title and commencement2. - Interpretation3. - Purpose4. - Application of Act

PART IIPERSONAL DATA PROTECTION COMMISSION AND ADMINISTRATION

5. - Personal Data Protection Commission6. - Functions of Commission7. - Advisory committees8. - Delegation9. - Conduct of proceedings10. - Co-operation agreements

PART IIIGENERAL RULES WITH RESPECT TO PROTECTION OF PERSONAL DATA

11. - Compliance with Act12. - Policies and practices

PART IVCOLLECTION, USE AND DISCLOSURE OF PERSONAL DATA

Division 1 - Consent
13. - Consent required14. - Provision of consent15. - Deemed consent16. - Withdrawal of consent17. - Collection, use and disclosure without consent
Division 2 - Purpose
18. - Limitation of purpose and extent19. - Personal data collected before appointed day20. - Notification of purpose

PART VACCESS TO AND CORRECTION OF PERSONAL DATA

21. - Access to personal data22. - Correction of personal data

PART VICARE OF PERSONAL DATA

23. - Accuracy of personal data24. - Protection of personal data25. - Retention of personal data26. - Transfer of personal data outside Singapore

PART VIIENFORCEMENT OF PARTS III TO VI

27. - Alternative dispute resolution28. - Power to review29. - Power to give directions30. - Enforcement of directions of Commission in District Court31. - Reconsideration of directions or decisions32. - Right of private action

PART VIIIAPPEALS TO DATA PROTECTION APPEAL COMMITTEE, HIGH COURT AND COURT OF APPEAL

33. - Data Protection Appeal Panel and Data Protection Appeal Committees34. - Appeal from direction or decision of Commission35. - Appeals to High Court and Court of Appeal

PART IXDO NOT CALL REGISTRY

Division 1 - Preliminary
36. - Interpretation of this Part37. - Meaning of “specified message”38. - Application of this Part
Division 2 - Administration
39. - Register40. - Applications41. - Evidence42. - Information on terminated Singapore telephone number
Division 3 - Specified message to Singapore telephone number
43. - Duty to check register44. - Contact information45. - Calling line identity not to be concealed46. - Consent47. - Withdrawal of consent48. - Defence for employee

PART XGENERAL

49. - Advisory guidelines50. - Powers of investigation51. - Offences and penalties52. - Offences by bodies corporate, etc.53. - Liability of employers for acts of employees54. - Jurisdiction of court55. - Composition of offences56. - General penalties57. - Public servants and public officers58. - Evidence in proceedings59. - Preservation of secrecy60. - Protection from personal liability61. - Symbol of Commission62. - Power to exempt63. - Certificate as to national interest64. - Amendment of Schedules65. - Power to make regulations66. - Rules of Court67. - Saving and transitional provisions68. - Dissolution

FIRST SCHEDULERepealed

SECOND SCHEDULECOLLECTION OF PERSONAL DATA WITHOUT CONSENT

1. - An organisation may collect personal data about an individual without the consent of the individual or from a source other2. - In this paragraph and paragraph 1(h) —3. - (1) The conditions in this paragraph shall apply if the personal data is collected under paragraph 1(p).4. - For the avoidance of doubt, personal data disclosed before the appointed day in the circumstances and conditions set out in

THIRD SCHEDULEUSE OF PERSONAL DATA WITHOUT CONSENT

1. - An organisation may use personal data about an individual without the consent of the individual in any of the following2. - Paragraph 1(i) shall not apply unless —3. - For the avoidance of doubt, personal data collected before the appointed day in the circumstances and conditions set out in

FOURTH SCHEDULEDISCLOSURE OF PERSONAL DATA WITHOUT CONSENT

1. - An organisation may disclose personal data about an individual without the consent of the individual in any of the following2. - In the case of disclosure under paragraph 1(c), the organisation shall, as soon as may be practicable, notify the individual3. - (1) The conditions in this paragraph shall apply to personal data disclosed under paragraph 1(p).4. - Paragraph 1(q) shall not apply unless —5. - For the avoidance of doubt, personal data collected before the appointed day in the circumstances and conditions set out in

FIFTH SCHEDULEEXCEPTIONS FROM ACCESS REQUIREMENT

1. - An organisation is not required to provide information under section 21(1) in respect of —

SIXTH SCHEDULEEXCEPTIONS FROM CORRECTION REQUIREMENT

1. - Section 22 shall not apply in respect of —

SEVENTH SCHEDULECONSTITUTION AND PROCEEDINGS OF DATA PROTECTION APPEAL PANEL AND DATA PROTECTION APPEAL COMMITTEES

1. - Data Protection Appeal Panel2. - Chairman of Appeal Panel or temporary Chairman of Appeal Panel3. - Proceedings of Appeal Committees4. - Powers of Appeal Committees5. - Allowances6. - Validity of act or proceeding

EIGHTH SCHEDULEEXCLUSION FROM MEANING OF “SPECIFIED MESSAGE”

1. - For the purposes of Part IX, a specified message shall not include any of the following:2. - [Deleted by Act 22 of 2016 wef 01/10/2016]

NINTH SCHEDULEPOWERS OF INVESTIGATION OF COMMISSION AND INSPECTORS

1. - Power to require documents or information2. - Power to enter premises without warrant3. - Power to enter premises under warrant
  • Home
  • Singapore PDPA
  • PART I - PRELIMINARY

PART I

PRELIMINARY

1.: Short title and commencement2.: Interpretation3.: Purpose4.: Application of Act

© 2023 Proteus-Cyber Ltd. Reported Data Breaches in US Reach Near-Record Highs Disclaimer

Ask a privacy expert?

If you have questions regarding privacy legislation, our team will endeavour to provide you with an answer in a few days. Please complete this form and include the 'name' of the legislation your query is about with details concerning the query.

Click image to refresh and enter in lower case

Proteus-Cyber