Safeguarding Your Business & Data
DATA BREACHES – Not If, But When
Since 2015, more than 28,600 complaints have been made against various organisations in Singapore to the Personal Data Protection Commission (PDPC).
A data breach exposes personal data in an organisation’s possession or under its control to unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks. With the recent enhancement of the Personal Data Protection Act (PDPA) in 2021, the maximum financial penalty for organisations that violate the PDPA has been increased to 10% of annual gross turnover in Singapore or S$1 million, whichever is higher.
Having a Data Protection Management Program in place not only enables an organisation to respond swiftly in managing any data breaches, it also establishes a robust data protection infrastructure. This provides confidence to stakeholders and fosters high trust relationships with customers and business partners.
Is your company
at risk?
Data Breaches are on the Rise in Singapore. Today we glad to be able to reach out to Eugene, our Data Protection Officer for the group to discuss more about this topic and for him to share more about his role and his story.
About Elitez
Data Protection
Elitez Data Protection makes it easy for SMEs to outsource their data protection functions by providing SMEs with basic data protection practices to foster consumer trust. We support SMEs in strengthening their data protection capabilities and confidence to use data to maximise business value.
Talk to us today for a no-obligation discussion to find out how we can help your organisation comply with the PDPA.
Outsource Your Data Protection Functions To Us
Outsourcing your data protection functions is simple and straightforward to do. It also means your organisation doesn't need to divert existing staff members away from their core responsibilities. Outsourcing your data protection functions enables your organisation to:
-
improve cost efficiency
-
minimise liability and risks
-
maximise productivity
Our Data Protection Management Programme helps an organisation build up basic data protection capabilities to demonstrate accountability and compliance with the PDPA. It covers management policies and processes for the handling of personal data as well as defines roles and responsibilities of the staff in the organisation in relation to personal data protection.
The Data Protection Management Programme comprises of:
-
a one-time setup service for basic data protection practices and;
-
a 1-year retainer service (commences after completion of one-time setup service).
The one-time setup service includes:
Data Protection Accountability
-
Assist with the appointment and registration of a DPO with ACRA
-
Identify data protection risks and gaps in the organisation
-
Develop a personal data protection policy for internal stakeholders
-
Document data assets and flows using an asset inventory map
-
Develop a personal data privacy notice for external parties
Basic Cyber Security
-
Turn on encryption for staff devices
-
Implement strong password policy for staff accounts
-
Configuration of anti-malware solutions in the organisation
-
Develop and implement practices and guidelines on data backups
-
Proper disposal of data in staff devices
Incident Response and Management
-
Establish a Data Breach Response Team
-
Develop a complaint handling procedure
-
Develop a data breach response plan using the C.A.R.E model
Communications and Training
-
Provide Personal Data Handling training for all staff
-
Provide cyber security awareness training for all staff
-
Identify key personnel to attend the Fundamentals of the PDPA 2020 course
The 1-year retainer service includes:
-
Review and update of the personal data protection policy and data breach response plan
-
Conduct table-top exercise to test data breach response plan
-
Refresher on personal data handling and cyber security awareness training for staff
-
On-site audit of data protection and cyber security practices
Get In Touch
Reach out to us for a no-obligation discussion today.
2 Kallang Avenue CT Hub
#03-08 Singapore 339407
+65 6602 8282
