02 Feb Breach Reporting Revisions to PDPA May Soon be Tabled in Parliament
Last Thursday, Singapore’s Personal Data Protection Commission (PDPC) announced that breach reporting, which is included in the revisions to the Personal Data Protection Act (PDPA), may be tabled in the Parliament around next year.
It is said that the UBER breach last year that exposed the personal data of millions had prompted the need for tougher breach reporting laws.
The revision will require organizations to report to the PDPC no later than 72 hours after the breach has been identified. However, some organizations balked at the idea and said that such a timeframe is unrealistic and adds unnecessary pressure on incident management teams and data protection officers who are already occupied with containing the incident.
Source: Straits Times