Personal Data Protection Act 2012: Understanding the consent obligation

Author

Man YIP, Singapore Management UniversityFollow

Publication Type

Journal Article

Version

publishedVersion

Publication Date

9-2017

Abstract

The Personal Data Protection Act 20121 (“PDPA”) provides the baseline standards of protection of personal data and works in tandem with existing law to provide comprehensive protection. The birth of the legislation clearly signals Singapore’s commitment to protect the collection, use and disclosure of personal data in the age of big data and its awareness of the importance of such protection in strengthening Singapore’s position as a leading commercial hub. Significantly, the PDPA protection model balances “both the rights of individuals to protect their personal data” against “the needs of organisations to collect, use or disclose personal data for legitimate and reasonable purposes”.2 The approach is thus a pragmatic one. The legislation does not promise uncurtailed protection of informational privacy of the individual, a model that would be practically difficult to enforce, as well as lead to the creation of a trade barrier. Nor doesstringency guarantee better protection in every case.

Keywords

data protection, consent, Personal Data Protection Act, Singapore

Discipline

Asian Studies | Communications Law | Information Security

Research Areas

Public Interest Law, Community and Social Justice

Publication

Personal Data Protection Digest

Volume

[2017]

First Page

266

Last Page

276

ISSN

2529-7708

Publisher

Singapore Personal Data Protection Commission

Citation

YIP, Man. Personal Data Protection Act 2012: Understanding the consent obligation. (2017). Personal Data Protection Digest. [2017], 266-276.
Available at: https://ink.library.smu.edu.sg/sol_research/2365

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.