Responsive image

Combatting Data Breaches: Getting Ready for Singapore’s Mandatory Data Breach Notification Regime

Expert Speaker Lim Kian Kim

$663.40 (including GST)


EARLY BIRD SPECIAL: Save 10% when you register by 30 Apr 2019. Use code APR19 at checkout.


A total of 40 organisations were prosecuted by the Singapore Personal Data Protection Commission (PDPC) in 2018 for breaching regulations on personal data protection. There are clear regulatory demands on how businesses should manage their data, which organisations cannot afford to overlook.


The PDPC has recently announced that it will be introducing a mandatory data breach notification regime. In this workshop, you will learn what the Notification Regime covers, and the need to prepare the company in advance for the regime. The recent and regular press reports on data breaches have clearly demonstrated the dire consequences of not managing your data proactively.


This practical workshop will be highly relevant to personnel appointed as Data Protection Officers (e.g. HR and Finance Managers), Compliance Professionals, Business Owners and Managers and those who work with clients’ personal data in various capacities. The experienced speaker will share with you the practical steps you can take to protect your organisation from data breaches.


Bonus Value-added!

  • Participants will be encouraged to draft a data breach policy during the workshop, with practical pointers and assistance from the Trainer. The customized policy can be used for their organisations and will be sent to the participants within 2 weeks upon completing the workshop.
  • Alternatively, a participant can choose to nominate a different policy to work on from the following:
    • HR Recruitment and Hiring Policy on Personal Data Protection
    • Company’s Public Personal Data Protection Policy ; or
    • Company’s 3rd Party Supplier Policy for Personal Data


What You Will Learn

At the end of this workshop, you will:

  • Understand the role and importance of data in your organisation
  • Learn the practical steps to manage data breaches
  • Be up to speed on the requirements of the data breach notification regime


Programme Outline

Personal Data Protection Principles (Singapore) 

  • Role and importance of understanding data flow in an organization set up
  • Types of data the organization is handling and managing daily
  • Overview of the Singapore Personal Data Protection Act (2012) for Singapore based organisations
  • Overview of the General Data Protection Regulations (GDPR)
  • Role of a Personal Data Protection Officer
  • Legal responsibilities of management in managing personal data

Data Breaches

  • Types  of data breach and pitfalls to avoid  in organisations;
  • Guiding principles and practical steps to manage data breach;
  • Pre-breach risk management tools such as cyber insurance; ;
  • Complaint  notification requirements from Personal Data Protection Commission; and 
  • Practical steps to discover data breaches in your organization.

Data Breach Notification Regime

  • General principles of a data breach notification regime;
  • Reporting principles on data breach notification
    • Data breach notification concerning Critical Information Infrastructures (CII) in Singapore;
    • Update on new legislation such as the prohibition from the 1st September 2019 on collecting personal data using National Identification Registration Card (NRIC) or its equivalent in your business transactions

Expert Speaker

Lim Kian Kim

Prior to being called to the Singapore Bar, Kian Kim (KK) has worked in both the public and private sectors, in technology, market strategy research and information security consulting. Amongst his management appointment include being the Chief Privacy Officer (Asia Pacific) for a US healthcare research company.

He has published in Global Privacy Advisors, the newsletter of the International Association of Privacy Professionals (IAPP) and is the inaugural chapter author for Singapore in Global Privacy & Security Law, ( by Aspen Publishers, Wolters Kluwer ). He is also a former editorial board member of The Journal of Information Privacy & Security (JIPS), University of Wisconsin-Whitewater.

KK holds a Bachelor of Arts in Government and Psychology (University of Texas at Austin), a Bachelor of Laws (Monash University), a Master of Laws (National University of Singapore), a Specialist Diploma in Information Systems Security (Temasek Polytechnic) and has completed the Certified Information Security Manager (CISM) certification. He is an Adjunct Faculty member of the Institute of Systems Science (ISS) in NUS, the Singapore Institute of Technology (Infocomm Cluster), Chairperson of the Cybersecurity and Data Protection Committee of  the Law Society of Singapore and Honorary Legal Adviser to Association of Information Security Professionals (Singapore)

Enquiries: email

Other events you may be interested in...

Prices shown are in SGD and inclusive of 7% GST but do not include handling & shipping (if applicable)
Copyright © 2016 Wolters Kluwer