On 1 February 2021, Singapore’s mandatory data breach notification laws took effect. If your organisation is based in Singapore or collects, uses, or discloses personal data in Singapore, and you experience a data breach, you may be required to notify the regulator and affected individuals. If you don’t comply, you may face fines of up to $1 million SGD or 10% of your organisation’s annual turnover in Singapore (whichever is higher).  This is a brief snapshot of how you determine if you need to notify.

For further information please contact Linda Bertolissio or Riina Rintanen.