Classroom/ Online: Yes/ No
Scheduling Date(s):
Note: Please click specific date for detailed venue and course fee etc.
Navigating Personal Data Protection Laws in Singapore with Case Studies and Enforcement Actions in Spore, Asia Pacific and the European Union
This course provides an in-depth understanding of personal data protection laws in Singapore, complemented by case studies and enforcement actions from Singapore, the Asia Pacific region, and the European Union. It equips participants with practical knowledge to navigate legal frameworks and ensure compliance.
Objective
You will gain a practical knowledge of the personal data laws and landmark cases of Singapore, the Personal Data Protection Act 2012, Advisory Guidelines of the Singapore Privacy Regulator, the Personal Data Protection Commission (PDPC), and the differences with the privacy laws of the European Union which are the General Data Protection Regulation (GDPR) and some significant APAC countries like China, India, Philippines, S Korea, Indonesia, Thailand, Australia, etc. You will learn about the regulatory investigations and enforcements that took place in Singapore and parts of APAC and EU Analysis of prominent cases across jurisdictions in Singapore, APAC & EU. And you will learn familiarity of templates.
Outline
(Incorporating Case Studies)
Introduction and Context (9:00 AM – 9:30 AM)
Session 1: Personal Data Protection Laws (9:30 AM – 12:00 PM)
Break (12:00 PM – 1:00 PM)
Session 2: Regulatory Investigations and Enforcement (1:00 PM – 3:00 PM)
Session 3: Practical Applications and Risk Mitigation (3:00 PM – 5:00 PM)
Session 4: Summary of Key Cases:
Session 5: Regulatory Checklists:
Session 6: Templates:
Q&A and Wrap-Up (5:00 PM – 5:30 PM)
Introduction and Context (9:00 AM – 9:30 AM)
- Overview of data protection trends and enforcement challenges.
Session 1: Personal Data Protection Laws (9:30 AM – 12:00 PM)
- Part 1: Singapore’s PDPA (60 min)
- Part 2: EU’s GDPR – gold standard (45 min)
- Part 3: Asia Pacific Case Studies (45 min)
Break (12:00 PM – 1:00 PM)
Session 2: Regulatory Investigations and Enforcement (1:00 PM – 3:00 PM)
- Analysis of prominent cases across jurisdictions in Singapore, APAC & EU.
Session 3: Practical Applications and Risk Mitigation (3:00 PM – 5:00 PM)
- Drafting policies, training staff, privacy impact assessments, managing data breaches, data protection management programs, dealing with investigations, reporting obligations under the laws.
Session 4: Summary of Key Cases:
- Singapore: GrabCar, SingHealth, etc.
- EU: Google, British Airways, H&M.
- APAC: Optus, Yahoo Japan.
- USA: Meta, Amazon, Instagram, etc.
Session 5: Regulatory Checklists:
- PDPA compliance checklist for DPOs.
- GDPR compliance matrix for cross-border businesses.
Session 6: Templates:
- Data breach notification form (Singapore).
Q&A and Wrap-Up (5:00 PM – 5:30 PM)
Who should attend
Data Protection Officers (DPOs), Compliance Professionals, Lawyers, Business Owners, Founders, Entrepreneurs, Executives
Methodology
Speaker's One Day Speaking and Training with analysis, real case studies and
Q&A.
Q&A.
Profile of Aileen Koh
Expert in Privacy, Data Protection, Data Culture, Intellectual Property, Corporate Commercial Contracts, Real Estate, Wills & Trusts and Risk Management
Aileen Koh is a seasoned lawyer and Certified Information Privacy Professional/Asia (CIPP/A) recognized by the International Association of Privacy Professionals (IAPP). Dual-qualified as an Advocate and Solicitor in Singapore and as a Barrister-at-Law in England & Wales, Aileen has a distinguished career spanning privacy, cybersecurity, and legal risk management.
She previously served on the Singapore Attorney General’s Legal Sub-Committee for the National Internet Advisory on Personal Data Protection and chaired the Ethics Committee for the Singapore Real Estate Association. As a former law lecturer and a registered instructor with the Ministry of Education, she has demonstrated her expertise in teaching and mentoring.
Aileen’s extensive experience includes handling Asia-Pacific (APAC) and European Union (EU) personal data protection laws, privacy risk impact assessments (PIAs), compliance, and intellectual property. She has served as a Regional Data Protection Officer (DPO) for multiple organizations, providing strategic advisory services on APAC privacy laws and EU GDPR compliance.
With a proven track record of reviewing over 100 global PIAs across 30+ countries, Aileen delivers comprehensive risk mitigation solutions through detailed completion reports. She has managed investigations into personal data breaches across 17 APAC countries, preventing incidents and ensuring compliance by implementing data protection management programs (DPMPs), standard operating procedures (SOPs), and best practices.
Her work extends to drafting and reviewing corporate commercial contracts, employment policies, real estate agreements, wills, trusts, and intellectual property documentation. She also specializes in conducting due diligence, privacy assessments, and business risk evaluations for multinational corporations (MNCs), SMEs, and government entities.
Aileen is a sought-after trainer and speaker, providing workshops, consultancy, and strategies to help organizations adopt a robust data culture. She designs and implements privacy-by-design frameworks that align with APAC and EU privacy regulations, reducing the risks of data breaches, non-compliance, fines, and reputational harm.
Aileen’s expertise lies in equipping organizations with the tools and knowledge to manage privacy and cybersecurity risks effectively, ensuring long-term resilience and operational excellence.
