Singapore: Issued PDPC advisory guidelines on key concepts in the Personal Data Protection Act

On 16 May 2022, the Personal Data Protection Commission (PDPC) issued revised advisory guidelines on key concepts in the Personal Data Protection Act (PDPA). These guidelines provide a detailed definition of "personal data" and clarify the scope of organisations required to comply with the PDPA. The guidelines also elaborate on the consent obligation, specifying when consent is validly given, the effects of withdrawing consent, and the exceptions to the consent requirement. Furthermore, the access and correction obligations were clarified, stating the requirements for organisations to provide individuals access to their personal data and the option to correct it. Additional explanations were provided regarding the obligations for data accuracy, protection, retention limitation, transfer limitation, data breach notification, and accountability.