Certified Information Privacy Professional/Asia (CIPP/A)
Duration: 3 Days
DAY 1 - 17-Jan-2024
DAY 2 - 18-Jan-2024
DAY 3 - 19-Jan-2024
Course Fees before funding:
Including 8% GST WEF 01 Jan 2023
Contact: 6974 8949 | 6920 5462
Heads of Department
Data Protection Officers
Compliance Managers or professionals with data protection responsibilities
Professionals who are responsible for handling personal data,
e.g., Finance, Human Resource, Sales and Marketing, IT, Customer Services
Watch our course trailer video here:
For more than 10 years, the US, Canadian and European CIPP credentials have been recognised as the world’s pre-eminent badge of excellence in the business of privacy – the “what” of data protection laws and regulations. We are delighted that the International Association of Privacy Professionals has now introduced the CIPP/Asia credential. It demonstrates your understanding of data protection regulations, standards and practices in this part of the world.
The Certified Information Privacy Professional/Asia (CIPP/A) is the first publicly available privacy training that covers multiple jurisdictions in the Asia region. It addresses the data protection laws in Hong Kong, India and Singapore and the regional privacy concerns in this rapidly growing landscape. The credential is designed for any person, regardless of location, whose work as a privacy professional involves Asian data protection regulations.
Be internationally certified and recognised as an expert. And position yourself to help meet the shortage of data protection expertise locally and in the region.
Straits Interactive is the only premier IAPP Official Training Partner who delivers the formal training of the CIPP/A globally outside of Singapore.
What is the Data Protection Trustmark (DPTM) Certification?The Data Protection Trustmark (DPTM) certification is a voluntary 3-year certification owned and issued by Singapore’s Infocomm Media Development Authority (IMDA). Attaining the certification enables organisations in Singapore to publicly demonstrate accountable data protection practices.
Is it an international certification like ISO?It is a local enterprise-wide certification. However, organisations that have undergone or obtained ISO/IEC 27001 or 27701 certification may find it easier to attain DPTM as they have shown good information security and privacy management procedures.
Who is the Data Protection Trustmark (DPTM) issued by?The certification process is owned and administered by the Info-communications Media Development Authority (IMDA). For more information, you can visit the Data Protection Trustmark Certification - Infocomm Media Development Authority within IMDA’s website.
What are the key assessment requirements of the Data Protection Trustmark (DPTM)?Organisations shall have written documentation on policies, processes and practices for data protection and must also demonstrate that their data protection policies, processes and practices are implemented and practised on the ground. These are based on a set of robust and comprehensive criteria, such as: Trained Data Protection Officer and staff to handle their stakeholders’ personal data; Reasonable collection, use and disclosure of data with consent obtained and purpose made known; Appropriate measures for protection, retention and disposal of data; Provision of withdrawal of consent, and access and correction of data; and Appropriate measures to take in the event of data breach.
What are the key objectives of the Data Protection Trustmark (DPTM)?For organisations to demonstrate sound and accountable data protection practices; to provide a competitive advantage for businesses that are certified; to boost consumer confidence in organisations’ management of personal data; and to enhance and promote consistency in data protection standards across all sectors. Organisations can use the DPTM to increase their competitive advantage and build trust with their customers and stakeholders.
How long does it take to get the Data Protection Trustmark (DPTM)?As this is an external assessment by an IMDA-appointed assessment body, the length is very dependent on the strength and currency of your organisation’s existing Data Protection Management Programme (DPMP) and size of the organisation. The entire assessment and certification process (end to end) can be anywhere between 9 months months to a year.
Who qualifies for the Data Protection Trustmark (DPTM)?The DPTM can be applied for by organisations that have established a data protection regime to comply with the PDPA's obligations. The organisation must either (1) be incorporated or recognised under Singapore laws, or (2) be based in Singapore or have an office or place of business there, but it cannot be a public agency (as defined in the Personal Data Protection Act 2012).
What is the period of validity for the Data Protection Trustmark (DPTM) Certificate?The certificate will be valid for 3 years. Should organisations wish to undergo re-certification, it would need to re-apply at least 6 months from the date of expiry of the certification.
Is the Data Protection Trustmark (DPTM) recognised overseas?The DPTM is a local certification scheme recognised in Singapore. A mutual recognition of similar certifications may be explored by the PDPC, depending on regional developments.
Is this a data privacy certification for companies?Yes, it is recognised as an enterprise-wide data privacy certification that demonstrates compliance with the Personal Data Protection Act (PDPA).
If my organisation is a DPTM-certified organisation, will it absolve my company from regulatory financial penalties for breaches of the PDPA?No, being DPTM-certified does not mean your organisation is immune from data breaches or contraventions of the law. Being DPTM-certified simply means that your organisation has robust data protection practices and will count as a mitigating factor in the event of an investigation by the PDPC for a data breach or contravention of the PDPA.