Charmian Aw

Firm/Organization: Reed Smith LLP

Blogs: FinTech Update, Technology Law Dispatch

Latest Articles

Data portability and other initiatives introduced in Singapore to promote innovation and strengthen accountability

By Charmian Aw on May 22, 2019

On May 22, 2019, Singapore’s Personal Data Protection Commission introduced three new initiatives: a) A public consultation on data portability. The corresponding consultation paper also proposes to introduce data innovation provisions as part of the ongoing review of the Personal Data Protection Act (PDPA). The consultation is open for six weeks and will close on July 3, 2019. b) A guide on active enforcement. c) An updated guide on managing data breaches. Public…

Technology Law Dispatch

Warnings issued against two organisations for breaching Singapore data protection law

By Charmian Aw on April 23, 2019

On 23 April 2019, Singapore’s Personal Data Protection Commission (commission) issued two separate grounds of decision against PAP Community Foundation and Tutor City. In both cases, the commission issued warnings to the organisations for breaching the protection obligation under section 24 of the Personal Data Protection Act (PDPA), but no financial penalty was imposed. PAP Community Foundation (PCF) The facts of this case were as follows: PCF provides kindergarten services, and organises various school…

Technology Law Dispatch

Singapore introduces new law to combat the spread of fake news

By Charmian Aw on April 1, 2019

On 1 April 2019, the Protection from Online Falsehoods and Manipulation Bill was tabled in Singapore’s Parliament. The bill aims to stem the communication of false statements of fact, enable the detection and control of information manipulation, and promote the transparency of online political advertisements. Any person or organisation that spreads online falsehoods with malicious intent to harm the public interest in Singapore could face a fine of up to SGD 500,000 or, in the…

Technology Law Dispatch

New guidelines for building management corporations in Singapore

By Charmian Aw on March 12, 2019

On 11 March 2019, the Personal Data Protection Commission of Singapore (PDPC) issued a set of advisory guidelines for management corporations of strata title plans (MCSTs), which were developed in consultation with Singapore’s Building and Construction Authority. The guidelines provide guidance to MCSTs on complying with Singapore’s Personal Data Protection Act (PDPA), and some key aspects are as follows: As an MCST comprises the subsidiary proprietors of all lots within the strata title plan of…

Technology Law Dispatch

Singapore considers introduction of data portability

By Charmian Aw on February 25, 2019

On 25 February 2019, Minister for Communications and Information announced that Singapore is considering, as part of an ongoing review of the Personal Data Protection Act (PDPA), introducing a data portability requirement that would confer greater control and rights by data subjects over the movement of their personal data across service providers. In connection with this, a discussion paper on data portability has been made available by the Personal Data Protection Commission in collaboration with…

FinTech Update

The sandbox goes global – Launch of the Global Financial Innovation Network

By Peter Zaman, Charmian Aw & Hagen Rooke on February 5, 2019

The UK’s Financial Conduct Authority (FCA) has announced the launch of the Global Financial Innovation Network (GFIN), an association of 29 regulatory bodies (Members) which will cooperate to promote innovation and share experiences and approaches to supervising new technologies in the financial services sector. The proposal to launch the GFIN was set out in a consultation paper in August 2018, and has received strong industry support. A key GFIN initiative is a pilot scheme allowing…

Technology Law Dispatch

Singapore announces series of initiatives to boost cybersecurity in the telecoms sector

By Charmian Aw on January 27, 2019

Singapore has set up a new Telecom Cybersecurity Strategic Committee (TCSC) to develop a plan to tackle ‘next-generation cyber threats’ in the telecommunications sector. The committee is expected to publish a strategy report and outline a roadmap for telecommunications operators to develop cybersecurity capabilities later in 2019. The report and roadmap will include recommendations for new initiatives such as capability development, technology innovation, regulation and international partnerships. In his opening address at the inaugural Infocomm …

Technology Law Dispatch

Financial penalty imposed for failure to protect personal data on website

By Charmian Aw on January 22, 2019

On 22 January 2019, Singapore’s Personal Data Protection Commission issued its grounds of decision against COURTS (Singapore) Pte Ltd (Courts), a consumer electronics and furniture retailer in Singapore. The facts of the case were as follows: A complaint was brought by an individual who discovered that his contact number and address were disclosed in an automatically opened webpage, when he entered his name and email address on Courts’ guest login page when making a purchase…

Technology Law Dispatch

“Worst breach of personal data in Singapore’s history” attracts highest penalties totalling S$1 million

By Charmian Aw on January 15, 2019

On 14 January 2019, Singapore’s Personal Data Protection Commission issued its grounds of decision against Singapore Health Services Pte. Ltd. (SingHealth) and Integrated Health Information Systems Pte. Ltd. (IHiS) for what has been coined the “worst breach of personal data in Singapore’s history”. The unprecedented cyber attack on SingHealth’s patient database system led to the exfiltration of 1.5 million patients’ personal data and nearly 160,000 patients’ outpatient prescription records. The commission received several complaints from…

Technology Law Dispatch

First two Singapore data protection enforcement decisions issued in 2019

By Charmian Aw on January 6, 2019

On January 3, 2019, Singapore’s Personal Data Protection Commission issued two grounds of decision against Bud Cosmetics and AIG Asia Pacific Insurance Pte Ltd & Toppan Forms (S) Pte Ltd. Bud Cosmetics The facts of this case were as follows: Bud Cosmetics is an organic and natural skincare retailer with retail outlets in Singapore and an online store. It collected customer information for membership registration and maintained two separate databases: one for online registrations…

Charmian Aw

Data portability and other initiatives introduced in Singapore to promote innovation and strengthen accountability

Warnings issued against two organisations for breaching Singapore data protection law

Singapore introduces new law to combat the spread of fake news

New guidelines for building management corporations in Singapore

Singapore considers introduction of data portability

The sandbox goes global – Launch of the Global Financial Innovation Network

Singapore announces series of initiatives to boost cybersecurity in the telecoms sector

Financial penalty imposed for failure to protect personal data on website

“Worst breach of personal data in Singapore’s history” attracts highest penalties totalling S$1 million

First two Singapore data protection enforcement decisions issued in 2019

Company

Support

New to the Network