All Collections
Regulations, privacy, and security
Understanding the PDPA and how we’re keeping data safe
Understanding the PDPA and how we’re keeping data safe

What we're doing at Dotdigital to keep your data safe.

Gareth Burroughes avatar
Written by Gareth Burroughes
Updated over a week ago

Since 2012, the Personal Data Protection Act (‘PDPA’) has governed the collection & use of personal data of Singapore residents by organisations in a manner that recognises the right of individuals to protect their personal data and the need of organisations to use that personal data appropriately. The PDPA applies no matter where you are located.

In November 2020, the Personal Data Protection (Amendment) Bill 2020 was passed, introducing additional obligations and furthering the principle of accountability with regard to personal data in Singapore.

What we're doing to keep you safe

Dotdigital has extensive expertise in protecting data, championing privacy, and complying with complex regulations.

We believe that the amendments to the PDPA is an important step forward for furthering and enabling individual privacy rights.

We want to help you focus on your core business safe in the knowledge that your use of Dotdigital meets your compliance needs and that data is handled in accordance with the law.

Our commitment to you

We are committed to our principles of cloud trust, data protection, and data security. Not only have we introduced platform functionality to address the privacy demands of our customers, but we intend to continue to provide it.

With the PDPA well established and the increasing trend towards a culture of accountability in Singapore, here's what you can expect from us:

  • Technology that meets your needs
    You can leverage our specific platform functionality to meet your PDPA obligations for areas including, rectification, transfer of, access to and objection to the processing of personal data.

  • Contractual commitments
    Relationships with Dotdigital are supported by contractual commitments for our services, including security standards, support, and timely notifications in accordance with the requirements of the PDPA.

  • Sharing our experience
    We will share the information that we gather through various Data Protection Authorities and other reputable organisations so you can adapt what we have learned to help you craft the best path forward for your organisation.

PDPA Compliance is a shared responsibility

While Dotdigital is fully committed to helping you successfully comply with the PDPA, it's important to recognise that compliance is a shared responsibility. Newer regulations (such as data breach notification processes) will mean changes for your organisation while balancing established requirements (like data access and rectification rules).

When it comes to PDPA compliance, it's not just Singapore organisations that are affected, but also those outside of Singapore who process data in connection with the offering of goods and services to, or monitoring the behaviour of, Singapore residents. As such, it's important to understand your obligations related to PDPA regardless of where your organisation resides.

It will take time, tools, processes and expertise for you to comply with the PDPA. To do this, you need to make changes to your privacy and data management practices.

We have made our platform really easy for customers to comply with PDPA regulations.

To sum up

We understand that you must be able to entrust your chosen email and automation provider with one of your most valuable assets - your data. To gain that trust we continue to invest in technology and resources to build security and privacy into our platform. We operate a policy of transparency and aim to provide you with the information you need to feel confident in using us. You can view the full details on our Trust Center.

Did this answer your question?