Personal Data Protection Bill

-

Some information regarding the proposed Personal Data Protection Bill 2012 (Singapore):

  • Covers the regulation pertaining to the collection, use, disclosure, transfer & security of personal data.
  • The PDP Bill consultation paper found here
  • The proposed PDP Bill found here
  • The Model Data Protection Code for the Private Sector found here
  • A subsequent report of the above-mentioned Model Code by the NIAC found here

The PDP bill interprets “personal data” to refer to data, whether true or not, about an individual who can be identified

  1. from that data; or
  2. from that data and other information to which the organisation is likely to have access

The bill does not provide greater clarity to the definition of “personal data” and a prescriptive list of personal data would not be provided. Fortunately, the definition was largely adapted from the Model Code which provided certain implementation & operational guidelines with specific examples.

An excerpt from the Model Code follows:

Persons are identifiable not only by their names but also by their pictures, their telephone numbers, or by some special identification number (e.g. NRIC and Passport numbers), etc..

"Personal data" may include an individual’s:

  • name, age, weight, height
  • NRIC/FIN number
  • medical records
  • income, purchases and spending habits
  • race, ethnic origin and colour
  • blood type, DNA code, fingerprints
  • marital status and religion
  • education
  • home address and phone number

While such data taken separately may not identify a person, a conjunction of a number of such data could be sufficient to identify an individual.

For those who are not legally trained (including myself), this should give some ideas to the type of information that needs to be protected with the proposed bill.

Comments

Post a Comment

Popular posts from this blog

Understanding ITIL Service Management the UML way…

-
Image
I originally had a great deal of difficult reconciling the differences amongst ITIL Change Management, Incident Management, and Problem Management. Having researched on the subjects and understanding them better now, I’ve tried to put the concepts together using a UML class diagram to capture my understanding and to keep it imprinted. Similarly, I wanted to differentiate the various categories of changes (Standard, Emergency, Normal) using an easy to understand & self-explanatory manner – a UML Activity Diagram!
Read more

Apache Web Server Troubleshooting

-
How to troubleshoot Apache Web Server? A few standard commands to know by hard: To confirm the modules that are or will be loaded in Apache: apachectl –M [-f <conf filename>] To check the virtual host load pattern: apachectl –S [-f <conf filename>] To test a httpd.conf file: apachectl –t [-f <conf filename>] To maintain the http server: apachectl start|stop|restart To start with a specified configuration file: apachectl –f <conf filename> Create a minimalist httpd.conf. Something like: Listen 80 ServerName myserver.com:80 ServerAdmin admin@myserver.com #ServerRoot " . " ServerRoot " /usr/local/apache2 " User nobody Group nobody #DocumentRoot " ..\wwwroot " DocumentRoot " /home/data/html " ErrorLog " logs/basic_apache.log " LogLevel debug #LoadModule log_config_module modules/mod_log_config.dll LoadModule log_config_module modules/mod_log_config.so <IfModule log_config_module> LogFormat " %h %l
Read more