Data Protection Framework and Standards. ISO 29100, Nymity Accountability and APEC Privacy Framework

badge
banner

Data Protection Framework and Standards. ISO 29100, Nymity Accountability and APEC Privacy Framework


Training Partners

cpartner
cpartner

Next Session

11 Mar-
12 Mar

Duration

2 Days

Cost

SGD2180


Contact

6974 8949 | 6920 5462

Email

courses@straitsinteractive.com

Ideal For
  • Data Protection Officers
  • Compliance Managers (Dedicated / Part-time)
  • Personnel with data protection responsibilities
  • Personnel handling personal data, eg Finance, Human Resource, Sales and Marketing, IT, Customer Service.

LATEST UPDATE
Participants are required to attain a minimum of 75% training attendance and pass the associated assessment in order to be eligible for course fee funding. Click here for more information.

INTAKE INFORMATION:                                                
11 - 12 Mar 2025 [Open for Registration]
Mode of Delivery: In-person

*Online registration will close 5 calendar days before the course start date or once the maximum class size is met, whichever comes first.

This module provides participants with an understanding of data protection principles and frameworks based on common de facto and international standards:

  • The ISO/ IEC 29100: 2011 Information technology: covers a policy framework, privacy architecture, a privacy capability assessment model as well as a Code of Practice for protection of personally identifiable information (PII) in public clouds acting as PII. Several supporting privacy standards have since been introduced that are extensions to information security.
  • The Nymity Privacy Management Accountability Framework™ (“Framework”): a comprehensive listing of over 130 privacy management activities from Nymity. The privacy management activities are structured in 13 privacy management categories, and are jurisdiction and industry neutral.
  • The Madrid Resolution: adopted in 2009 by the International Conference of Data Protection and Privacy Commissioners, it included a joint proposal to bring together multiple approaches to the protection of personal privacy, integrating legislation from all five continents.
  • Other frameworks: APEC Privacy Framework and Cross Border Privacy Rules.


TOPICS COVERED

  • Evolution of data protection principles/law and OECD privacy guidelines
  • Frameworks, standardisations and universal data protection principles
  • Operationalising data protection/privacy frameworks and standards


This module is part of the Advanced Certificate in Data Protection Principles  programme. 


Meet our team of trainers:

Kevin Shepherdson

Kevin Shepherdson
Straits Interactive

Kevin is the founder and CEO of Straits Interactive, which operates the ASEAN region's largest network of privacy professionals: the Data Protection Excellence (DPEX) Network. Recognised as an expert in data privacy and governance, Kevin authored the book "99 Privacy Breaches to Beware Of" and is also the official APAC trainer for both IAPP (International Association of Privacy Professionals) and the Open Compliance and Ethics Group (OCEG).

With several years of experience in management roles at Creative Technology, Sun, and Oracle, Kevin brings his vast knowledge and experience to the fields of Digital Transformation and Generative AI. He has played a pivotal role in the development of the company's major AI initiatives, including the region's first AI DPO Assistant, as well as in the areas of AI governance, Generative AI design, and prompt engineering.

Kevin utilises his degree in arts and social science, with a major in English language, as well as a master's in information science. He combines his expertise as a music composer and multimedia producer to contribute to the company's innovative efforts in the area of data privacy and AI.

 
Celine Chew

Celine Chew
Straits Interactive

As a Certified Information Privacy Manager (CIPM) and Head of Learning and Development of Straits Interactive, Celine provides insights into the behavioural change and learning required for teams to embrace change initiatives. She offers comprehensive training for Data Protection Officers (DPOs) and companies, propelling digital transformation in data protection and governance. Celine also has extensive training experience internationally and specialises in the social, emotional and cognitive aspects of learning. She is also an executive coach to senior executives in multinational and regional companies.

Combining both her educator, musical and change management background, Celine crafted and trained a tailored curricula for educators on utilising ChatGPT for teaching and learning, training educators' adeptness with these tools. Through her hands-on approach and strategic insights, she has significantly advanced the integration of cutting-edge AI technologies in these vital areas as well as playing a crucial role for the launch of Straits first AI Data Protection Officer (DPO) Assistant toolkit.

 
William Hioe

William Hioe
Straits Interactive

William Hioe, who is a Certified Information Privacy Manager (CIPM), brings with him more than three decades of ICT experience in the government and public sector, first as an assistant director in Systems & Computer Organisation, MINDEF, and then as a senior director of strategic planning at the National Computer Board (NCB) / Infocomm Development Authority of Singapore (IDA). Currently, he is the managing director of Cynergie Consulting Pte Ltd, a company founded by him to offer consultancy and training services in strategic ICT planning, strategy development, policy formulation and enterprise architecting.

 
Chen Hwee Ling

Chen Hwee Ling
Straits Interactive

Hwee Ling is a Certified Information Privacy Manager, Certified Information Privacy Technologist and Certified Information Privacy Principles (Asia). As an educator and engineer of information systems for more than thirty years, Hwee Ling has extensive experience working in areas such as Information Technology Service Management, Software Development, Data Analytics, Machine Learning and Robotic Process Automation. With upward trend of automation and digitalization of business operations, Hwee Ling brings insights to help organisation understand and mitigate data protection as well as information security risks.

 
 
Nicholas Cheong

Nicholas Cheong
Straits Interactive

Nick is a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Professional (CIPP) for Europe and Asia, certified by the International Association of Privacy Professionals (IAPP). He has also been certified by the Open Compliance and Ethics Group (“OCEG”) as a Governance, Risk and Compliance Professional (GRCP) and GRC Auditor (GRCA).

Nick has benefited from 25 years of legal practice, managing risks as a diving instructor and as a drug supervision officer. He is from the first batch of PDPC approved trainers when PDPC first launched its data protection course. He has provided data protection training and consultancy since 2014.

LEARNING OBJECTIVES

At the end of the course, participants will be able to:

  • Develop an understanding of how data protection principles evolved into laws and standards
  • Apply universal data protection frameworks, principles and standards in the formulation of compliance and data protection/privacy management programmes
  • Effectively comply with data protection laws from an operational and accountability perspective


ASSESSMENTS

As part of the requirement for SkillsFuture Singapore, there will be an assessment conducted at the end of the course. The mode of assessment, which is up to the trainer’s discretion, may be an online quiz, a presentation or based on classroom exercises.

Participants are required to attain a minimum of 75% attendance and pass the associated assessment in order to receive a digital Certificate of Completion issued by Singapore Management University.

For more information on assessment and re-assessment policy, click here.

CERTIFICATION

Advanced Certificate in Data Protection Principles

Participants are required to attain a minimum of 75% attendance and pass the associated assessment for each of the 6 modules within 2 years in order to be awarded the digital Advanced Certificate in Data Protection Principles issued by Singapore Management University.

  • Participants will receive the course material in the form of digital e-book. To access your digital e-book, you need to install Adobe Digital Editions or BlueFire. Visit - https://bit.ly/ade-ebook-guide for more guidance on how to open the e-book.

COMPANY-SPONSORED
PARTICIPANT PROFILESELF-SPONSOREDSMENON-SME
Singapore Citizen < 40 years old 
Permanent Resident 
LTVP+ 
$654
(After SSG Funding 70%)
$254
(After SSG Funding 70% + ETSS Funding 20%)
$654
(After SSG Funding 70%)
Singapore Citizen ≥ 40 years old$254
(After SSG Funding 70% + MCES Funding 20%)
$254
(After SSG Funding 70% + MCES Funding 20%)
$254
(After SSG Funding 70% + MCES Funding 20%)
International Participant$2,180
(No Funding)
$2,180
(No Funding)
$2,180
(No Funding)
Please note that prices listed above are inclusive of the new 9% GST, applicable from January 1, 2024.

SkillsFuture Level-Up Programme for Mid-Career Individuals

A SkillsFuture Credit (Mid-Career) top-up of $4,000 will be provided to Singaporeans aged 40 years and above to further offset out-of-pocket course fees for this programme.

Post Secondary Education Account (PSEA)

PSEA can be utilised for subsidised programmes eligible for SkillsFuture Credit support. Click  here  to find out more.

SELF SPONSORED

# SkillsFuture Credit

Singapore Citizens aged 25 and above may use their SkillsFuture Credits to pay for the course fees. The credits may be used on top of existing course fee funding.

This is only applicable to self-sponsored participants. Application to utilise SkillsFuture Credits can be submitted when making payment for the course via the SMU Academy TMS Portal, and can only be made within 60 days of course start date.

Please click here for more information on the SkillsFuture Credit. For help in submitting an SFC claim, you may wish to refer to our step-by-step guide on claiming SkillsFuture Credits (Individual).

# Workfare Skills Support Scheme

Workfare Skills Support (WSS) Scheme in replacement of Workfare Training Support (WTS) Scheme:

From 1 July 2023, the Workfare Skills Support (WSS) scheme has been enhanced. Please click here for more details.

COMPANY SPONSORED

# Enhanced Training Support Scheme

  • Organisation must be registered or incorporated in Singapore
  • Employment size of not more than 200 or with annual sales turnover of not more than SGD100 million
  • Trainees must be hired in accordance with the Employment Act and fully sponsored by their employers for the course
  • Trainees must be Singapore Citizens or Singapore Permanent Residents
  • Trainers must not be a full-time national serviceman
  • Trainees will be able to enjoy ETSS funding only if the company's SME's status has been approved. To verify your SME's status, please click here.


# Absentee Payroll

Companies who sponsor their employees for the course may apply for Absentee Payroll here.
For more information, please refer to:


COURSE ENQUIRY / DETAILS

For more information on course details, write to us at courses@straitsinteractive.com or call us at +65 6974 8949 / +65 6920 5462.

REGISTRATION / BILLING MATTERS

Click here to send an enquiry to SMU Academy on matters pertaining to registration and billing.

Testimonials

Excellent course and very well conducted. Thank you.

Participant at Course
Mar 2021

Clear and simple language used in the training, helps trainees to catch the concepts faster.

Participant at Course
Mar 2021

The course helps me to appreciate the history and background of data protection, which definitely enriched my understanding of data privacy and protection. The course content is very comprehensive and well put-together - kudos to Kevin and his Team!

Participant at Course
Nov 2020

Thank you for the efforts to bring all these together. The collation and rationalisation of the different frameworks, conventions, laws helps to give everyone a deeper understanding of the actual requirements of the privacy provisions and its rationale.

Participant at Course
Nov 2020

Compressed the 40 years of history into a course note is a splendid idea!

Participant at Course
Nov 2020

Kevin and William are both knowledgeable and shared their experience willingly.

Participant at Course
Nov 2020

Both instructors had many good anecdotes and experiences to share, and conducted the course very well despite being the first time using the online format.

Participant at Course
Apr 2020

The trainer is experienced and knowledgeable, and the additional insights he was able to share during the course helps in the understanding and appreciation of the various frameworks out there.

Participant at Course
Apr 2020