The Infocomm Media Development Authority and the Economic Development Board will pilot a Call for Application to construct three new data centres, after lifting a moratorium on new data centre projects in place since 2019. In line with Singapore’s climate change commitments, permits will only be granted for proposed data centres that meet a stringent set of energy efficiency criteria.
On 4 February 2022, the Dubai International Financial Centre Office of the Commissioner of Data Protection announced that the commissioner issued an adequacy decision recognising, among others, Singapore’s Personal Data Protection Act for safe data transfers from the DIFC. This is a welcome development as it facilitates cross-border personal data transfers from the DIFC to Singapore, which can in turn strengthen business ties between the two territories.
On 25 November 2021, the United Nations announced that all 193 member states of the United Nations Educational, Scientific and Cultural Organization, including Singapore, adopted a first-of-its-kind global agreement on the ethics of artificial intelligence. The agreement focuses on the broader ethical implications of AI systems in relation to education, science, culture, communication and information; and articulates common values and principles to assist in the creation of legal infrastructure for the healthy development of AI.
On 9 December 2021, Singapore and the UK substantially concluded negotiations on the UK-Singapore Digital Economy Agreement (UKSDEA). The UKSDEA covers key areas of the digital economy, such as data, artificial intelligence, fintech, digital identities and legal technology.
On 8 November 2021, the Smart Nation and Digital Government Office (SNDGO) announced the launch of two national artificial intelligence (AI) programmes for the government and financial sectors.
The ASEAN Model Contractual Clauses are contractual terms and conditions that may be voluntarily adopted by companies as a legal basis for the cross-border transfer of data. The ASEAN MCCs are primarily designed for transfers of personal data between ASEAN nations, but can also be adapted with appropriate modifications for data transfers between businesses within Singapore or transfers to countries outside the Association of Southeast Asian Nations.
With effect from 1 September 2019, organizations are generally not allowed to collect, use or disclose National Registration Identity Card numbers and copies of NRIC and other national identification numbers, except in certain specified circumstances. Notwithstanding clear guidance documents issued by the Personal Data Protection Commission, it appears that some organizations continue to collect, use or disclose such national identification numbers in breach of the Personal Data Protection Act.
This data privacy update addresses the amendments to the Personal Data Protection Act, the changes to the Spam Control Act, the publication of the Cyber Security Agency of Singapore’s report on the Singapore Cyber Landscape in 2020, and the proposed new licensing framework for cybersecurity service providers.
On 3 June 2020, the Ministry of Law (“MinLaw”) and Intellectual Property Office of Singapore (“IPOS”) launched a public consultation on “Proposed Licence Conditions and Code of Conduct for Collective Management Organisations” (the “Consultation Paper”). The proposed amendments follow from the responses received during the Copyright Collective Rights Management Ecosystem Public Consultation 2017, and forms part of the ongoing review of Singapore’s copyright regime. It seeks to implement a regulatory framework for Collective Management Organisations (“CMOs”), which are currently unregulated.