Data Protection Certifications

Data Protection Trustmark Certification is a voluntary enterprise-wide certification for organisations to demonstrate accountable data protection practices. The DPTM will help businesses increase their competitive advantage and build trust with their clients.

Find out more or start an application here.

Having a system in place to enable transfer of personal data across borders is fundamental for businesses in the global economy.

The APEC CBPR System was developed to facilitate cross border personal data flows among APEC economies while respecting privacy and security of personal information.

The CBPR System applies to organisations (data controllers) that control the collection, holding, processing, or use of personal data. 

Find out more or start an application here.

The APEC PRP System was designed for organisations (data processors) who process data on behalf of client organisations (data controllers), to demonstrate their ability in providing effective implementation of a controller’s privacy requirements.

Find out more or start an application here.

Together, the APEC CBPR and PRP established a harmonised data protection standard across APEC, facilitating data transfers among certified organisations in the participating economies. This helps businesses increase their global competitiveness and build trust with their customers.

Singapore recognises the APEC CBPR and PRP certifications for overseas transfers of personal data under the PDPA. This means that organisations in Singapore can easily transfer personal data to the overseas certified recipient without meeting additional requirements.

• Template contract clause for transfers of data to overseas recipients that hold CBPR or PRP certifications can be found here
• Learn about the announcement here

For questions, please refer to our FAQs.

For queries, please email Data_Protection_Certifications@imda.gov.sg or call 6377 3800.