Rate Our Information

Was this Information useful?






Data Protection Trustmark Certification

last updated 05 December 2018

To support businesses in building consumer trust, IMDA has developed the Data Protection Trustmark (DPTM) certification to help businesses verify their conformance to personal data protection standards and best practices.

Data Protection Trustmark Certification

As part of advancing the digital economy strategy to allow Singapore to stand out as a trusted data hub with a well-developed data ecosystem that supports competition and innovation as well as the cross-border flow of data, the PDPC has developed the Data Protection Trustmark (DPTM) Certification to help organisations verify their conformance to personal data protection standards and best practices.

The key objectives of the certification are:

  • for organisations to demonstrate sound and accountable data protection practices;
  • to enhance and promote consistency in data protection standards across all sectors;
  • to provide a competitive advantage for businesses that are certified; and
  • to boost consumer confidence in organisations’ management of personal data.

The benefits to being DPTM-certified:

  1. Provides Assurance to Your Organisation
    Third-party certification helps to provide validation of your organisation’s data protection regime. The certification will increase your data governance and protection standards, uncover potential weaknesses and enable your organisation to take steps to mitigate risks.

  2. Increases Business Competitiveness
    Obtaining DPTM certification demonstrates to your customers that you have robust data protection policies and practices in place to safeguard their personal data. This will help strengthen your reputation, build trust and foster confidence in your business, raising your business competitiveness both locally and overseas.

The DPTM certification is valid for 3 years and organisations will need to apply for re-certification prior to its expiry.

Please refer to Overview of Certification Requirements for details.

The call for participation in the DPTM Pilot Certification ended on 30 September 2018.

For enquiries, please email to Data_Protection_Certifications@imda.gov.sg

 

Data Protection Trustmark Certification

  1. What is the Data Protection Trustmark (DPTM) certification?

    The DPTM is a voluntary enterprise-wide certification that requires companies to demonstrate that they are able to meet the obligations of the PDPA and have achieved a robust data governance standard. A DPTM certification will help businesses increase their competitive advantage and build trust with their clients. The DPTM will be a visible indicator that an organisation adopts sound data protection practices.


  2. Who can apply for the DPTM?

    Organisations that have put in place a data protection regime to comply with the obligations of the PDPA can apply for DPTM certification. They should also strongly believe in active accountability beyond mere compliance, in personal data protection and are either (1) formed or recognised under the laws of Singapore, or (2) resident, or having an office or a place of business, in Singapore.


  3. What is the cost for applying the DPTM?

    The assessment fee is payable directly to the Assessment Body. The amount may range between $1,400 to $10,000 (excluding GST), depending on the size of your organisation.


  4. What is the period of validity for the DPTM certification?

    The DPTM certification is valid for 3 years and organisations will need to apply for re-certification before its expiry.


  5. Is DPTM recognised overseas?

    The DPTM is a local certification scheme. Depending on regional developments, IMDA may explore mutual recognition of similar certifications with other countries