Description

The European Union (“EU”) General Data Protection Regulation (“GDPR”) is the first comprehensive overhaul of the EU data protection rules since the Data Protection Directive 95/46/EC was enacted in 1995. The GDPR had generated worldwide debate from academics and practitioners alike during the preparation phase, and the attention has intensified over the past months with the implementation date, 25 May 2018, drawing closer. Notwithstanding, much of the discourse is focused on the presumed effect and application of the GDPR, impact of the GDPR on businesses and how they should prepare themselves for compliance. There has been limited discussion on the commonalities and differences between the GDPR and Singapore’s Personal Data Protection Act 2012 (“PDPA”). This discussion is particularly crucial to Singapore businesses with European customers or bases in Europe, as they will find themselves having to comply with both the GDPR and PDPA come 28 May 2018.

This session aims to provide a broad overview of the GDPR, including but not limited to, new requirements or key enhancements such as the 72-hour mandatory breach notification, increased penalties of up to €20 million or 4% of global annual turnover, expanded extraterritorial scope and enhanced accountability requirements, as well as how the aforesaid overlap with the PDPA.

About The Speaker
Lanx Goh is the Team Lead for Investigations at the Personal Data Protection Commission, Singapore, and is presently also involved in the review process of the Personal Data Protection Act. He will be appointed as an Adjunct Lecturer with the Singapore Management University School of Law where he will develop and co-teach the Privacy and Data Protection Law course, and will be a guest speaker at the National University of Singapore (NUS) Faculty of Law where he is assisting with the formulation of the Data Privacy Law course. He is also one of the authors for the 2nd edition of Simon Chesterman (ed), Data Protection Law in Singapore: Privacy and Sovereignty in an Interconnected World. By invitations, he had published articles for peer-reviewed journals in Japan, Singapore and the United Kingdom on privacy, data protection and cybersecurity laws as well as international commercial litigation and arbitration. He had also spoken at various conferences and seminars such as Data Privacy Asia, IAPP Asia Privacy Forum, and IAPP KnowledgeNet. Lanx Goh is an advocate and solicitor of the Singapore Supreme Court, an accredited mediator of the Singapore Mediation Centre and the Singapore International Mediation Institute, and a Fellow of Information Privacy of the International Association of Privacy Professionals (IAPP). He graduated with a Bachelor of Laws from the University of Birmingham, a Master of Laws (awarded additional Certificate of Specialization in Law and Technology) from the University of California, Berkeley, and a Master of Science in Criminology and Criminal Justice from the University of Oxford. He holds multiple professional privacy certificates, viz. CIPP/EU, CIPP/Asia and CIPM.