Data Privacy & Cybersecurity

The Challenge

Data privacy and protection are key business challenges in an age of big data, requiring assurance that personal information is protected with appropriate security technologies and strategies. Data growth is exponential, requiring control of costs and vulnerability, with support to minimise human error across a rapidly developing landscape. Thus costs of poor data privacy extend beyond IT departments and are the responsibility of the organisation.

Our Approach

Our holistic management approach to legal compliance and operational management fosters a culture of awareness to respect and ensure the privacy of our stakeholders. Data privacy policies ensure compliance with the Personal Data Protection Act 2012 in Singapore, and the European Union’s General Data Protection Regulation (GDPR) that came in to force in May 2018.

Internal IT Risk Management and Audit teams review best practices and enforce company security policies to identify gaps and support IT Policy governance. Audits target the control of digital data access and mitigating risks of such access, and ensuring rapid implementation of critical security patches and firewall updates. An annual external audit of technology and digital assets is conducted by an international cybersecurity consulting firm, to assess risk and response. Audit recommendations and suggestions are implemented to address ongoing security threats. Insurance coverage is in place to protect against cybersecurity risks.

Associate awareness and engagement with data security occurs through policies and regular information sharing on prevailing risks and recommended actions.