Glossary · compliance
PDPA
Also known as: Personal Data Protection Act
- Definition
- The Personal Data Protection Act (PDPA) is Singapore's personal-data legislation. Governs collection, use, disclosure, and care of personal data by organisations including financial institutions. Enforced by the Personal Data Protection Commission (PDPC).
PDPA matters in wealth management because every CRM record, lead form, KYC document, and reporting output handles personal data. Cross-border data transfer requires either consent or an organisation-to-organisation contract with adequate-protection terms. Penalties for material breaches can reach S$1M or 10% of annual SG turnover. WealthManagement.sg operates under PDPA and runs a 48h takedown SLA per /legal/data-takedown.
Source: PDPC
Related
Looking for the full picture? See our deep-dive pages on Singapore private banking, family office Singapore, and the full glossary index.