Our Blog

PDPA and GDPR are different. Learn more and ensure compliance for mobile call recording, quickly and easily.

PDPA and GDPR are different.

Companies in Singapore are bound by the Personal Data Protection Act, or PDPA, which was introduced in 2012. It’s a broad set of regulations, which place certain requirements on companies when collecting and storing personal data that they accumulate through their daily activities and interactions with customers.

GDPR is a similar set of regulations, which covers countries located in the EU or with operations there. There are differences between PDPA and GDPR and we’d like to highlight some key points for your benefit. To begin with, it’s important to understand that compliance with PDPA does not mean that you are compliant with GDPR. And, if you are doing business with companies or customers in the EU region, then you must also be compliant with GDPR.

So, what are the key differences between PDPA and GDPR?

There are several. First, individuals have the right to access their data at no cost under GDPR, but this is not the case with PDPA. As a result, you can expect to encounter more requests to access data from the EU, which means you need to have the processes in place to meet these obligations.

Next, GDPR obliges companies to appoint Data Protection Offices (DPOs), who may need to be your representative in the EU region. They need to be able to control data and to be able to respond to Subject Access Requests, quickly and efficiently – which again means that they need the processes and tools to support such applications.

A further crucial difference is the right to be forgotten. PDPA allows the correction of data, but only GDPR allows people to request its permanent deletion. This also places demand on your processes, which must support the rapid erasure of personal data that has been collected, even if this was required to support the relationship with the client. As a side note, it’s worth remembering that calls that are related to activities that are covered by MiFID II regulations cannot be deleted.

So, if you have business activities in the EU, GDPR matters to you just as much as PDPA. It’s a tricky subject, especially if you need to record conversations and interaction with customers to help your business. This applies just as much if you are using mobile devices to speak to customers or to send them messages.

Fortunately, help is at hand. In partnership with Singtel, Touch offers a completely secure, reliable means of recording voice and messaging for mobile phones. It’s a true mobile call and message recording solution that runs in the mobile network. It doesn’t need any additional software or equipment and works on any mobile device. Even the Apple iPhone is supported, which is a question often asked. It’s easy to activate, easy to manage – and enables your business to ensure that call recording is conducted in full compliance with the requirements of GDPR as well as PDPA.

If you are confused about the impact of GDPR on your call recording practice, why not get in touch to see how we can help? Touch mobile call recording is a complete solution, designed to ensure you comply with relevant regulations – so you can focus on your business.

Written on 22 May 2019
touch logo

Get in touch

Photo of Kjetil Abo

If you have an enquiry or a question, send an email to Kjetil Abo, CEO Asia.

This email address is being protected from spambots. You need JavaScript enabled to view it.
  • Linkedin
  • Twitter
  • blog