The Ninja Sensei’s Logbook: We Are CSA-licensed and More Stories

This post is extra special because a few days ago, our penetration testing services just got CSA-licensed! As many of you may already be aware, the Cyber Security Agency of Singapore (CSA) recently launched its licensing framework for cybersecurity service providers to better safeguard the interests of consumers.

In other words, this cybersecurity services provider you trust just got trustier

𝐍𝐨𝐰 𝐨𝐧𝐭𝐨 𝐭𝐡𝐞 𝐧𝐞𝐱𝐭 𝐩𝐚𝐫𝐭

The PDPC decisions and undertakings in June are already published on the PDPC website. There’s a lot to unpack for the organisations to take note of! This month’s decisions and undertakings cover the:

🔹 financial penalty of Vhive
🔹 warning issued to three financial advisers
🔹 decisions being not in breach covering SLP Scotia and SLP International Property Consultants and Aman Group S.a.r.l and/or Amanresort International, and
🔹 Undertaking to be followed by SingHealth Polyclinics

𝐖𝐡𝐚𝐭 𝐭𝐨 𝐭𝐚𝐤𝐞 𝐧𝐨𝐭𝐞 𝐨𝐟

Repeatedly, this month’s cases highlight the significance of having robust cybersecurity safeguards and policies to ensure that the organisation’s personal data is not accessible to malicious actors.

This includes:
👉 making sure that your organisation’s systems and infrastructures are up to date
👉 conducting training or exit interviews to remind employees of their duty, which is to uphold the highest standard when it comes to the collection, usage, and disclosure of personal data
👉 having a clear and concise contract detailing the role and responsibility of an organisation that is handling personal data
👉 strengthening an organisation’s data protection policies to eliminate any grey area in handling documents containing personal data

𝐖𝐡𝐚𝐭 𝐜𝐚𝐧 𝐰𝐞 𝐠𝐞𝐭 𝐟𝐫𝐨𝐦 𝐭𝐡𝐞𝐬𝐞 𝐜𝐚𝐬𝐞𝐬?

The incidents remind us not to take the handling of personal data carelessly as the PDPC does not take PDPA breaches lightly. Organisations must see to it that there will be no instance of personal data leaking out, which generally stems from the active action towards PDPA compliance.

P.S. For any further questions or if you need help with your cybersecurity and data protection compliance journey, don’t hesitate to reach out to us. We are always a text/call or email away!

📱 WhatsApp: +65 8750 4250
📧 Email:

This post first appeared on Andy’s LinkedIn wall. Follow us on the following pages for more updates! Facebook | Twitter | LinkedIn | YouTube | Website



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Privacy Ninja

Privacy Ninja

Privacy Ninja is Singapore’s leading cybersecurity & data protection firm offering the most affordable services, like outsourced Data Protection Service & VAPT.