The New Era of Data Protection in Thailand
We are entering a new era in Thailand, where each organisation will need to assign a data controller to monitor its own data collection, use, or disclosure, including processing activities, according to the PDPA which will become effective from May 2020.
This new legal framework for processing personal data entails several significant changes to standard business practices. To reduce risk, organisations must revisit their data protection plans and procedures and ensure that they comply with the new legal requirements. This means ensuring that data is tightly controlled within the system and only used for purposes that users have clearly given their consent for. It also means isolating specific categories of data for security purposes, and creating new electronic data removal systems to comply with users’ right to be forgotten.
Key points for discussion:
- What measurements have companies already taken to comply with the PDPA
- What are the biggest challenges that companies will face this year?
- How is data governance changing and how can companies get ready?