Hi, My Name Is Andy Prakash
It is mandatory for all MCSTs in Singapore to comply with the Personal Data Protection Act (PDPA) and appoint a Data Protection Officer (DPO).
A MCST is considered an organisation under the PDPA.
MCSTs need to comply with the Personal Data Protection Act (PDPA), starting with the appointment of a Data Protection Officer (DPO).
The responsibilities of a DPO include, but are not limited to:
A MCST comprises the subsidiary proprietors of all lots within the specific strata title plan (an “estate”), which could be residential buildings such as apartments and condominiums, or commercial buildings such as shopping malls, offices and medical centres.
The Management Council (MC) of each MCST needs to appoint a Data Protection Officer (DPO).
MCSTs that fail to comply with the PDPA and do not appoint a Data Protection Officer (DPO) will receive Warnings, Directions or Financial Penalties.
Both MCST 3593 and New-E Security failed to put in place reasonable security arrangements to prevent the unauthorised disclosure of CCTV footage of a common property at Marina Bay Residences. MCST3593 also failed to appoint a data protection officer and put in place policies and practices necessary for the organisation to comply with the PDPA.
Both MCST 4375 and A Best Security Management failed to put in place reasonable security arrangements to prevent the unauthorised disclosure of CCTV footage of an individual injured by a falling glass door at Alexandra Central Mall. MCST 4375 also failed to put in place policies and practices necessary for the organisation to comply with the PDPA.
Below are some of the MCSTs we serve, ranging from Condominiums to Shopping Malls, to Mixed Developments and Industrial Buildings.
Each MCST appoints a Managing Agent (MA) to handle the day-to-day operations, and we work closely with their MA to handle data protection related queries and complaints, policies and SOP setup, ensuring PDPA compliance.
Contact us for a non-obligatory call today
Feel free to contact with us.
Read the following 3 important articles on what MCSTs need to do to comply with the Singapore Personal Data Protection Act (PDPA).
<p>MCSTs, do you know that BMSMA takes precedence over PDPA? In this article, we examine their interplay and how it can affect your personal data protection management. <a href="https://www.privacy.com.sg/pdpa/mcst/interplay-between-bmsma-and-pdpa/">Read more</a>.</p>
<p>In this guide, we provide an exhaustive discussion addressing queries surrounding personal data management by MCSTs, such as handling access requests within the Estate. <a href="https://www.privacy.com.sg/pdpa/mcst/pdpa-compliance-for-management-corporations/" target="_blank" rel="noopener">Read more</a>.</p>
<p>In performing their duties and functions, MCSTs are required to collect individuals' personal data for several purposes. This is why, under the PDPA, they are also mandated to appoint a DPO.<br /><a href="https://www.privacy.com.sg/resources/pdpa-compliance-for-mcst/">Read more.</a></p>
Don't have an account? Sign Up
