Data Protection Executive

The Data Protection Executive assists in executing data governance policies and procedures. He/She is responsible for handling queries, complaints and disputes on the organization’s management of personal data. He collaborates with business and project teams to support business objectives and strategies and align them with the organizations’s data protection guidelines and policies. He manages risks and data breach incidents. He is also responsible for driving awareness of the Personal Data Protection Act requirements in the organization. He works in a team setting and is knowledgeable of data governance, compliance and data protection policies and frameworks. He is also well versed in data breach mitigation techniques and procedures. He should be familiar with the requirements of the Personal Data Protection Act 2012. As one who is responsible for handling queries, complaints and disputes on the organization’s management of personal data, the Data Protection Executive is confident in making critical decisions and providing quick and impactful resolutions.

Skills and Competencies

Technical Skills & Competencies

Audit and Compliance

Proficiency Level

"Conduct audits, analyze results and implement changes to address identified gaps"

Business Negotiation

Proficiency Level

"Apply negotiation skills and techniques and document negotiations. "

Business Risk Management

Proficiency Level

"Identify risks and their business impact and propose measures to manage risks"

Crisis Management

Proficiency Level

"Execute crisis management plans "

Cyber and Data Breach Incident Management

Proficiency Level

"Provide real-time incident and status reporting, and identify affected systems and user groups "

Generic Skills & Competencies

Leadership

Proficiency Level

Lead by example at team level. Encourage and guide others to adopt a point of view, make changes or take action. Provide a team environment that facilitates relationships building, teamwork and the development of others.

Intermediate

Transdisciplinary Thinking

Proficiency Level

Co-relate material from diverse knowledge bases to guide decisions and policy making. Participate in reflective and trans-disciplinary communities within and outside the organization.

Intermediate

Digital Literacy

Proficiency Level

Use available software features to create and edit documents, customize templates and reports and evaluate online information.

Intermediate

Creative Thinking

Proficiency Level

Connect or combine ideas or information from unrelated fields or applications to generate multiple ideas to bring about a specific outcome.

Intermediate

Virtual Collaboration

Proficiency Level

Participate and contribute in a virtual team. Set up appropriate online collaborative tools and supporting equipment.

Basic

Critical Work Functions and Key Tasks

Ensure organisation’s compliance to Personal Data Protection Act (PDPA)

• Monitor and ensure the organisation’s compliance with the PDPA
• Ensure data requests are logged in accordance with organisational procedures
• Update and maintain a register of data owners for the organisation’s data sets
• Carry out data flow reviews and create data flow maps for the organisation’s data life cycle and data processing
activities
• Maintain data flow maps for processes across the organisation’s data lifecycle and data processing activities
• Maintain data protection policies and procedures

Manage data breaches

• Report all suspected and/or confirmed data breaches in accordance with the data breach management plan
• Prepare notifications to affected individuals, senior management and regulatory authorities in the event of data
breaches
• Document data breach incidents and post-breach responses in accordance with the data breach response plan
• Support the data incident response and data breach notification procedures
• Assist in the conduct of investigations relating to data protection breaches

Drive awareness of PDPA requirements in the organisation

• Promote continuous training to maintain the organisation’s awareness of PDPA requirements
• Keep abreast of PDPA requirements and amendments to regulations and guidelines
• Provide advice to staff on the organisation’s data protection procedures and policies
• Participate in simulation exercises to test the data breach response plans
• Manage programmes to raise awareness of and training to deliver compliance to foster a data protection culture
• Promote and create awareness on due diligence policies and frameworks across teams in the organisations

Handle queries, complaints and disputes on the organisation’s management of personal data

• Respond to queries that may arise in the organisation’s collection, use and/or disclosure of personal data
• Maintain logs of queries, complaints and disputes relating to the organisation’s collection, use and/or disclosure
of personal data
• Escalate complaints and disputes relating to the organisation’s collection, use and/or disclosure of personal data

Data Protection Executive

Skills and Competencies

Technical Skills & Competencies

Generic Skills & Competencies

Critical Work Functions and Key Tasks

More Information

Related Occupations

In this Path