Singapore tech association, SGTech, in pilot for new data trust rating and data protection certification

• Accelerate digital transformation, grounded on trust as strategic differentiator
• Aims to prove such certifications are not beyond reach of small organisations

Singapore tech industry association, SGTech announced that it is one of the pioneering participants in a pilot programme for obtaining dual certification in data protection and data trust. 

One of SGTech's objectives is to accelerate Singapore's digital transformation, grounded on trust as a strategic differentiator. With SMEs constituting 99% of Singapore enterprises, it is crucial that SMEs get on the digitalisation bandwagon and understand the strategic value of demonstrating trust to their stakeholders and customers. At some point in that journey, companies are likely to seek a recognised certification.  

By participating in the pilot, SGTech aims to demonstrate to other small organisations, particularly its members that small size and lean resources are not barriers to obtaining a credible certification. Through the pilot, SGTech intends to contribute by highlighting the areas that can be refined and improved to make the certification journey a smoother experience for small and micro enterprises. 

"The work that we do at SGTech involves handling sensitive personal and company data. We have had our sights on the Data Protection Trust Mark (DPTM) since its launch. We have been fine-tuning our practices and processes to ensure that we are up to the mark and can assure our members and partners that their data is safe in our hands," said SGTech Chairman Wong Wai Meng (pic).  

"Participating in and getting dual certifications through this pilot allows us to demonstrate accountability to our stakeholders. We like that the Credence Data Trust Rating System (Credence DTRS) maturity rating considers aspects beyond compliance with an organisation's obligations under the PDPA – to its implementation, including business needs, risk profile and risk management strategy. At the same time, through the pilot, we want to prove that such certifications are not beyond the reach of small organisations." 

The pilot programme created by members from the Credence Committee provides a digitalised way for organisations to prove the veracity of their internal processes and controls, in order to obtain two certifications – the DPTM and a maturity rating using the Credence DTRS. While the DPTM certifies that an organisation has put in place a data protection regime to comply with the obligations of the PDPA, the Credence DTRS complements the DPTM, extending to implementation details based on an organisation's line of business, corporate governance, risk profile, business needs, and strategy to effectively manage its risks. 

SGTech's announcement comes on the heels of the launch of SGTech's Digital Trust Committee in early September, at an event witnessed by Deputy Prime Minister Heng Swee Keat. The Digital Trust Committee's mission is to drive ground-up initiatives to place Singapore and the region on the global map for digital trust, including establishing internationally recognised standards and practices and creating products and services built on digital trust. 

A Digital Trust Council comprising prominent business leaders from around the world will provide guidance to the Committee. Minister of State for Communications and Information Tan Kiat How is the Patron of the Committee.