Mobile smartphone usage is now reaching saturation point in the developed world. Increasingly mobile phones are becoming (or have become) indispensable business tools as well as powerful communication devices. However, with great power comes great responsibility – something that seems to have escaped U.S. President Donald Trump who is still using a legacy Android device. In this article we examine just why mobile devices present massive challenges when it comes to data security – and why business users need to be vigilant.

Read more


The Role of the Chief Privacy Officer in 2020

by Simon McDougall, Managing Director, London at Promontory

This article is based on a presentation made during the Data Privacy Asia 2016 conference held on 9-11 November 2016 by Simon McDougall, a Managing Director in the London office of Promontory Financial Group, an IBM Company. Promontory is a consulting firm specialising in consulting around various types of regulation. In this article, Simon examines the evolving role of the Chief Privacy Officer (‘CPO’) and how the evolution of the role may develop in different directions.

Simon leads Promontory’s global privacy and data protection practice. He is a Chartered Accountant and until 2010, led Deloitte’s UK Privacy & Data Protection and Payments Regulation teams. He specialises in privacy and data protection, information governance and regulatory investigations. Simon serves on the IAPP Board of Directors and served on the IAPP European Advisory Board.

Read more


Where's Your Data? Privacy Challenges for IT Leaders

by Rebecca Herold, President and CEO at SIMBUS360 and The Privacy Professor

This article is based on a presentation made during the Data Privacy Asia 2016 conference held on 9-11 November 2016 by well-known and widely respected information security, privacy and compliance expert Rebecca Herold. Rebecca addresses how IT leaders are increasingly challenged by the myriad of physical, legal, political and logical considerations for data residency.

Read more


The decision in Privacy Commissioner v Telstra has important implications for metadata regulation in Australia, and for judicial oversight of the Australian Privacy Commissioner’s functions.  This article examines the decision and discusses the key takeaways for businesses that are based in, or doing business with, Australia.

Read more

What's New?

Data privacy Asia 2016

Missed Rebecca Herold's workshop at the conference? You can still get the videos and slides.

PIAs and the ISACA Privacy Principles: Effective Tools to Identify and Mitigate Security and Privacy Risks

To help you architect and implement the best security and privacy practices for your organization, Rebecca Herold, lead developer and author of ISACA's Privacy Principles and Program Management Guide, conducted a one-day hands-on workshop at Data Privacy Asia 2016 conference in Singapore.


Twitter Feed

Conference Video Highlights

Malaysia: Personal Data Protection 3 Years On

To Breach, or Not to Breach: An Update on Data Breach in Hong Kong

Philippines: Implementing Rules and Regulations of the Philippine Data Privacy Act 

Country Updates


The Australian Senate passed the Privacy Amendment (Notifiable Data Breaches) Bill 2016 making data breach notification mandatory. The new rules will take effect within 12 months.


The Indian government will share biometric data of its 1.3 billion citizens with private companies to spur innovation and accelerate its effort to create a centralized digital commerce system.


The National Privacy Commission investigates the Commission on Elections (COMELEC) for a stolen computer containing data from the Voter Registration System (VRS) and Voter Search applications, and the National List of Registered Voters (NLRV), containing the personal data of 55 million voters.

New Zealand

New Zealand's privacy commissioner recommends penalties of up to NZ$1 million (US$718,000) for a "serious" data breach to keep pace with more onerous penalties adopted by the EU and Australia.