25 February 2021

On 22 January 2021, the following initiatives were approved at the first Association of Southeast Asian Nations (“ASEAN”) Digital Ministers’ Meeting, which was attended by 10 ASEAN Digital Ministers, including Singapore’s Minister for Communications and Information and Minister-in-charge of Cybersecurity S Iswaran:

  • ASEAN Data Management Framework (“DMF”): Developed by the ASEAN Working Group on Digital Data Governance, which is chaired by Singapore, the DMF is designed to provide voluntary and non-binding guidance based on best practices in the area of data management for businesses within ASEAN Member States (“AMS”). The DMF is intended to be adapted to varying business needs for adoption and tailoring by the businesses to their own systems of managing data, and includes guidelines for data governance structures and appropriate data protection safeguards depending on the underlying purpose of the dataset of interest throughout its lifecycle.
  • ASEAN Model Contractual Clauses for Cross Border Data Flows (“MCCs”): Also developed by the ASEAN Working Group on Digital Data Governance, the MCCs are contractual terms and conditions that may be included in the binding legal agreements between businesses when transferring personal data to each other across borders. 
  • ASEAN CERT Information Exchange Mechanism: This is a proposal to enhance ASEAN cybersecurity cooperation through the formalising of existing AMS National CERT-level exchanges with the establishment of an ASEAN CERT (computer emergency response team) information exchange mechanism as a core component of the future ASEAN CERT. The mechanism will support national CERTs through the exchange of information and best practices, and coordinate CERT capacity building programmes in the region.
  • ASEAN Digital Masterplan 2025 (“ADM2025”): The new ADM2025 will help accelerate inclusive digital transformation so that ASEAN will emerge stronger and more resilient from the Covid-19 crisis.

Reference materials

The following materials are available on the Personal Data Protection Commission (“PDPC”) website www.pdpc.gov.sg, Ministry of Communications and Information (“MCI”) website www.mci.gov.sg and ASEAN website asean.org.