Data Protection Trustmark Certification
To support businesses in building consumer trust, IMDA has developed the Data Protection Trustmark (DPTM) certification to help businesses verify their conformance to personal data protection standards and best practices. ISOCert is one of the three assessment bodies appointed by IMDA-PDPC for the independent assessment.
Data Protection Trustmark Certification
As part of advancing the digital economy strategy to allow Singapore to stand out as a trusted data hub with a well-developed data ecosystem that supports competition and innovation as well as the cross-border flow of data, the PDPC has developed the Data Protection Trustmark (DPTM) Certification to help organisations verify their conformance to personal data protection standards and best practices.
The key objectives of the certification are:
-
for organisations to demonstrate sound and accountable data protection practices;
-
to enhance and promote consistency in data protection standards across all sectors;
-
to provide a competitive advantage for businesses that are certified; and
-
to boost consumer confidence in organisations’ management of personal data.
The benefits to being DPTM-certified:
-
Provides Assurance to Your Organisation: Third-party certification helps to provide validation of your organisation’s data protection regime. The certification will increase your data governance and protection standards, uncover potential weaknesses and enable your organisation to take steps to mitigate risks.
-
Increases Business Competitiveness: Obtaining DPTM certification demonstrates to your customers that you have robust data protection policies and practices in place to safeguard their personal data. This will help strengthen your reputation, build trust and foster confidence in your business, raising your business competitiveness both locally and overseas.
The DPTM certification is valid for 3 years and organisations will need to apply for re-certification prior to its expiry.
Contact us at 6659 0810 / / 9475 5120 / 9105 4718 for more details. Alternatively, you may email us at or
Step 1: DPTM Application (To IMDA)
Interested organisations can submit their application online to IMDA directly. Only online applications will be accepted. Upon submission of the application, the Applicant Organisation is bound by the Terms of Agreement between the Certification Body (IMDA) and Applicant Organisation in relation to the Data Protection Trustmark scheme. Applicants will be notified within 5 working days on the status of their application. Incomplete submission will delay the processing time.
Step 2: Select Assessment Body
Interested organisations can submit their application online to IMDA directly. Only online applications will be accepted. Upon submission of the application, the Applicant Organisation is bound by the Terms of Agreement between the Certification Body (IMDA) and Applicant Organisation in relations to the Data Protection Trustmark scheme. Applicants will be notified within 5 working days on the status of their application. Incomplete submission will delay the processing time. For further reading and FAQ, please visit IMDA website at
-
Proven track record
-
Assessor with more than 10 years of IT industry experience.
-
Our clients: Caperdiem@ITE, MaNaDr, Mamorou Singapore, Shangri-La Hotels, AIG Insurance, M1, Starhub, New Hope Community Services, iColumn Pte Ltd, Media Partner Associates, P2D Solutions, Alibaba Cloud (Singapore) Pte Ltd, Crimsonlogic, SP Services, HCA Hospice, Vicom, Mighty Glory Corporate Solutions, Union Power, and more.
Funding Support for Singapore Companies
IMDA has partnered with Enterprise Singapore (ESG) to provide funding support to Singapore companies for the DPTM certification (including consultancy services), through the Enterprise Development Grant (EDG).
Businesses who are (1) registered and operating in Singapore, (2) have a minimum of 30% local shareholding, and (3) be in a financially viable position to start and complete the DPTM certification, may apply for the EDG via ESG’s website at www.enterprisesg.gov.sg/financial-assistance/grants/for-local-companies/enterprise-development-grant/apply/pre-application.
Funding Support for Social Service Organisations
IMDA has partnered with the National Council of Social Services (NCSS) to provide funding support to social service organisations (SSO) for their DPTM certification through the NCSS Organisational Development Grant (ODG).
SSOs who are (1) NCSS members, or (2) MSF-funded, can apply for the ODG online via NCSS’ Funds Application System (FAS). For more details on the ODG and access to the FAS, SSOs can visit NCSS’ website at www.ncss.gov.sg/Grants-Search/VCF-ODG-Organisational-Development.
Professional Consultancy Services
Prior to applying for the DPTM certification, an organisation may wish to engage professional consultancy services to prepare them for DPTM certification. The PDPC’s list of Data Protection Service Providers provides a basic directory of the data protection services available in Singapore (www.pdpc.gov.sg/Organisations/Help-for-Organisations/List-of-Data-Protection-Service-Providers).