Legal Templates
Data Collection Notice

Data Collection Notice Template for Singapore

Create a bespoke document in minutes, or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your Data Collection Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

Data Collection Notice

"I need a Data Collection Notice for my Singapore-based e-commerce startup that collects customer data for personalized shopping recommeNDAtions and marketing purposes, with specific provisions for cross-border data transfers to our US-based analytics provider."

Celebrated by
Collaborations with
Investors

What is a Data Collection Notice?

The Data Collection Notice is a crucial compliance document required under Singapore's Personal Data Protection Act 2012. It serves as a transparent communication tool between organizations and individuals whose data is being collected. Organizations must provide this notice before or at the time of collecting personal data, detailing the scope of collection, intended uses, security measures, and individual rights. The notice helps organizations meet their legal obligations while building trust with data subjects by demonstrating commitment to data protection principles.

What sections should be included in a Data Collection Notice?

1. Introduction: Organization's identity and contact details of the data controller

2. Types of Personal Data: Comprehensive list and description of personal data being collected

3. Purposes of Collection: Detailed explanation of how and why personal data is collected, used and disclosed

4. Legal Basis and Consent: Statement on legal grounds for data collection and how consent is obtained and managed

5. Data Protection Measures: Overview of security measures implemented to protect personal data

6. Retention Period: Information about how long personal data will be retained

7. Individual Rights: Explanation of rights to access, correct, and withdraw consent for personal data

What sections are optional to include in a Data Collection Notice?

1. International Transfers: Details of overseas transfers of personal data and safeguards in place

2. Cookies and Tracking: Information about website cookies, tracking technologies and how they are used

3. Marketing Communications: How personal data is used for marketing purposes and opt-out procedures

What schedules should be included in a Data Collection Notice?

1. Schedule 1 - Categories of Personal Data: Detailed inventory of all personal data categories collected and processed

2. Schedule 2 - Third Party Recipients: List of third parties with whom personal data is shared and purposes of sharing

3. Schedule 3 - Technical and Organizational Measures: Detailed description of security protocols and data protection measures

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Personal Data
Collection
Processing
Consent
Data Subject
Data Controller
Data Protection Officer
Sensitive Personal Data
Third Party
Data Protection Notice
Purpose
Disclosure
Transfer
Retention Period
Legitimate Interests
Authorized Personnel
Processing System
Security Measures
Cross-border Transfer
Withdrawal of Consent
Data Protection Laws
PDPA
Direct Marketing
Cookies
Anonymization
Data Breach
Access Request
Correction Request
Notification
Reasonable Security Arrangements
Clauses
Purpose of Collection
Types of Personal Data
Consent
Collection Methods
Use and Disclosure
Data Security
Data Retention
Data Access and Correction
International Transfer
Withdrawal of Consent
Cookies and Tracking
Marketing Communications
Data Protection Officer Contact
Third Party Sharing
Children's Privacy
Updates to Notice
Complaint Handling
Data Breach Notification
Rights of Data Subjects
Accountability
Legal Basis for Processing
Storage Location
Security Measures
Record Keeping
Anonymization and Pseudonymization
Industries

PDPA 2012: Singapore's Personal Data Protection Act 2012 - Primary legislation governing data protection, setting out nine main obligations for handling personal data

PDP Regulations 2021: SecoNDAry legislation providing detailed requirements for implementing PDPA obligations

PDPC Advisory Guidelines: Guidelines on Key Concepts in the PDPA providing practical guidance on interpreting the PDPA

Private Sector Guidelines: PDPC's Guidelines specifically focused on personal data protection requirements for private sector organizations

Notification Obligation: Legal requirement to inform individuals of the purpose for collecting, using, and disclosing their personal data, including overseas transfers

Consent Obligation: Requirement to obtain valid consent before collecting, using, or disclosing personal data, with applicable exceptions

Purpose Limitation: Obligation to only collect, use or disclose personal data for reasonable purposes, with all intended purposes specified

Access and Correction Rights: Requirement to inform individuals of their rights to access and correct their personal data

Protection Obligation: Requirement to implement and outline security measures to protect personal data

Retention Limitation: Obligation to specify duration of data retention and ensure data is not kept longer than necessary

Transfer Limitation: Requirements for overseas data transfers, ensuring comparable protection standards in recipient countries

Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

Privacy Information Notice

A Singapore-compliant notice detailing an organization's personal data handling practices under the PDPA.

find out more

Layered Privacy Notice

A Singapore-compliant Layered Privacy Notice providing tiered information about personal data collection and processing practices under PDPA requirements.

find out more

Data Privacy Notice

A maNDAtory document under Singapore's PDPA that explains how an organization handles personal data.

find out more

Customer Privacy Notice

A legal document required under Singapore's PDPA that explains how an organization handles customer personal data.

find out more

Short Privacy Notice

A concise privacy statement compliant with Singapore's PDPA, explaining key aspects of personal data handling.

find out more

Website Cookies Notice

A legal document required under Singapore's PDPA that discloses website cookie usage and user rights regarding tracking technologies.

find out more

Employee Data Privacy Notice

A maNDAtory document under Singapore's PDPA that outlines how an organization handles employee personal data and ensures compliance with data protection obligations.

find out more

Data Processor Privacy Notice

A Singapore-compliant privacy notice outlining how an organization processes personal data as a data processor under PDPA requirements.

find out more

Staff Privacy Notice

A Singapore-compliant privacy notice informing employees about the collection and processing of their personal data under PDPA requirements.

find out more

General Privacy Notice

A privacy notice compliant with Singapore's PDPA that outlines how an organization handles personal data.

find out more

Data Protection Policy And Privacy Notice

A policy document outlining personal data handling practices in compliance with Singapore's PDPA.

find out more

Personal Data Notice

A Singapore PDPA-compliant notice informing individuals how their personal data is collected, used, and protected.

find out more

Privacy Notice Statement

A Singapore-compliant Privacy Notice Statement outlining an organization's personal data handling practices under PDPA requirements.

find out more

Online Privacy Notice

A legal document outlining personal data handling practices under Singapore's PDPA requirements.

find out more

External Privacy Notice

A Singapore-compliant privacy notice outlining an organization's personal data handling practices under PDPA requirements.

find out more

Data Collection Notice

A Singapore-compliant notice informing individuals how their personal data will be collected and used under PDPA requirements.

find out more

Global Privacy Notice

A Singapore PDPA-compliant global privacy notice outlining organization-wide personal data handling practices.

find out more

Applicant Privacy Notice

A Singapore PDPA-compliant privacy notice informing job applicants about the handling of their personal data during recruitment.

find out more

Website Privacy Notice

A legal document outlining website data collection and usage practices, compliant with Singapore's PDPA.

find out more

Data Processing Notice

A Singapore-compliant notice detailing how an organization handles personal data under PDPA requirements.

find out more

Privacy Policy Notice

A legal document required under Singapore law that explains how an organization handles personal data in compliance with PDPA.

find out more

Data Protection Notice

A maNDAtory document under Singapore's PDPA that explains how an organization handles personal data and protects individual privacy rights.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.