On 19 July 2023, the PDPC commenced a public consultation on proposed new Advisory Guidelines on the PDPA for Children’s Personal Data. The public consultation closed on 31 August 2023.
The new guidelines are proposed against the backdrop that children are now spending more time online, and may not fully understand the risks, consequences and implications of their personal data being collected and used.
The proposed guidelines will provide guidance on how the PDPC interprets the PDPA in relation to children’s personal data.
It is proposed for the new guidelines to apply to organisations that offer products or services that are likely to be accessed by children, or are in fact accessed by children, even if the products or services are not targeted at children.
Data intermediaries (also commonly referred to as “processors”) that retain children’s personal data will also be expected to implement additional measures to protect children’s personal data.
The PDPC also sought comments on the following proposals in its consultation paper:
Organisations whose products or services are accessed by children, or are likely to be accessed by children, may need to take additional measures to protect children’s personal data that they handle when the new guidelines are issued.
The PDPC is evaluating comments received during the public consultation exercise, and can be expected to review its proposals before the final guidelines are issued subsequently. As the PDPC’s consultation paper set out the relevant issues for comments at a high level, it remains to be seen what detailed requirements will be included in the actual guidelines. Organisations that handle children’s personal data should continue to monitor this space for further developments.
*Information is accurate up to 27 November 2023
