TÜV Rheinland Blog - Insights from Asia and Africa

All about Thailand’s Personal Data Privacy Protection (PDPA) Act

Posted by TUV Rheinland on Oct 2, 2019 4:03:36 PM
TUV Rheinland

DSCF2405

TÜV Rheinland Thailand launched the Personnel Certification for Personal Data Privacy Protection Act (PDPA) Forum on Monday, 30 September 2019 to promote the Training and Certification Program of Data Protection Officers (DPO) (TÜV) and Data Privacy Protection Auditors (TÜV). This is to be aligned with Thailand’s Personal Data Privacy Protection Act, which was effective as of 27 May 2019 and sees a one year transition period till 28 May 2020.

With this transition period, we hope our clients in the government and private sectors; e.g. government and recruitment agencies, representatives from enterprises, banks, hotels, hospitals, institutes, consultants, and even those who handle personal data, understand that they are obligated to law.


Be compliant.
Be accountable. Be ethical.


If you missed this forum, don’t worry -- we are planning an upcoming Training and Certification Program of Data Protection Officers (DPO) (TÜV) at the end of this year and one for Data Privacy Protection Auditors (TÜV) in the middle of next year. Stay tuned on our social media pages (LinkedIn, Twitter) and subscribe to Insights.tuv.com to get the latest updates.

About Thailand’s Law

This Act contains certain provisions in relation to the restriction of rights and freedom of a person, which section 26, in conjunction with section 32, section 33 and section 37 of the Constitution of the Kingdom of Thailand so permit by virtue of the law.

The rationale and necessity to restrict the rights and freedom of a person in accordance with this Act are to efficiently protect personal data and put in place effective remedial measures for data subjects whose rights to the protection of personal data are violated. The enactment of this Act is consistent with the criteria prescribed under section 26 of the Constitution of the Kingdom of Thailand.

The rationale and necessity to restrict the rights and freedom of a person in accordance with this Act are to efficiently protect personal data and put in place effective remedial measures for data subjects whose rights to the protection of personal data are violated. The enactment of this Act is consistent with the criteria prescribed under section 26 of the Constitution of the Kingdom of Thailand.

Why appoint DPO?

Apart from complying with the legal obligation, having a DPO will do your organization a lot of good. In this information age, where personal data serve as building blocks of any organization, assigning a focal person to ensure the protection of your personal data collection and processing is a must. A DPO increases your chance to remain competitive in the dynamic global landscape of data protection. At the same time, it improves your customer service and enhances your responsiveness to growing public awareness and regard for personal data protection.

Keen to know more about our Training & Certification Program? Speak to one of our experts today!

Contact us now

Topics: Personnel Certification