Data Protection and Data Governance Track
This programme is part of the Industry Practice Master
ABOUT
DATA PROTECTION AND DATA GOVERNANCE TRACK
This track focuses on developing expertise in data privacy, protection regulations, and major privacy frameworks and legislation. Learners gain the capability to conduct data privacy audits, design data security incident management plans, and implement privacy governance frameworks. This specialisation equips professionals with the skills needed to address the growing importance of data privacy and protection in organisations.
Course Schedule: 23 & 24 Jan 2025
Participants will be introduced to the fundamentals of blockchain, cryptocurrencies and smart contracts. They will also gain insights into the advantages and limitations of blockchain technology and appropriate use cases. They will also learn to combine both legal and smart agreements in one cohesive process using techniques applied in the field, in aim to offer their clients the best of both worlds.
Course Schedule: 10 & 11 Feb 2025
Participants will gain a conceptual overview and insights into the technical know-how to be brought in to support the human element in the transition to a robot-filled working environment. Participants will also understand the implication of RPA to operations and the associated organisational impacts on people.
Course Schedule: 14 & 15 Jan 2025
Participants will gain insights to the concepts of the “Metaverse” and “Web 3.0” and provide a framework for understanding how the law might evolve to deal with the challenges posed by these new technological frontiers. They will also learn how to deal with Web 3.0 and its relationship to the Metaverse.
Course Schedule: 27 & 28 Feb 2025
Participants will be introduced to four fundamental ingredients that contribute to a culture conducive to innovation. This course includes hands-on activities for participants to practice newly learned skills and discuss practical considerations. The course also discusses the innovation culture framework which consists of leadership, environments, systems & processes, passion & grit.
Course Schedule: 13 & 14 Mar 2025
Participants will gain an understanding on what is the Internet of Things (IoT) and how it works. Participants will also learn how IoT devices interact with users. Additionally, participants will delve into the constraints and opportunities of wireless and mobile networks for IoT.
Course Schedule: 20 & 21 Mar 2025
Participants will develop an understanding of the foundations of Artificial intelligence (AI) and machine learning (ML), before developing a capability to deploy "Intelligent" and "Cognitive" tools within Process and Service Design contexts. Participants will also understand the governance challenges of "AI-Assisted" process, product, and service design.
Participants will learn to craft Data Protection Policies and manage compliance with PDPA using an online Data Protection Management System. The course emphasises hands-on, practical learning tailored to participants' organisational compliance needs. It includes assignments and activities, guiding participants to understand and implement compliance effectively. The curriculum prioritises information security, providing participants with their own Compliance Manual, Audit, and essential tools for ensuring compliance.
Please click here for course schedule.
Participants will be able to establish a solid foundation for regional operational governance of a Data Protection Management Programme (DPMP). They'll learn how to develop, measure, and enhance the DPMP, aligning it with the organisation’s privacy and data protection strategy. The module emphasises understanding the Privacy Programme Operational Life Cycle, covering assessment, protection, sustainability, and incident response within an industry-accepted framework.
Please click here for course schedule.
Participants will be able to understand and implement Data Protection by Design (DPbD) and Data Protection Impact Assessments (DPIA). Key principles and implementation methods for DPbD, including Data Protection Trust Mark (DPTM) considerations, will be covered. Through enforcement cases and scenarios, participants will learn to conduct DPIAs using a blended approach, gaining practical skills in assessing data protection risks.
Please click here for course schedule.
Participants will be able to understand and apply the GDPR's data protection principles within an Asian context through the "Advanced Certificate in Data Protection Principles Module 5: General Data Protection Regulation (GDPR) & Application on Asia" at SMU Academy. This module is tailored for professionals such as Data Protection Officers, Compliance Officers, and Business Continuity Managers, focusing on practical GDPR compliance strategies and the nuances of its application in Asia.
Please click here for course schedule.
Participants will gain insights into various global data protection principles and frameworks, enhancing their privacy management skills. The course covers ISO/IEC 29100:2011 standards, focusing on privacy in public clouds, and introduces the Nymity Privacy Management Accountability Framework™, with over 130 activities across 13 categories. Additionally, the Madrid Resolution's global legislative integration and APEC's privacy frameworks are discussed, providing a well-rounded perspective on international data protection standards, applicable across jurisdictions and industries.
Please click here for course schedule.
Participants will be able to understand and implement the principles from Singapore's AI Model Governance Framework and other global AI ethics frameworks, including the OECD AI principles and EU guidelines. They will gain insights into navigating data ethics in our digital age. Additionally, learners will acquire skills to formulate their organisation's code of ethics, establish appropriate systems and processes, and define legal and ethical requirements for data usage, promoting responsible and ethical data management practices.
Please click here for course schedule.
Participants will be able to grasp the significance and principles of effective records management, as highlighted by the ASEAN Digital Masterplan 2025's emphasis on digitalisation for post-COVID-19 recovery. This module will teach them how to navigate the digital and regulatory shifts in data and records management, ensuring ASEAN's resilience and strength. They will learn to create a governance framework and safeguard the authenticity, reliability, integrity, and usability of records, underlining the role of good records management in demonstrating accountability in governance.
Please click here for course schedule.
Participants will be able to understand and implement data governance principles based on the ISO/IEC 38505 standard and the ASEAN Data Management Framework. This module emphasises the importance of data in driving business recovery and decisions in the post-COVID-19 era. Learners will gain the skills to set up a data governance framework aligned with their business strategy, enhancing their organisation's data management and governance capabilities.
Please click here for course schedule.
Participants will learn to manage third-party vendor relationships, emphasising due diligence, risk management, and data protection in contracts. This module equips them with the skills to safeguard privacy and ensure compliance with data protection regulations in a connected business world.
Please click here for course schedule.
Participants will learn data protection risk frameworks and how to audit for data protection. This module provides the skills to analyse and mitigate data protection risks, ensuring effective compliance and risk management strategies are in place.
Please click here for course schedule.
Participants will gain a core understanding of GRC processes and capabilities, and the skills to integrate governance, performance management, risk management, internal control, and compliance activities. It gives assurance that the Compliance Professional has core knowledge, skills and understanding of managing and advising on risk, internal controls, key compliance matters and functions compliance, and how these must be integrated for effective and appropriate governance.
Please click here for course schedule.
Participants will gain expertise in setting up a compliance management system compliant with ISO 37301 at SMU Academy. This module, intended for compliance, risk, and audit professionals, focuses on creating, implementing, and refining a compliance framework. It enhances understanding of ISO 37301 standards and compliance function establishment, targeting individuals eager to bolster trust and accountability in digital and regulatory domains through adept compliance management.
Please click here for course schedule.
Participants will gain an understanding of how to establish and implement a jurisdiction-neutral Privacy Information Management System (PIMS) using ISO 27701. They will also learn the application of PIMS as part of the data protection management programme and as an audit framework.
Please click here for course schedule.
Participants will be able to create Information Security Policy, manage compliance using the online Data Protection Management System via a hands-on and practical based approach to secure your organisation and respond to incidents. Participants will also understand the relationship between information and security: the concept, the value, the importance and the reliability of information.
Please click here for course schedule.
Participants will gain an understanding of the evolution of data protection principles and laws globally over the years as well as how social concerns over how government and private organisation handle personal data and the emergence of technological innovations. Understanding what drives data privacy, the "why" of privacy as well as the emerging role of the DPO, allows participants to adopt a proactive approach to data protection risks and compliance.
Please click here for course schedule.
Participants will learn how to reduce impact to their organisation and stakeholders in the event of a data breach. Participants will also explore the major issues and challenges, how to manage perceptions and reputations, manage stakeholder communication and understand the hallmarks of a well-handled crisis.
Please click here for course schedule.
Participants will explore the impact of data governance in today’s businesses, company objectives and stakeholders. Participants will also learn to identify and map out key stakeholder relationships, needs and interests, as well as coordinate with stakeholders in maintaining trust and assurance.
Please click here for course schedule.
Participants will delve into the elements of governance, risk, and compliance for participants to understand and apply in their workplaces. Participants will also learn how to improve standards of risk and compliance through innovative approaches and enhance processes to comply with increasing regulations.
Please click here for course schedule.
Participants will learn how to identify potential cyber threats to an organisation and their impact on business operations. Participants will also explore framework for building organisational resilience with an effective response that safeguards the interests of its key stakeholders, reputation, brand and value-creating activities.
Please click here for course schedule.
Participants will uncover the mobile ecosystem and data protection concepts in the mobile landscape. They will also develop a good understanding of the processing risks and potential areas of data and privacy breaches in mobile apps from an information life-cycle and monetisation perspective. Additionally, participants will also how to demonstrate accountability for data security and management by applying data protection management and compliance programme.
Please click here for course schedule.
Participants will gain an in-depth understanding of Singapore, Hong Kong and India’s data protection and privacy laws and regulations and how to apply them. Participants will also learn the legal requirements and mechanisms for handling and transferring data across these jurisdictions.
Please click here for course schedule.
Participants will gain an in-depth understanding of Philippines and Malaysia’s data protection and privacy laws and regulations and how to apply them. Participants will also learn the legal requirements and mechanisms for handling and transferring data across these jurisdictions.
Please click here for course schedule.
Participants will gain an in-depth understanding of Indonesia, Thailand and rest of the world’s data protection and privacy laws and regulations and how to apply them. Participants will also learn the legal requirements and mechanisms for handling and transferring data across these jurisdictions.
Please click here for course schedule.
Participants will gain an in-depth understanding of Taiwan and China’s data protection and privacy laws and regulations and how to apply them. Participants will also learn the legal requirements and mechanisms for handling and transferring data across these jurisdictions.
Please click here for course schedule.
| Components | Contact Hours Equivalent (CHE) / [No. of modules] | |
|---|---|---|
Skills-based Modules (Classes are held from 9am to 6pm) | Programme Core | 90 CHE [6 modules] |
| Track Core | 150 CHE [10 modules] | |
| Track Electives | 90 CHE [6 modules] | |
| Programme Partner |  | |
Industry Certification (30 CHE)
OR
Personalised Learning Module (30 CHE)
Learners can personalise their learning through two options: ‘Design Your Own Course’ or pursuing industry-recognised credentials. This approach not only allows them to address their distinct learning needs, interests, and aspirations but also supports the development of Critical Core Skills of Adaptability, Learning Agility, and Self-Management, alongside industry-specific technical skills and competencies.
SMU-XL (60 CHE)
Learners will work on a project that engages them in solving a real-world problem for their employer or industry consultancy. They will be able to demonstrate their knowledge and skills by creating a solution prototype for project sponsors, developing content knowledge and Critical Core Skills like critical thinking, collaboration, creativity, & decision-making. Work-based learning offers adult learners valuable work-related experiences, applying academic and technical skills while enhancing employability.
þ Integrated SMU-Employer Partnership þ Education & Career Guidance by Career Development Coach
ADMISSION REQUIREMENTS
Admission requirements
- A Bachelor’s degree with at least 5 years of relevant work experience; or
- A Diploma from a local polytechnic with at least 10 years of relevant work experience
Validity of stackable modules
- Up to 4 years. Requests for extension beyond the validity period of 4 years is subject to the review and discretion of the Academic Director, Lifelong Learning.
In general, learners will be encouraged to complete the Industry Practice Master within 3 years.
PROGRAMME FEES
Programme Component | Singapore Citizen < 40years old; Permanent Resident; LTVP+ | Singapore Citizen ≥ 40years old | International Participant (Non-funded) |
|---|---|---|---|
| Application Fee1 | $109.00 | $109.00 | $109.00 |
| Registration Fee2 | $654.00 | $654.00 | $763.00 |
| Programme Core (6 modules) | $3,956.70 | $1,514.293 | $13,189.00 |
| Track Core (10 modules) | $7,194.00 | $2,753.263 | $23,980.00 |
| Track Electives (6 modules) | $3,924.00 - $5,101.20 | $1,501.78 - $1,952.313 | $13,080.00 - $17,004.00 |
| Personalised Learning | $3,270.00 | $3,270.00 | $3,270.00 |
| SMU-XL | $6,540.00 | $6,540.00 | $6,540.00 |
| Examination fees (Programme Core and Track Core) | $2,180.00 | $2,180.00 | $2,180.00 |
| Total | $27,827.70 - $29,004.90 | $18,522.33 - $18,972.86 | $63,111.00 - $67,035.00 |
Application & registrations fees are non-refundable & non-transferable
1Paid upon application for the programme
2Paid upon acceptance of the offer to the programme
3SkillsFuture Level-Up Programme for Mid-Career Individuals (NEW). A SkillsFuture Credit (Mid-Career) top-up of $4,000 will be provided to Singaporeans aged 40 years and above to further offset out-of-pocket course fees for this programme
* The above fees are inclusive of GST. Goods and Services Tax (GST) is a tax collected on behalf of the Singapore Government and will be charged at the prevailing rate.
* The above fees vary according to the learner's profile and their selected track electives.
ONLINE APPLICATION & KEY DATES
| Application Stages | Start Date |
|---|---|
| Online Application | Registration Opens on 2 Sep 2024 |
| Interview | Oct 2024 Onwards |
| Term Commences | Jan 2025 |
