Data Protection Trust Mark

The Data Protection Trustmark (DPTM) is Singapore’s official certification framework that recognizes organizations with robust and accountable data protection practices. It serves as a mark of trust for consumers and business partners, demonstrating an organization’s commitment to safeguarding personal data and complying with the Personal Data Protection Act (PDPA).

DPTM was originally launched by Singapore’s Infocomm Media Development Authority (IMDA) and Personal Data Protection Commission (PDPC) as a voluntary, enterprise-wide certification to promote responsible data governance, the DPTM has since evolved, the DPTM has since evolved. In July 2025, it was formally elevated into the Singapore Standard SS 714:2025, marking a significant advancement in Singapore’s data protection framework and aligning the certification with internationally recognized standards.





UPDATES SS 714:2025 certification

This change will introduce the following enhancements to benefit organisations: 

1. Clearer Language 

The updated standard maintains the four core principles of the DPTM while providing clarity on organisational responsibilities in key areas including third-party management, data breach handling, overseas data transfers and use of legal exceptions. 

This will reduce ambiguity and help organisations to understand and implement the certification requirements. 

2. Streamlined Certification Process 

Organisations will now have a single point of contact throughout their journey from application to certification, working directly with their assessment bodies.

This will streamline communications, simplify the assessment process, and lead to a more efficient certification process. 

3. Oversight by National Accreditation Body
 
Assessment bodies will now be overseen by the Singapore Accreditation Council (SAC), ensuring certification is conducted professionally and meets globally-recognised standards, which will strengthen the credibility and recognition of the standard. 

4. Strengthened Compliance

Certified organisations will undergo annual surveillance audits to reinforce trust in their organisation’s data protection practices and demonstrate their continued commitment to effective data protection.