Data Protection Obligations of the PDPA

    Home /Resources /Corporate Compliance Requirement/Data Protection Obligations of the PDPA


    Guide to Setup Bangladesh Business














































    Industry Guide


























































    Full Compliance Of Data Protection Obligations With PDPA

    Data Protection Obligations Of PDPA: Data security and privacy are extremely important, and 3E Accounting takes data protection very seriously. Given how much can be done online these days, it’s unsurprising that we’d be obliged to share personal information with organizations and businesses in some cases. When we buy anything online or join up for a service, for example, we will be asked to give personal information. As a result, it’s critical to keep your data safe at all times, and we can assist you with complying with the PDPA and safeguarding your information.

    Data Protection Obligations of the PDPA

    Learn How Our Data Protection Services Works Best For You

    We rigorously adhere to the responsibilities imposed by the Data Protection Obligations Of PDPA Personal Data Protection Act 2012 (“PDPA”), as well as other applicable common law and sector-specific rules. ABB shall process personal data obtained or submitted to us on the basis of the aforementioned documents and legislation.


    1. Retention of Data


    Except as otherwise required by law, your personal data will only be kept for the purposes for which it was obtained or for which you have given your consent.


    2. Overseas Information Transfer


    It is possible that your personal data will be transmitted outside of Bangladesh. In that instance, We shall ensure that the transmitted personal data is protected to the same level of protection as it is in the United States, as required by the PDPA.


    3. Third Parties Websites


    We do not accept any responsibility or liability for the policies of third-party websites that may be linked to and from our website from time to time. We strongly advise you to review these policies before providing any personal information to these websites.

    The Copyright Act, 2000 In Our Data Protection Obligations Of PDPA

    Intellectual property rights in literary, theatrical, musical, artistic, and cinematographic works are protected under the Copyright Act of 2000 (‘the Copyright Act). Computer databases are included in the definition of “literary work.” As a result, copying a computer database, or copying and distributing a database, constitutes a copyright infringement for which civil and criminal remedies are available. The Copyright Act, on the other hand, makes it difficult to distinguish between data protection and database protection. Data protection is concerned with protecting individuals’ personal information, whereas database protection is concerned with safeguarding the innovation and investment made.

    Our 3 Special Scope of Application

    1. Personal Scope


    Any natural person or institution, company, partnership business, farm, or other organization, in the case of a digital device, its controller, and any entity constituted by law or artificial legal entity are all covered by data privacy law.

    2. Territorial scope


    The Data Protection Obligations Of PDPA Digital Security Act has the following extraterritorial provisions:


    If a person commits an offense or contravention punishable under these provisions outside of Bangladesh, this Act will apply as if the offense or contravention occurred in Bangladesh.


    If a person violates these rules while using a computer, computer system, or computer network in Bangladesh, these requirements apply as if the violation occurred fully in Bangladesh. and


    Though a person from Bangladesh commits an offense or contravention under these provisions outside of Bangladesh, the provisions will apply to them as if the full process of the offense or contravention occurred in Bangladesh.

    3. Materials Range


    The Digital Security Act applies to all types of data processing, such as usage, storage, and transmission, as well as any types of data that may be related to key information infrastructure. Furthermore, the phrase ‘identification information’ has been used to expressly cover some forms of personal data.

    4 Best Types Of Data Protection With Data Obligations Of PDPA

    1. Personal Data: 


    There is no explicit definition of personal data. The Digital Security Act, on the other hand, defines “identity information” as “any biological or physical information, or any other information that alone or in combination with other information can uniquely or jointly identify a person (including corporations) or system, whose name, photograph, address, date of birth, mother’s name, father’s name, signature, national identification card, birth, or death.”


    2. Data Controller Data Processor: 


    Bangladeshi law does not define the terms “data controller,” “joint controller,” or “data processor.” Furthermore, there is no distinction between the data controller and data processor concepts. The ‘data user,’ or the person who collects, sells, takes control of, supplies, or uses such data, is referred to as a ‘data collector.’



    3. Data Topic: 


    The data topic has not been specifically defined. In a local context, it refers to whoever owns such data or is tagged with personal information and is regarded as the data owner.



    4. Biometric Data:


    Biometric Data has not been specified explicitly. Certain biometric data, on the other hand, has been included in the above-mentioned definition of “identification information.”

    FAQ For Data Protection Obligations Of PDPA

    What are the new data processing obligations under the PDPA?

    Two additional responsibilities are included in the revised PDPA: the data breach notification obligation and the data portability obligation. Please see the PDPA’s list of Data Protection Obligations for further information.

    How much does your service cost?

    We offer a flat rate on our staff outsourcing services for client comfort. However, the prices can be altered if required. Therefore, contact us for a detailed discussion.

    When will the PDPA enhancement take place?

    Consumers will be allowed to request copies of their personal data to be sent to a new service provider as part of the Data Portability Obligation, which will make switching easier. This provision will take effect as soon as possible.

    Where can I find more information about PDPA enhancement?

    Please see the materials for consumers and businesses for more information on how the PDPA amendments will strengthen consumer protection and provide businesses the confidence to use personal data for innovation. Please see the PDPC announcements page for the most up-to-date information.

    Grow With Our Effective Data Protection Obligations Of PDPA

    Business Setup