Thailand Personal Data Protection Act: Framework for the 1-Year Transitional Period​

Thailand’s Personal Data Protection Act came into effect on May 27, 2019.

The law has finally been implemented in Thailand to protect Thai citizen’s personal and sensitive personal data. As quoted by Baker McKenzie Thailand, “this PDPA will change the landscape of personal data protection in Thailand. While the Thai Constitution upholds the right to privacy, Thailand did not have any consolidated law governing data protection in general before”. A one year transition period has been granted to companies and government agencies handling personal data to comply with key provisions of the Act.

Thailand has been rapidly responding to digital transformation and the new Personal Data Protection Act will change how data is collected, stored, disseminated and protected. Although the PDPA has drawn various concepts from the EU General Data Protection Regulation (GDPR), the Thai Government has adapted several concepts to the national perspective.

Read Baker McKenzie Thailand’s blog here on the suggested framework for what to know and what to do during the transitional period.

Related News / Blog