Privacy and Data Security

The DMA does NOT collect any of these data:

  • Student login IDs and passwords

  • Student’s activities and data (e.g. posts, online comments, shopping cart, etc.) when they visit websites and use apps

  • Documents and photos stored in the PLDs

  • PLD location

  • Webcam videos and microphone recordings

Collection of Data

To prevent unauthorised access, DMA Administrators and DMA Vendors will be required to access their accounts using 2-factor authentication or the equivalent to ensure proper accountability for information access and other activities performed. There will be regular account reviews and audits for these accounts.

Storage of Data

  1. All user data collected through the DMA will be stored in secure servers managed by appointed DMA Vendors with stringent access controls and audit trails implemented. The DMA solutions used are cloud-based Software-as-a-Service (SaaS) solutions and are trusted solutions that have been operating for many years. They have also been subjected to regular security review and assessment.


  1. MOE has assessed and concluded that the DMA solutions have sufficient security robustness to ensure data collected are properly stored and protected. MOE will also subject the DMA Vendors to regular audit.