The 63rd APPA Forum, hosted by the Office of the Privacy Commissioner, New Zealand

The Office of the Privacy Commissioner, New Zealand, hosted the 63rd Asia Pacific Privacy Authorities (APPA) Forum virtually on 11 and 12 June 2025.

The Forum was attended by 14 APPA members from across the Asia-Pacific region. A number of guests and observers were also in attendance from around the globe, including from data protection and privacy authorities.

During the two-day Forum, members shared and discussed a variety of common privacy issues, regulatory experiences, and enforcement challenges.

Throughout the Forum, APPA members emphasised the efforts they are making to anticipate and regulate emerging technologies such as Artificial Intelligence (AI) and biometrics in relation to privacy and data protection.

The highlights of the Forum are summarised below.

Day One

On Day One, the 63rd APPA Forum was opened by Michael Webster, Privacy Commissioner of New Zealand, who welcomed APPA members and gave an overview of the agenda. Following the opening remarks, Lew Chuen Hong, Commissioner of the Personal Data Protection Commission (PDPC) of Singapore, made his opening remarks, sharing perspectives of the data protection and privacy landscape, and how the APPA Forum continues to play a critical role in advancing the APPA Forum’s mission. The opening formalities were concluded with the approval of the 62nd APPA Forum’s meeting minutes.

The formal agenda began with a presentation of the Governance Committee Report from PDPC Singapore as the Chair of the APPA Governance Committee and Secretariat.  APPA members also approved the Terms of References of the Governance Committee, the Technology Working Group and the Communications Working Group.

The Working Groups reported on their activities, which consisted of the Communications Working Group Report delivered by the Personal Data Protection Bureau, Macao Special Administrative Region (SAR), China, and the Technology Working Group Report delivered by the PDPC Singapore. The Technology Working Group’s APPA anonymisation guide has been completed and approved for release at the 63rd APPA Forum.

Members then presented their jurisdiction reports and gave updates on key privacy developments in their jurisdictions. Presenters were asked to outline developments in their jurisdiction from the last six months that may be of interest to the Forum. Some of the topics discussed during the session included:

  • AI and emerging technologies
  • Legislative and enforcement updates
  • Data Minimisation, Protection Frameworks, and Data Protection Networks

This was followed by three presentations and a discussion on the theme of biometrics for retail crime and public safety, made by the:

  • New Zealand Office of the Privacy Commissioner
  • Office of the Australian Information Commissioner
  • Office of the Information and Privacy Commissioner, British Columbia

At the end of day one, the draft Communique was discussed followed by closing remarks.

Day Two

Commissioner Webster opened the day with a short introduction and overview of the agenda.

The first agenda item of Day Two was a panel session with the Technology Working Group on the topic of Privacy Enhancing Technologies, following the finalisation of the APPA anonymisation guide. This was made by members of the Working Group:

  • Personal Data Protection Commission, Singapore
  • Personal Information Protection Commission, Republic of Korea

The Office of the Privacy Commissioner of Canada and the New Zealand Office of Privacy Commissioner then presented on the topic of the tools and regulatory responses used when receiving privacy breach notifications.

APPA members then had four presentations and held a discussion on the theme of privacy law reform and regulation in an age of disruption. These presentations emphasised the need to actively maintain regulatory frameworks in response to technological, economic and political disruptions. These presentations were by the:

  • Office of the Privacy Commissioner for Personal Data, Hong Kong SAR, China
  • Personal Information Protection Commission, Republic of Korea
  • The Personal Information Protection Commission, Japan
  • Office of the Information Commissioner, Queensland

Updates on the following global privacy networks and organisations were provided:

  • G7 Data Protection Authority Roundtable
  • Global Privacy Assembly (GPA)
  • GPA Data Protection and Other Rights and Freedoms Working Group
  • GPA Digital Citizen and Consumer Working Group
  • GPA International Enforcement Working Group
  • Global Cross Border Privacy Rules System
  • Global Privacy Enforcement Network
  • Ibero-American Network of Data Protection

At the end of Day Two, the draft communique was approved for release, followed by closing remarks from Commissioner Webster.

Next meeting

The 64th APPA Forum will be hosted by the Personal Data Protection Bureau, Macao SAR, China.

63rd APPA Forum attendees – members

  • Office of the Australian Information Commissioner, Australia
  • Office of the Information Commissioner, Queensland, Australia
  • Office of the Victorian Information Commissioner, Victoria, Australia
  • Information and Privacy Commission, New South Wales, Australia
  • Office of the Privacy Commissioner, Canada
  • Office of the Information and Privacy Commissioner, British Columbia, Canada
  • Office of the Privacy Commissioner for Personal Data, Hong Kong SAR, China
  • Personal Data Protection Bureau, Macao SAR, China
  • The Personal Information Protection Commission, Japan
  • Korea Personal Information Protection Commission, Korea
  • Office of the Privacy Commissioner, New Zealand
  • National Privacy Commission, Philippines
  • Personal Data Protection Commission, Singapore
  • California Privacy Protection Agency, United States of America

63rd APPA Forum attendees – observers

  • Autoridade Nacional de Proteção de Dados, Brazil
  • Ministry of Post and Telecommunications, Cambodia
  • Office of the Personal Data Protection Committee, Thailand