EY attains two national trust marks in cyber and data protection

EY member firms in Singapore have received the Data Protection Trustmark (DPTM) and the Cyber Trust Mark. Both certifications are valid for three years from April 2026.

Liew Nam Soon, Singapore Managing Partner, Ernst & Young Solutions LLP, also EY Asia East Deputy Regional Managing Partner and Asean Managing Partner, says:
“In today’s data-driven economy, organizations have a responsibility to continually strengthen their data protection and cyber practices, as Singapore seeks to reinforce its position as a trusted global business and data hub. Data protection and cyber security cannot be afterthought – it should be a key part of business resilience.”

DPTM certification

The DPTM is a voluntary enterprise-wide certification for organizations by the Infocomm Media Development Authority to demonstrate accountable data protection practices. Specifically, the DPTM certification was conferred on the following six EY entities:

• Ernst & Young Solutions LLP
• Ernst & Young LLP
• EY Corporate Services Pte Ltd
• Ernst & Young Advisory Pte Ltd
• EY Corporate Advisors Pte Ltd
• Ernst & Young Corporate Finance Pte Ltd

The EY entities underwent third-party audit and validation of their data protection practices, which helps to strengthen the EY organization’s data governance, safeguards and protection standards.

Nam Soon adds:
“Trust is the foundation of our business and we are proud to be DPTM-certified, demonstrating the rigor of our data governance and commitment to high standards of data protection. It affirms our investments and continual efforts in embedding data protection and security in the way we operate and serve our clients and builds confidence with stakeholders in an increasingly digital-first world. Beyond compliance, responsible data stewardship is key to growth, innovation and resilience. The certification process has helped to raise enterprise-wide awareness on the importance of data protection and firmly anchors it as part of our culture”

Cyber Trust Mark certification

Additionally, Ernst & Young Advisory Pte. Ltd. received the Cyber Trust Mark as a Cyber Trust Advocate. 

The Cyber Trust Mark is a national cybersecurity certification program by the Cyber Security Agency of Singapore, designed to help organizations demonstrate a high level of cybersecurity resilience and governance. The Cyber Trust Mark (Advocate) is the highest tier conferred on large organizations, or organizations with leading digital maturity level, or those operating in or are providers to regulated sectors.

As a licensed cybersecurity service provider in Singapore, the certification provides independent assurance that EY has implemented robust cybersecurity controls across governance, risk management, technology and operations, demonstrating the organization’s commitment to high standards in cybersecurity.

On achieving the highest tier of the certification, Nam Soon says:
“Achieving the Cyber Trust Mark as a Cyber Trust Advocate is a result of the collective efforts of our Singapore and globally managed services teams. This certification is an independent validation of EY’s cybersecurity posture against the highest standard. It demonstrates our differentiated strength in working with clients on sensitive or regulated projects, providing greater confidence in our ability to deliver large-scale and complex engagements. It reflects our secure operating environment with clear accountability and consistent security practices, supporting higher quality work and enabling teams to operate confidently in trust-critical and regulated contexts.”

-ends-

Notes to editors

About EY

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.

Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.

EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions.

Fueled by sector insights, a globally connected, multidisciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

All in to shape the future with confidence.

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. Information about how EY collects and uses personal data and a description of the rights individuals have under data protection legislation are available via ey.com/privacy. EY member firms do not practice law where prohibited by local laws. For more information about our organization, please visit ey.com.

This news release has been issued by Ernst & Young Solutions LLP, a member of the global EY organization.