Data security you can verify.

TNGAP has applied for ISO/IEC 27001 certification. The application is currently in progress ('Application in progress' status). We will update this page when certification is confirmed. Our current practices are aligned with ISO/IEC 27001 controls.

TNGAP is governed by Singapore's Personal Data Protection Act (PDPA) 2012, as a Singapore-registered entity. Our parent company (TheNewGate Inc., Japan) is additionally governed by Japan's PIPA. TNGAP coordinates data handling to satisfy both frameworks.

TNGAP's services are provided through a Singapore-registered legal entity. GDPR applies when TNGAP processes personal data of EU/EEA residents. In practice, TNGAP's client base is primarily Japanese and Southeast Asian — EU exposure is minimal and handled under PDPA-equivalent safeguards.

TNGAP processes personal data of Chinese-speaking clients (including those in Singapore) in accordance with Singapore's PDPA. Data is not transferred to China. PIPL (China's Personal Information Protection Law) does not directly apply, but TNGAP maintains equivalent protection standards.

Contact TNGAP's data protection point of contact at sg@thenewgate.co.jp. Include 'Data Protection' in the subject line. TNGAP responds to PDPA-related inquiries within 5 business days.