Back to Our Lawyers

Anastasia Su-Anne Chen

Director, Corporate & Finance

Download CV

Practice Areas

Qualifications

  • Senior Accredited Specialist (Data & Digital Economy Law), Singapore Academy of Law
  • L.L.B (Hons), National University of Singapore
  • Admitted to the Singapore Bar in May 2007
  • Cybersecurity for Business Leaders, University of Oxford
Overview

Anastasia is a Director with the Corporate & Finance Department in Drew & Napier.

Her key areas of practice are Technology, Media, and Telecommunications (TMT), Data Protection, Privacy and Cybersecurity, as well as Artificial Intelligence (AI) and Digital Trust.

Prior to joining the firm, Anastasia was Deputy Chief Counsel to Singapore’s Personal Data Protection Commission (PDPC) and Info-communications Media Development Authority (IMDA) for over 9 years. She was lead counsel for PDPC’s matters, IMDA’s procurement and intellectual property portfolios, as well as IMDA’s Data Administration Group.

Anastasia has advised on a broad range of regulatory, compliance and commercial matters, both in her role as in-house counsel as well as in private practice. Her extensive experience includes advising on the administration, application, and enforcement of Singapore’s Personal Data Protection Act 2012 (PDPA). A significant national project would be the amendments to the PDPA, which came into effect on 1 February 2021.

She has been recognised as a Senior Accredited Specialist in Data & Digital Economy Law by the Singapore Academy of Law.

The Data Protection & Privacy and TMT & Corporate matters that Anastasia has advised on include:

  • Development of data protection policies, data retention schedules, privacy notices.
  • Outsourcing of data processing, including reviewing of data processing addendums and contractual clauses for compliance with the PDPA and MAS Outsourcing Guidelines. 
  • Cross-border transfers of data, including data transfer agreements.
  • ​Launch of social media applications, including advising on content regulation, intellectual property and data-related issues.
  • Playbook for a Generative AI company to mitigate legal risks, including risks arising from web-crawling, unlawful outputs, provision of services to regulated entities and individual consumers, as well as hosting user-generated content.  

The Legal 500 Asia Pacific
Data Protection and Cyber Security 2025 – Recommended Individual for 2 consecutive years

"Anastasia Su-Anne Chen brings with her deep industry and regulatory experience. Her attention to detail and ability to anticipate potential legal issues is admirable and gives me confidence."
"Anastasia Su-Anne Chen’s subject matter expertise truly shines through when dealing with novel problems."

Lexology Index (previously Who’s Who Legal)
Global Guide: Data 2025 – Data Privacy & Protection – Recommended Lawyer
Global Guide: Data 2025 – Data Security – Recommended Lawyer
National Guide: Southeast Asia – Data 2024 – Recommended Individual

  • Global Data Review (GDR) Insight – Handbook – Data Privacy and Cybersecurity 2024
  • Lexology GTDT – Data Protection & Privacy 2024
  • Global Legal Insights – AI, Machine Learning & Big Data Laws, and Regulations 2024 (Singapore)
  • Lexology GTDT: Cybersecurity 2024
  • The Legal 500 Comparative Guides: Artificial Intelligence 2024
  • The Legal 500: Data Protection & Cybersecurity 2024 (Singapore)
  • The Legal 500 Comparative Guides: Artificial Intelligence 2023
  • International Comparative Legal Guides: Data Protection 2023
  • Year-in-Review: Personal Data Protection Commission’s Decisions in 2022 [2022] PDP Digest 185
  • For Art’s Sake: The “Artistic or Literary Purposes” exception in the Personal Data Protection Act 2012 [2017] PDP Digest 277
  • Senior Accredited Specialist (Data and Digital Economy Law), Singapore Academy of Law
  • Member, Cybersecurity and Data Protection Committee, Law Society of Singapore
  • Member, Information Technology Committee, Law Society of Singapore
  • Member, Law Society of Singapore
  • Member, Singapore Academy of Law