• L.L.B (Hons), National University of Singapore
  • Admitted to the Singapore Bar in May 2007
  • Cybersecurity for Business Leaders, University of Oxford

Anastasia is a Director with the Corporate & Finance Department in Drew & Napier.

Her key areas of practice are Technology, Media, and Telecommunications (TMT), Data Protection, Privacy and Cybersecurity, as well as Artificial Intelligence (AI) and Digital Trust.

Prior to joining the firm, Anastasia was Deputy Chief Counsel to Singapore’s Personal Data Protection Commission (PDPC) and Info-communications Media Development Authority (IMDA) for over 9 years. She was lead counsel for PDPC’s matters, IMDA’s procurement and intellectual property portfolios, as well as IMDA’s Data Administration Group.

Anastasia has advised on a broad range of regulatory, compliance and commercial matters, both in her role as in-house counsel as well as in private practice. Her extensive experience includes advising on the administration, application, and enforcement of Singapore’s Personal Data Protection Act 2012 (PDPA). A significant national project would be the amendments to the PDPA, which came into effect on 1 February 2021.

She has been recognised as a Senior Accredited Specialist in Data & Digital Economy Law by the Singapore Academy of Law.

The Data Protection & Privacy and TMT & Corporate matters that Anastasia has advised on include:

  • ​Advised on the development, administration, enforcement, and review of the PDPA, including the amendments to the PDPA and related regulations that came into effect on 1 February 2021.
  • Advised on the advisory guidelines issued by PDPC, which set out PDPC’s interpretation of the PDPA.
  • ​Advised on regulatory compliance issues as well as investigations in respect of data breaches.
  • ​Advised on the commercial use of a large language model (chat platform), including regulatory compliance and mitigation of potential legal risks.
  • Advised on an AI Governance Addendum to a vendor contract.

The Legal 500 Asia Pacific
Data Protection and Cyber Security 2024 – Recommended Individual

"Anastasia Su-Anne Chen’s subject matter expertise truly shines through when dealing with novel problems."

  • Global Data Review (GDR) Insight – Handbook – Data Privacy and Cybersecurity 2024
  • Lexology GTDT – Data Protection & Privacy 2024
  • Global Legal Insights – AI, Machine Learning & Big Data Laws, and Regulations 2023 (Singapore)
  • Lexology GTDT: Cybersecurity 2023
  • The Legal 500 Comparative Guides: Artificial Intelligence 2023
  • The Legal 500: Data Protection & Cybersecurity 2023 (Singapore)
  • International Comparative Legal Guides: Data Protection 2023
  • Year-in-Review: Personal Data Protection Commission’s Decisions in 2022 [2022] PDP Digest 185
  • For Art’s Sake: The “Artistic or Literary Purposes” exception in the Personal Data Protection Act 2012 [2017] PDP Digest 277
  • Senior Accredited Specialist (Data and Digital Economy Law), Singapore Academy of Law
  • Member, Cybersecurity and Data Protection Committee, Law Society of Singapore
  • Member, Information Technology Committee, Law Society of Singapore
  • Member, Law Society of Singapore
  • Member, Singapore Academy of Law