PDPA 2012: Singapore's Personal Data Protection Act 2012 - Primary legislation governing the collection, use, disclosure, and care of personal data
Personal Data Protection Regulations 2021: Detailed regulations covering specific requirements for data protection, overseas data transfer, and data breach notification requirements
Spam Control Act: Legislation relevant if the contact form data will be used for marketing communications
PDPC Advisory Guidelines: Official guidelines covering collection, use & disclosure of personal data, key PDPA concepts, consent obligations, and notification requirements
GDPR Considerations: European Union's General Data Protection Regulation - relevant if collecting data from EU residents
APEC CBPR: APEC Cross-Border Privacy Rules - applicable for data transfers across APEC member economies
Purpose Limitation: Legal requirement to clearly specify and document the purpose of data collection
Consent Mechanisms: Legal requirement to implement and document appropriate consent mechanisms for data collection
Data Security Requirements: Legal obligations regarding data storage and security measures
Data Subject Rights: Legal requirements to honor and facilitate data subject rights including access, correction, and portability
Cross-border Transfer Requirements: Legal obligations regarding the transfer of personal data across national borders
Data Retention Rules: Legal requirements regarding the duration of data storage and documentation of retention periods
DPO Requirements: Legal requirement to provide contact information for data protection queries and appoint a Data Protection Officer
