Personal Data Protection Act (PDPA): Primary legislation governing data protection in Singapore, including consent obligations, purpose limitation, data transfer restrictions, and data security requirements for CRM systems
Computer Misuse Act: Legislation covering IT security requirements, system protection measures, and data breach prevention protocols that must be addressed in the RFP
Electronic Transactions Act: Governs electronic contracts, signatures, digital documentation requirements, and electronic records retention policies
Competition Act: Ensures fair competition requirements, prevents anti-competitive practices, and maintains vendor selection transparency in the RFP process
Government Procurement Act and Guidelines: Applicable for government-related RFPs, covering procurement transparency requirements and fair bidding practices
Cybersecurity Act: Addresses critical information infrastructure protection, cybersecurity requirements, and incident reporting obligations for CRM systems
Contract Law (Common Law): Fundamental principles governing contract formation, terms and conditions, and legal enforceability under Singapore's common law system
Industry-Specific Regulations: Additional regulatory requirements specific to the industry sector where the CRM system will be implemented
Cloud Services Requirements: Specific requirements and compliance standards for cloud-based CRM solutions, including data hosting and security measures
Cross-Border Data Transfer Requirements: Regulations governing the international transfer of data, particularly relevant for CRM systems with global reach
