Personal Data Protection Act (PDPA): Singapore's primary data protection legislation requiring mandatory breach notifications within 72 hours, data protection obligations, and specific procedures for handling personal data breaches
Cybersecurity Act 2018: Framework governing cybersecurity in Singapore, including incident reporting requirements for Critical Information Infrastructure (CII), threat handling procedures, and compliance requirements for cybersecurity service providers
Computer Misuse Act: Legislation addressing computer crimes, including requirements for reporting computer systems breaches and legal classifications of various cyber incidents
Business Continuity Planning Guidelines: MAS Guidelines on Business Continuity Management, specifying requirements for business continuity planning and incident response, particularly for financial institutions and regulated entities
Industry-Specific Regulations: Sector-specific requirements including Healthcare Institution regulations, MAS Technology Risk Management Guidelines for finance, and IMDA regulations for telecommunications
Criminal Law (Temporary Provisions) Act: Legislative framework for reporting serious crimes and incidents with national security implications
Evidence Act: Legal requirements governing digital evidence collection and documentation of chain of custody in incident response situations
