Personal Data Protection Act (PDPA) 2012: Primary legislation governing the collection, use, disclosure and care of personal data in Singapore. Essential for MSP agreements involving data handling.
Computer Misuse and Cybersecurity Act: Legislation addressing cybercrime and unauthorized access to computer systems. Critical for defining security obligations in MSP agreements.
Electronic Transactions Act: Provides legal foundation for electronic transactions and digital signatures, relevant for service delivery and documentation.
Cybersecurity Act 2018: Framework for protection of Critical Information Infrastructure and cybersecurity services regulation in Singapore.
Technology Risk Management Guidelines: MAS guidelines for managing technology risks, particularly important if services involve financial sector clients.
Outsourcing Guidelines: Regulatory requirements for outsourcing arrangements, especially relevant for financial institutions.
Cloud Service Provider Security Guidelines: Security standards and best practices for cloud service providers operating in Singapore.
Contract Law: Common law principles governing contract formation, execution, and enforcement in Singapore.
Competition Act: Legislation promoting fair competition and preventing anti-competitive practices in service agreements.
Consumer Protection (Fair Trading) Act: Protects consumers against unfair practices, relevant if MSP services are provided to individual consumers.
Multi-Level Marketing and Pyramid Selling (Prohibition) Act: Relevant if MSP service distribution involves partner networks or reseller arrangements.
Industry-Specific Regulations: Sector-specific compliance requirements varying by industry (healthcare, banking, etc.).
Critical Information Infrastructure Requirements: Special requirements for MSPs serving critical infrastructure sectors under the Cybersecurity Act.
Cross Border Privacy Rules (CBPR): Standards for cross-border data transfers and privacy protection in the Asia-Pacific region.
ISO/IEC 20000: International standard for IT Service Management, providing framework for service quality and delivery.
ISO 27001: Information Security Management standard, essential for defining security controls and requirements in MSP agreements.
