Personal Data Protection Act 2012 (PDPA): Main framework for data protection in Singapore that governs the collection, use, disclosure, and care of personal data. Includes key requirements for consent, purpose limitation, notification, access, and correction.
Personal Data Protection Regulations 2021: Detailed regulatory requirements covering data protection, transfer restrictions, and mandatory data breach notification requirements in Singapore.
PDPC Advisory Guidelines: Comprehensive guidelines issued by the Personal Data Protection Commission including sector-specific guidelines, key PDPA concepts, and guidance on selected topics such as photography and NRIC numbers.
ASEAN Framework on Personal Data Protection: Regional framework that provides guidelines for data protection across ASEAN member states, relevant for cross-border data transfers within Southeast Asia.
GDPR Compliance Considerations: European Union's General Data Protection Regulation requirements that may need to be considered if the agreement involves EU residents or data transfers to/from the EU.
Cybersecurity Act 2018: Singapore legislation that establishes a framework for the protection of critical information infrastructure and management of cybersecurity threats.
Spam Control Act: Singapore legislation that controls the sending of unsolicited commercial electronic messages and regulates the use of address-harvesting software.
Common Law Principles of Confidentiality: Traditional legal principles governing confidentiality obligations and duties that complement statutory data protection requirements.
