Personal Data Protection Act (PDPA): Key data protection legislation governing the collection, use, disclosure and care of personal data. Important for API SLAs involving data processing, including data protection obligations, cross-border data transfer requirements, and data breach notification protocols.
Cybersecurity Act 2018: Establishes framework for protection of Critical Information Infrastructure and cybersecurity standards. Relevant for API security requirements, incident reporting, and cybersecurity compliance measures.
Electronic Transactions Act (ETA): Provides legal foundation for electronic transactions, including recognition of electronic records and signatures, contract formation in digital context, and requirements for electronic communications.
Computer Misuse Act: Addresses cybercrime and unauthorized system access. Relevant for security breach provisions and access control requirements in API agreements.
Consumer Protection (Fair Trading) Act: Protects consumer interests and ensures fair trading practices. Applicable if API services are provided to consumers, particularly regarding fair contract terms and practices.
Competition Act: Regulates anti-competitive practices and ensures fair market competition. Relevant for pricing structures and competitive practices in API service provision.
Singapore Contract Law: Common law principles governing contract formation, terms, conditions, breach, and remedies. Forms the fundamental legal basis for the SLA.
MAS Guidelines: Regulatory guidelines from Monetary Authority of Singapore, particularly relevant for financial services APIs, including technology risk management and outsourcing requirements.
