Cybersecurity Act 2018: Singapore's primary legislation for cybersecurity matters, establishing a framework for protection of Critical Information Infrastructure (CII) and creating licensing schemes for cybersecurity service providers
Personal Data Protection Act 2012: Governs the collection, use, and disclosure of personal data by organizations, including data breach notification requirements and data protection standards
Computer Misuse Act: Criminalizes unauthorized access and modification of computer material, providing legal framework for cybercrime prevention
Electronic Transactions Act: Provides legal foundation for electronic transactions and digital signatures, ensuring enforceability of electronic contracts
MAS Technology Risk Management Guidelines: Regulatory guidelines by Monetary Authority of Singapore for financial institutions, specifying requirements for technology risk management and cybersecurity
MAS Notice on Cyber Hygiene: Mandatory requirements for financial institutions to implement essential cybersecurity practices and controls
ISO/IEC 27001: International standard for information security management systems, providing framework for managing sensitive information
CVSS Framework: Common Vulnerability Scoring System - standardized method for rating the severity of security vulnerabilities
NIST Cybersecurity Framework: Voluntary guidance for managing and reducing cybersecurity risk, widely recognized international standard
Singapore Contract Law: Common law principles governing formation and enforcement of contracts in Singapore
Unfair Contract Terms Act: Legislation controlling the use of unfair terms in contracts, particularly relevant for limitation of liability clauses
CII Obligations: Specific requirements and obligations for Critical Information Infrastructure owners under Singapore's Cybersecurity Act
Cross-border Data Transfer Requirements: Regulations governing the transfer of data outside of Singapore, particularly under PDPA
