Singapore

Criminalizes unauthorized access to computer systems, hacking, and cyber attacks in Singapore. Updated in 2023 to cover denial-of-service attacks and dealing in stolen credentials. Applies to offenses committed within Singapore or targeting systems located there.

Establishes a regulatory framework for the oversight and protection of critical information infrastructure in Singapore. CII owners must comply with codes of practice, report cybersecurity incidents, and undergo regular audits. Applies to owners and operators of designated critical information infrastructure.

Singapore's comprehensive data protection law governing the collection, use, and disclosure of personal data by private organizations. It includes consent requirements, mandatory data breach notification, and maintains a national Do Not Call Registry. Applies to all private organizations processing personal data in Singapore.