PDPA 2012: Personal Data Protection Act - Key Singapore legislation governing the collection, use, disclosure and care of personal data that must be considered in the SLA
Computer Misuse Act: Singapore legislation that deals with cybersecurity offenses and must be considered for security provisions in the SLA
Electronic Transactions Act: Provides legal framework for electronic transactions and must be referenced for digital service delivery aspects
Copyright Act: Protects intellectual property rights and must be considered for content and software licensing provisions
Consumer Protection (Fair Trading) Act: Ensures fair trading practices and consumer rights protection that need to be reflected in service terms
IMDA Guidelines: Info-communications Media Development Authority guidelines that provide regulatory framework for digital services in Singapore
Cybersecurity Act 2018: Framework for cybersecurity requirements and incident reporting that must be incorporated into security provisions
Cloud Outage Response Guidelines: Standards for handling service disruptions and outages that should be incorporated into SLA metrics
SS 584: Singapore Standards for IT Service Management that provide best practices for service delivery metrics
MAS Technology Risk Management Guidelines: Guidelines from Monetary Authority of Singapore for managing technology risks in digital services
ISO/IEC 27001: International standards for information security management that should be referenced in security requirements
GDPR Compliance: EU data protection regulations that must be considered if the mobile application serves European users
Cross-border Data Transfer Regulations: Rules governing international data transfers that must be addressed if data crosses national boundaries
Data Protection Provisions: Specific SLA clauses needed for data handling, privacy protection, and security measures
Service Availability Metrics: Required specifications for uptime guarantees and service availability standards
Incident Response Procedures: Mandatory procedures for handling and reporting service incidents and breaches
Data Backup Requirements: Specifications for data backup frequency, retention, and recovery procedures
Performance Monitoring Standards: Requirements for monitoring and reporting service performance metrics
Maintenance Protocol: Procedures and notifications required for scheduled maintenance windows and updates
