Personal Data Protection Act 2012 (opens in a new tab)
pdpc.gov.sg (opens in a new tab)
Governs the collection, use, and disclosure of personal data in Singapore.
Data Bureau (Singapore) will never ask you to transfer money or disclose banking log-in details over a phone call.
Call the 24/7 ScamShield Helpline at 1799 if you are unsure if a contact is legitimate.
Resources
The following legislation, regulations, and frameworks are relevant to Data Bureau (Singapore)'s institutional mandate and operational context.
pdpc.gov.sg (opens in a new tab)
Governs the collection, use, and disclosure of personal data in Singapore.
sso.agc.gov.sg (opens in a new tab)
Governs business incorporation and corporate obligations.
mha.gov.sg (opens in a new tab)
Establishes legal framework for scam prevention and enforcement.
smartnation.gov.sg (opens in a new tab)
Sets Singapore's strategic direction for responsible AI adoption.
mas.gov.sg (opens in a new tab)
Guidance for technology risk governance in financial institutions.
acra.gov.sg (opens in a new tab)
Governs business registration and corporate filings in Singapore.
imda.gov.sg (opens in a new tab)
Certification framework for data protection practices.
Data Bureau (Singapore) operates within and in accordance with Singapore's established regulatory framework. The institution is subject to the Personal Data Protection Act in its handling of data, the Companies Act in its corporate obligations, and all applicable commercial law. Data Bureau does not carry regulatory authority over the entities it certifies; its certificates are independent attestations, not regulatory licences or approvals.
Last reviewed: April 2026