Personal Data Protection Act (PDPA)
PDPA 2012 with 2020 amendments; PDPC is supervisory authority; notification + breach regime aligned with GDPR principles.
Personal Data Protection Commission (PDPC)
East Asia & Pacific · GDP rank #26
Singapore
SG · SGD @ 0.7815/USD
Tab 06
Fraud & security
Headline fraud totals and typology splits, the rollout of EMV chip, tokenisation, 3DS and biometrics, and the controlling data-protection and payments statutes.
Shared Responsibility Framework (SRF) effective December 2024 — banks, telcos and consumers share liability for phishing/APP losses. MAS reported S$48m in Year-1 SRF recoveries.
Reported payment fraud · 2024
670M SGD▲ +8% vs prior year
Card-not-present share
74%
3DS adoption on CNP
98%
Trend lines
What's growing fastest
Where a full typology breakdown is not published, the authorities typically disclose year-on-year growth in specific scam categories. Authorised push-payment (APP) scams and account-takeover fraud are the canonical “wallet era” concerns in most markets.
- Card-not-present share74%
- APP scam growth YoY+22%
- Account takeover growth YoY+14%
Controlling regulation
Payment Services Act
Consolidated licensing framework for e-money, digital payment tokens, account issuance, cross-border transfers; April 2024 amendment expanded DPT services scope.
Monetary Authority of Singapore (MAS)