Singapore: Cybersecurity (Providers of Essential Service Responsible for Cybersecurity of Third-Party-Owned Critical Information Infrastructure) Regulations 2026 (Regulation No. S 490)

Progress

Current status
in force
13 Jul 2026 in force
06 Jul 2026 adopted

Scope

Implementers
Singapore
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
infrastructure provider: internet and telecom services
other service provider
infrastructure provider: cloud computing, storage and databases
infrastructure provider: network hardware and equipment
infrastructure provider: other
Government Branch
executive
Government Body
central government
Implementation Level
national

Timeline of events

13 Jul 2026
in force

Cybersecurity (Providers of Essential Service Responsible for Cybersecurity of Third-Party-Owned Critical Information Infrastructure) Regulations enter into force

On 13 July 2026, the Cybersecurity (Providers of Essential Service Responsible for Cybersecurity of Third‑Party‑Owned Critical Information Infrastructure) Regulations enter into force. The Regulations apply to designated providers of essential servi…

Event type order
Action type implementation
Government branch executive
Government body central government
06 Jul 2026
adopted

Permanent Secretary of Cybersecurity adopted Cybersecurity (Providers of Essential Service Responsible for Cybersecurity of Third-Party-Owned Critical Information Infrastructure) Regulations

On 6 July 2026, the Permanent Secretary (Cybersecurity) at the Prime Minister's Office adopted the Cybersecurity (Providers of Essential Service Responsible for Cybersecurity of Third‑Party‑Owned Critical Information Infrastructure) Regulations unde…

Event type order
Action type adoption
Government branch executive
Government body central government