This notice applies to all merchant banks in Singapore. It sets out requirements for a high level of reliability, availability and recoverability of critical IT systems and for banks to implement IT controls to protect customer information from unauthorised access or disclosure.