Any establishment/vendor/individuals who wishes to import telecommunications/ radio communications/ satellite equipment (controlled goods) to Brunei Darussalam for resale must obtain:
- Dealer License; Dealer License Application must be made through the Authority for Info-communications Technology Industry of Brunei (AITI) Online Services using a registered company account
- Dealer Type approval of telecommunication, radiocommunication and satellite equipment; a certificate issued by AITI to make sure that any telecommunications and radio-communications equipment meets the national safety standards and technical requirement in Brunei Darussalam;
- Dealer Import permits: this permit is issued to Dealer Licence holders (application only made using a registered company account) who have also obtained Dealer Type Approval of the equipment.
Personal Import Permit along with Personal Type Approval certificate is to be obtained for individual importation (own use) of equipment.

Section 23 of the Broadcasting Act requires that a person shall not import, offer for sale, sell or have in his possession with a view to sale, any broadcasting equipment except under and in accordance with a licence.

According to Section 3 of the Broadcasting Act, computer online services that are provided by Internet Content Providers and Internet Service Providers are subject to a class license.

The Internet Code of Practice requires sites with religious or political content or sites that discuss issues of this nature to register with the Broadcasting Authority. Failure to register is punishable by up to three years of imprisonment and a fine of up to USD 200,000. According to the Internet Code of Practice bloggers are providers of a 'programme' and fall under the same class licensing scheme, and are therefore required to ensure that their websites conform with the code of practice.

It is reported that various laws can be used to restrict the access of online content. These include the Censorship of Films and Public Entertainments Act 1963, the Undesirable Publications Act 1982, the Penal Code 1952 and the Sedition Act 1983. Moreover when a material is contrary to the Code of Practice, the Broadcasting Authority can require intermediaries to remove it or prohibit its broadcasting. As a results, the reports state that government restricts access to the internet and censors online content.

According to the Registration Guidelines for Mobile Prepaid Subscriber Identity Module (SIM) Cards, all mobile prepaid SIM card owner/holders are mandated to register or re-register with their respective mobile service provider. Verification requirements include identity cards for Brunei citizens, identity card, passport and employment pass for foreign workers, and passport for tourists.

The Code of Practice requires all Internet Service Providers (ISPs) and Internet Content Providers (ICPs) licensed under the Broadcasting (Class Licence) Notification 2001 to use their best efforts to ensure that nothing is made available on the Internet which is against the public interest or national harmony, for e.g., content which incites disaffection against the Sultan or the Government, or which offends good taste or decency. When a material is contrary to the Code of Practice, the Broadcasting Authority can require ISPs and ICPs to remove it or prohibit its broadcasting. In addition, it is reported that the government restricts access to the internet, censors online content, and has the capability to monitor private online communications. The government monitors private email and internet chat-room exchanges believed to be propagating religious extremism or otherwise subversive views, including those of religious minorities, or material on topics deemed immoral.

A basic legal framework on intermediary liability for copyright infringement is absent in Brunei's law and jurisprudence. Despite Section 10 of the Electronic Transactions Act protects the network service providers from liability with respect to third-party material in the form of electronic records in certain circumstances, this exemption does not affect the obligation of such network service provider founded on a contract, under any licensing/regulatory regime, or under any written law or court order. Furthermore, Brunei is a member of the Comprehensive and Progressive Agreement for Trans-Pacific Partnership (CPTPP) and it will be required to implement the relevant provisions on intermediary liability.

A basic legal framework on intermediary liability beyond copyright infringement is absent in Brunei's law and jurisprudence. Despite Section 10 of the Electronic Transactions Act protects the network service providers from liability with respect to third-party material in the form of electronic records in certain circumstances, this exemption does not affect the obligation of such network service provider founded on a contract, under any licensing/regulatory regime, or under any written law or court order. Furthermore, Brunei is a member of the Comprehensive and Progressive Agreement for Trans-Pacific Partnership (CPTPP) and it will be required to implement the relevant provisions on intermediary liability.

The country does not have a comprehensive regime in place for all personal data, but it has sectoral regulation. The Electronic Transactions Act (Section 48) and Banking Order (Section 58 and third schedule) along with Islamic Banking Order (Section 58 and third schedule) provide for user information confidentiality under financial and banking sectors respectively. These legislations criminalise the disclosure of user information. The third schedule of the Banking Order and Islamic Banking Order provides for the conditions under which data can be disclosed by the banks. However, the Data Protection Policy applies to Agencies (government Ministries and Departments, including educational institutions and statutory bodies) and protects any data which is processed or controlled by them, regardless of whether the data is processed within or outside Brunei Darussalam (Clause 4.5).

Brunei has joined an agreement with binding commitments to open transfers of data across borders: the Comprehensive and Progressive Agreement for Trans-Pacific Partnership (CPTPP, Art.14.11).

The Data Protection Policy (DPP) 2014 applies only to public agencies, including government Ministries and Departments, educational institutions and statutory bodies. The Law (Section 18) provides that the agencies are only permitted to transfer personal data to a party outside of Brunei if:
- There is a reasonable belief that the recipient is subject to a law, binding scheme or contract, which upholds principles for fair data handling substantially similar to the DPP;
- The individual has provided consent;
- It is necessary for contract performance or pre-contractual obligations; and
- Reasonable steps have been taken to ensure the data will not be used, held or disclosed by the recipient inconsistent to the DPP.
This policy applies to all data including personal data already in existence whether or not by electronic means (Section 4.4).

Brunei has a telecommunications authority: The Authority for Info-communications Technology Industry (AiTi). However, it is reported that the decision-making process of this entity is not fully independent from the government.

According to Art. 3 of the Licensing and Regulatory Framework, a provider of telecommunication services is required to obtain a license from the Authority for Info-communications Technology Industry (AITI), which can be provided only to a corporate entity incorporated in Brunei Darussalam. In addition, pursuant to Art. 4 of the law, any deployment of telecommunication infrastructure or system, network, facilities, and equipment (other than Customer Premise Equipment or 'CPE') inside and outside of its own premises to enable telecommunication services to be offered to third-party customers or end users (i.e. public, businesses, etc.) requires the Telecommunication Industry (InTi) Licence.
Further, pursuant the Art. 5, any leases of telecommunication facilities from an InTi Licensee for the provision of telecommunication services or reselling the services of the InTi Licensee to third-party customers or end-users (i.e. public, businesses, etc.) requires the Service Provider for The Telecommunication Industry (SeTi) Licence. According to Art. 5.5, SeTI reserves the right to invite applicants.
Section 5 of the Telecommunications Order, read with Section 5.2 of the Licensing and Regulatory Framework, provides for the requirement of a license issued by the AITI to provide Internet Access Service, Private Network Service and use Internet access system, leased circuits or VPN for the same.

Brunei has appended the World Trade Organization (WTO) Telecom Reference Paper to its schedule of commitments.