Accreditations
Certified. Secure. Trusted.
Payment Services Act (PSA) Compliance
The Payment Services Act 2019 is Singapore’s regulatory framework that governs payment providers, fund transfers and related financial operations. Compliance with the PSA demonstrates that our services meet the Monetary Authority of Singapore’s (MAS) requirements for governance, technology risk management and consumer protection.
Discover why it matters:
- Ensures payroll payments and fund transfers, both domestic and cross-border, are secure, compliant, and transparently managed
- Builds client trust through adherence to MAS governance and risk management standards
- Reinforces confidence that salary disbursements are handled safely and reliably
ABS OSPAR
(Outsourced Service Provider’s Audit Report)
The ABS OSPAR attestation is based on the Association of Banks in Singapore’s (ABS) Guidelines on Control Objectives and Procedures for Outsourced Service Providers. It is an independent audit framework for organisations that provide outsourced services to financial institutions. Holding this certification validates that our internal controls, governance practices and security measures meet the stringent requirements of Singapore’s financial industry.
Discover why it matters:
- Independent audit assures clients of our compliance with banking-sector outsourcing standards
- Reduces third-party risk for financial institutions partnering with us
- Provides confidence that our systems, processes and controls meet industry-level expectations
SSAE 18
(Service Organisation Controls Reporting Standard)
SSAE 18 is an internationally recognised service organisation reporting standard issued by the American Institute of Certified Public Accountants (AICPA). It requires independent auditors to assess and verify the design and effectiveness of a provider’s internal controls over key processes and data handling. This attestation offers clients assurance that our operations and reporting accuracy adhere to the highest international standards.
Discover why it matters:
- Provides independent assurance of the integrity and reliability of our service operations
- Reduces audit and compliance concerns for clients outsourcing to us
- Recognised globally across industries as a mark of operational excellence and trust
ISAE 3402
(Assurance Reports on Controls at a Service Organisation)
ISAE 3402 is an internationally recognised assurance standard issued by the International Auditing and Assurance Standards Board (IAASB). It provides independent assurance over the design and operating effectiveness of a service organisation’s internal controls relevant to clients’ financial reporting.
ISAE 3402 is aligned in intent with SSAE 18, providing comparable assurance under an international auditing framework.
Discover why it matters:
- Provides independent, internationally recognised assurance over our internal control environment
- Supports multinational clients whose auditors rely on internationally recognised assurance standards
- Reduces audit effort and compliance risk for organisations relying on our outsourced services
Cyber Trust Mark (Singapore)
The Cyber Trust Mark is a national cybersecurity certification developed by the Cyber Security Agency of Singapore (CSA). It recognises organisations with mature cybersecurity practices that go beyond basic hygiene requirements. The certification evaluates governance, operational technology management, cloud and AI security measures, and overall cyber resilience, reflecting a proactive and advanced approach to safeguarding data.
Discover why it matters:
- Demonstrates commitment to robust, enterprise-level cybersecurity
- Provides assurance that client data and systems are well-protected
- Strengthens trust and credibility with regulators and business partners
ISO/IEC 27001
(Information Security Management System)
ISO/IEC 27001 is the international benchmark for establishing and maintaining an Information Security Management System (ISMS). It provides a systematic framework for managing sensitive company and client information, ensuring confidentiality, integrity, and availability through risk-based controls and continuous improvement.
Discover why it matters:
- Confirms the implementation of structured, globally recognised security processes
- Minimises risks of data breaches, unauthorised access and service disruption
- Demonstrates a proactive culture of information-security management
ISO/IEC 27701
(Privacy Information Management System)
An extension of ISO/IEC 27001, ISO/IEC 27701 focuses on the management of personal data and privacy risks. It integrates data-protection controls into information-security systems to help organisations align with global privacy principles and laws such as Singapore’s Personal Data Protection Act (PDPA).
Discover why it matters:
- Reinforces responsible handling of personal and employee data
- Supports compliance with data-protection regulations in Singapore and beyond
- Builds client trust through accountable and transparent privacy practices
Data Protection Trustmark
(DPTM)
The DPTM is a national certification issued by the Infocomm Media Development Authority (IMDA), developed in conjunction with the Personal Data Protection Commission (PDPC). It recognises organisations with robust data-protection policies that align with Singapore’s PDPA and international best practices. Certification is based on an independent assessment of governance, data protection and the full lifecycle of personal data, including collection, use, retention and disposal.
Discover why it matters:
- Provides third-party validation of our data-protection framework
- Strengthens confidence that client and employee data are handled responsibly
- Reflects our continued commitment to privacy accountability and transparent governance