One startling fact: after several high‑profile money‑laundering and phishing cases, oversight tightened so sharply that onboarding times and cross‑border transfers now face far more scrutiny than five years ago.
The Monetary Authority of Singapore (MAS) acts as the single supervisor for banks and other financial firms. It uses primary law, subsidiary rules and MAS Notices to protect the financial system and keep the financial industry competitive.
This ultimate guide explains the scope and purpose of the regulatory framework for banks and adjacent services. Expect a long‑form walkthrough written for owners, finance leaders, compliance teams and product managers operating in the city‑state.
We will show how rules affect day‑to‑day outcomes: onboarding timelines, account access, lending paperwork and ongoing monitoring. The guide answers three practical questions: who regulates, what rules apply, and how enforcement works in practice, while noting where global standards shape local practice and the title themes of governance, tech change and financial crime controls.
Key Takeaways
- The guide defines the singapore business banking regulatory framework and who it matters to.
- MAs oversight touches onboarding, cross‑border flows, lending and ongoing monitoring.
- Content focuses on three practical questions: who, what and how enforcement operates.
- It covers banks, other financial institutions and adjacent services such as payments and capital markets.
- Readers will see recurring themes: financial crime controls, governance, outsourcing and technology change.
- MAS Notices, codes and guidelines are essential reading for regulated entities.
Why Singapore’s banking regulation matters for businesses today
Stricter oversight has made compliance a day-to-day concern for firms beyond banks. Companies now face tighter onboarding, more frequent account reviews and deeper checks on beneficial ownership. These changes affect cash flows, treasury operations and supplier payments.
What has changed in recent years
High‑profile money laundering cases and evolving scam typologies forced authorities to raise expectations on aml, monitoring and customer protection. Phishing and digital fraud now trigger quicker, more intrusive enquiries from account providers.
At the same time, rapid fintech growth — from new payment rails to digital payment tokens — has required fresh safeguards. Firms must now meet tighter operational resilience and technology risk requirements when they use novel payment methods.
How stronger rules support the international role
Credible enforcement preserves trust with counterparties, correspondent banks and investors. A well‑regulated sector lowers systemic risk, boosts market confidence and eases cross‑border access to finance.
- Practical value: clearer standards reduce uncertainty for corporates and funders.
- Operational impact: policies, training and escalation pathways become essential controls.
“Robust oversight turns risk into a manageable part of everyday operations.”
Who regulates business banking in Singapore: Monetary Authority of Singapore and beyond
A single public regulator combines central banking duties with firm supervision, setting licence rules, enforcement priorities and policy direction for all financial institutions. This dual role means that licensing decisions, prudential supervision and market conduct oversight come from one authority that also manages monetary stability.
MAS as central bank and sole bank regulator
The monetary authority supervises banks, issues MAS Notices and conducts examinations. It enforces capital, liquidity and conduct requirements and can take enforcement action when firms breach standards.
How global standards influence local rules
International bodies such as the FATF and the Basel Committee shape local expectations on AML/CFT and prudential rules. Aligning with these standards helps maintain correspondent relationships and access to global financial markets.
Domestic industry bodies and codes of practice
Industry groups translate high‑level rules into market practice. The ABS issues codes and guidance for banks to embed in customer processes. The SFEMC promotes the FX Global Code and publishes conduct guidance for wholesale market participants.
- Terminology to note: MAS Notices, Guidelines and codes each carry different practical weight for documentation and procedure.
- Practical point: new onboarding questions or transaction queries often reflect MAS expectations or FATF‑aligned controls.
| Actor | Primary role | Typical output | Why it matters to firms |
|---|---|---|---|
| MAS | Central bank & regulator | Notices, supervision, enforcement | Sets licence rules and conducts inspections |
| FATF / BCBS | International standard‑setters | Recommendations, prudential standards | Drive AML/CFT and capital policies |
| ABS | Industry association | Codes, best practice guides | Helps banks standardise customer practices |
| SFEMC | Market conduct body | FX conduct guides | Promotes fair wholesale market practices |
“When a new compliance question appears, trace it back to MAS expectations or global AML standards.”
Core legislation shaping banks Singapore: the Banking Act and subsidiary regulations
The Banking Act 1970 and its subordinate rules set the core legal duties that shape bank conduct. This statute is the starting point for licensing, prudential standards and the limits on what banks may offer clients.
The Banking Act is encountered indirectly by firms through account terms, signatory rules and product eligibility. Subsidiary regulations — notably the Banking Regulations and the Banking (Corporate Governance) Regulations — turn broad law into daily operational requirements.
Corporate governance and why it matters to customers
Corporate governance rules set board duties, risk appetite limits and escalation paths. These rules affect credit approvals, transaction limits and how quickly a bank will act on a customer request.
MAS guidance as the operational rulebook
MAS Notices, circulars and guidelines are where principles become practice. Banks must embed these documents into procedures, system controls and audit trails.
- External signs of compliance: documentation checks, source‑of‑fund enquiries and periodic reviews.
- Transaction monitoring and alerting reflect controls mandated by notices and guidance.
- Core legislation links to specialised laws such as the SFA, FAA and IA for specific activities.
| Legal source | Role | Practical effect |
|---|---|---|
| Banking Act 1970 | Primary statute | Licensing, prudential duties, enforcement |
| Banking Regulations | Subsidiary rules | Operational requirements for banks and systems |
| Corporate Governance Regulations | Governance standards | Board duties, fit‑and‑proper tests, escalation |
| MAS Notices & Guidelines | Practical guidance | Controls, documentation, monitoring practices |
“Compliance with MAS Notices often appears as additional documentation requests and enhanced transaction monitoring.”
How regulated activities sit alongside banking: SFA, FAA and Insurance Act
Licensed deposit takers often sit at the intersection of classic deposit services and wider financial services. Capital markets services, financial advice and insurance distribution are separately regulated under distinct laws, yet the conduct rules still apply when banks provide those activities.
Capital markets services under the Securities and Futures Act
Capital markets activities cover trading, dealing, and arranging transactions in investment products. Banks may be exempt from a separate licence, but they must follow conduct requirements when offering such products to clients.
Financial advisory conduct under the Financial Advisers Act
When staff recommend investments, suitability checks, disclosures and recordkeeping rules kick in. Policies must show how advice was given and why a product matched a client’s needs.
Insurance distribution considerations under the Insurance Act
Offering investment‑linked policies or arranging cover tied to lending triggers insurance distribution rules. Expect stricter marketing controls, conflict management and clearer documentation for customers.
- When a banking relationship becomes a capital‑markets or advisory issue: hedging, structured products or investment vehicles for surplus cash.
- Practical impact: exemptions do not remove conduct duties — policies, disclosures and suitability checks remain mandatory.
- What firms should expect: more detailed governance, extra documents for audits and tighter sales controls from relationship managers.
MAS supervisory and resolution powers under the MAS Act
Under the MAS Act, supervisors have explicit tools to keep critical payroll, collections and trade finance services running during severe stress.
Recovery and resolution planning means banks must pre‑define steps to stabilise operations. Plans outline options to preserve liquidity, shore up capital and maintain core services to firms and customers.
Early warnings and notification duties
Banks must notify the monetary authority immediately if they are, or may become, insolvent or unable to meet obligations. Timely information helps limit contagion and lets counterparties assess counterparty risk quickly.
Intervention tools and practical effect
MAS can transfer or restructure all or part of a bank, step in to manage it, or appoint a statutory adviser. These measures aim to protect the broader financial system and avoid disorderly failures.
Practical takeaways: diversify account relationships, check deposit protections, and include contingency plans in treasury operations. Monitor public statements from the mas and the authority singapore in stress events to stay ahead of operational disruption.
Financial Services and Markets Act as a sector-wide regulatory approach
FSMA 2022 introduces a sector-wide approach to close gaps that arise when risks span multiple business models and new technologies.
Purpose: FSMA complements entity-based rules by targeting risks that cut across banks, fintech firms and other institutions. It makes standards more consistent across the financial services and financial markets ecosystem.
Digital token oversight and FATF alignment
The act tightens oversight of digital token services to meet FATF expectations. That raises expectations on screening, monitoring and governance for token-related products and counterparties.
COSMIC information sharing and red flags
COSMIC lets participating banks share information on customers showing suspicious patterns. The platform, developed with DBS, OCBC, UOB, Standard Chartered, Citibank and HSBC, flags mule accounts, layering attempts and other laundering signals.
Practical impact: faster identification of risk, swifter de‑risking and more queries on unusual flows. Expect refreshed KYC forms, extra attestations and policy updates from relationship banks.
Phased implementation and what to monitor
Implementation started on 28 April 2023 and will roll out in phases. Monitor MAS announcements for commencement dates and new requirements that affect onboarding, transaction screening and inter‑institution information flows.
FIMA Bill and the tightening of enforcement, inspection and investigative powers
The Financial Institutions (Miscellaneous Amendments) Bill, introduced on 10 January 2024, strengthens how MAS inspects, investigates and takes action across several statutes.
Scope of the amendments
The Bill touches FSMA, PSA, SFA, FAA, IA and the Trust Companies Act. That alignment means issues that span products or services see faster, more coordinated follow-up by supervisors.
Practical outcomes for firms
Enhanced powers translate into tighter evidence expectations and quicker requests for information. Reprimand procedures become clearer and supervisors will demand demonstrable controls in place.
For banks and counterparties, this raises the bar on documentation, attestations and the speed of responses. Expect less tolerance for partial explanations and longer document turnaround times.
What compliance teams and companies should do
- Review and update KYC files, authorised signatory lists and ownership records.
- Ensure policies show how transaction rationales are evidenced and retained.
- Treat questionnaires and attestations as part of the chain of information that links firms to supervisory outcomes.
“Prepare to evidence your practices promptly — paper trails now matter more than ever.”
Payment Services Act and business payment activities: what banks and non-banks must know
The Payment Services Act 2019 consolidates rules for modern payment activities and makes clear who must meet anti‑money‑laundering and operational protections when customer funds move outside classic deposit accounts.
Risks the Act targets
AML/CTF: screening and monitoring apply to transfers, merchant flows and token services to detect illicit money.
Insolvency protection: safeguards require segregation or safeguarding of client monies to limit loss if a provider fails.
Interoperability: rules reduce fragmentation so payments work across platforms and networks.
Cyber risk: resilience and incident reporting aim to limit service outages and fraud.
Licensable services and practical effect
The Act lists account issuance, domestic and cross‑border transfers, merchant acquisition, e‑money issuance, digital payment token services and money‑changing as licensable activities. Corporates should treat PSPs, gateways and DPT providers as they would a custodian of funds.
Bank exemptions and compliance overlap
Banks licensed under the Banking Act are generally exempt from separate PSA licences, but some services remain regulated as if the bank were a licensee. That avoids double regulation while keeping key safeguards in place.
- Confirm a provider’s licence status and read the Payment Services Act 2019.
- Check safeguarding arrangements, incident reporting and dispute resolution clauses.
- Ensure onboarding asks mirror bank‑grade AML and operations checks; monitor transactions post‑onboarding.
For standard terms and procurement advice, review provider contract terms and processor conditions at vendor terms and conditions.
Anti-commingling rules: limits on non-financial businesses and permitted activities
Anti-commingling rules limit the range of non-financial activities a bank may pursue to protect core depositor services. The rule is straightforward: keep commercial ventures separate so client funds and core services are insulated from trading losses or reputational harm.
The policy rationale: separating financial and non-financial operations
Why it matters: separating financial functions from unrelated commerce cuts contagion risk, avoids conflicts of interest and preserves trust in deposit-taking institutions.
Permitted non-banking activities under Part IX
Banking Regulations Part IX lists permitted non-banking businesses such as property management, alternative financing, private equity and venture capital holdings. These activities are allowed when they are incidental and do not threaten a bank’s capital or core operations.
Regulation 23G and technology-driven expansion
Regulation 23G permits related or complementary ventures that reflect modern models. Examples include operating online commerce platforms, selling goods or services online, commodities trading, licensing bank-developed software and leasing buildings.
Key constraints and approval pathways
All permitted ventures must have board-approved governance and risk policies. Firms must notify the monetary authority singapore or the mas with details of the activity and investment.
Quantitative caps apply: typically 10% of capital for Singapore-incorporated banks and 1.5% of assets (less net interbank lending) for foreign branches.
When to seek case-by-case MAS approval
Non-prescribed ventures require case-by-case approval under the Banking Act s30(1)(e). MAS will assess whether an activity is related or complementary, its strategic value and the associated operational and reputational risks.
“Expect robust governance and swift escalation if a partner’s offering sits near caps or needs MAS clearance.”
- Practical point: partners should expect governance gatekeeping and possible changes to offerings if caps bite.
- Prepare full disclosures, board minutes and risk assessments when negotiating with a bank-affiliated platform.
Bank licensing landscape for financial institutions serving businesses
Licence categories determine the scope of products, branch footprints and cross‑border reach that firms may expect.
Full, wholesale and merchant licences: what each permits
Full banks may offer the full range of deposit, lending, trade and treasury solutions under the Banking Act. They suit clients who need retail access and wide product breadth.
Wholesale banks focus on larger clients, offering corporate lending, trade finance and treasury but not mass retail deposits. Their onboarding and documentation reflect that client mix.
Merchant banks are restricted from soliciting or accepting SGD deposits and from raising domestic funds. This affects corporates that need local liquidity or onshore deposit products.
Foreign banks and the Qualifying Full Bank scheme
Foreign banks face limits on branches and ATMs. The QFB scheme grants wider presence, ATM sharing and more flexible branch relocation for qualifying entrants.
- Selection criteria: product set, cross‑border network, onboarding expectations and permissible activities.
- Check licence type to confirm deposit access, trade facilities and treasury coverage.
- Note the 2020 consolidation of merchant bank rules into the Banking Act for clearer compliance and consistency.
Digital bank licences and what they mean for Singapore business banking competition
Regulators now balance innovation and prudence by issuing digital licences that begin with limits and only scale after firms prove resilience. The approach aims to let new entrants offer modern banking services while containing early operational risk.
Customer scope and product range
Digital Full Banks (DFB) may serve retail and non‑retail clients and offer deposit, lending and payment products.
Digital Wholesale Banks (DWB) serve SMEs and other non‑retail customers only. DWBs focus on embedded payments, trade facilities and data‑driven lending rather than mass retail offerings.
The two‑phase DFB pathway
DFBs start in a restricted stage: individual deposit cap S$75,000, aggregate cap S$50 million and minimum paid‑up capital S$15 million.
On meeting milestones and supervisory checks, caps lift and paid‑up capital must reach S$1.5 billion to operate without restrictions.
Capital, liquidity and models
MAS applies robust, risk‑based capital and liquidity rules to digital entrants given untested models. That raises funding costs and can slow aggressive pricing or rapid scale‑up.
| Licence | Customer focus | Key limits | Notable players |
|---|---|---|---|
| DFB | Retail & non‑retail | Initial caps; S$1.5bn capital later | MariBank, GXS Bank, Trust Bank |
| DWB | SMEs / non‑retail | No retail, focus on commercial services | ANEXT Bank, Green Link |
| Impact | Faster onboarding, integrated payments | Service limits during restricted stage | Useful for SMEs seeking integrated fintech ties |
“For firms, digital banks promise speed and UX gains, but check continuity, caps and product depth before shifting core cash flows.”
AML, CFT and financial crime controls: expectations shaped by recent events
Inter-bank intelligence sharing has added a new dimension to how alerts are triaged and resolved. That change, driven by high-profile laundering and scam incidents, raises operational expectations for banks and their corporate customers.
Customer due diligence, transaction monitoring and escalation pathways
What banks must do: perform robust customer due diligence (CDD), maintain ongoing monitoring and keep documented escalation pathways. These measures affect account opening, transaction limits and periodic reviews.
Typical CDD triggers include complex ownership, high-risk jurisdictions, sudden shifts in cashflow and rapid transaction spikes. When alerts fire, banks typically seek invoices, contracts or beneficiary details.
How COSMIC may affect inter-bank intelligence and risk decisions
COSMIC speeds information sharing on red flags between participating institutions. That can lead to faster restrictions, coordinated de-risking or requests for enhanced due diligence.
| Feature | Operational effect | What firms should expect |
|---|---|---|
| CDD | Deeper onboarding checks | More documentary requests and attestations |
| Transaction monitoring | Automated alerts + manual review | Requests for supporting invoices and explanations |
| COSMIC sharing | Faster cross‑institution flagging | Potential for quicker account restrictions |
Managing scam and phishing risks as a core compliance priority
Scams now target corporate treasuries as well as consumers. Boards should treat payment authorisation, dual approvals and beneficiary verification as top priorities.
“Train staff, verify beneficiaries by independent call‑backs and keep an incident playbook aligned with bank expectations.”
- Staff training and clear call‑back procedures
- Dual approval for high‑value payments
- Beneficiary verification and rapid incident reporting
Governance, internal controls and outsourcing: building a MAS-ready control environment
Strong governance keeps decision-making predictable and accountability visible across every tier of a bank. Good oversight shapes how institutions treat clients and how consistent credit and complaint outcomes become.
MAS approval and fit-and-proper expectations
The authority singapore requires approval for key appointment holders and directors. MAS assesses fitness, probity and relevant experience for CEOs, DCEOs and board members.
Why it matters: appointment scrutiny signals that accountability is non-negotiable and that senior leaders must show clear competence and integrity.
Internal controls and risk management practices to evidence
Banks must evidence segregation of duties, audit trails, documented risk assessments and incident management. Compliance monitoring and regular internal audits are central.
These controls raise daily operational standards and explain why banks may ask for more documentation from customers.
Outsourcing and third-party risk: governance and monitoring
Outsourcing needs strong due diligence, contractual controls, oversight and ongoing reviews. Cloud providers, payment processors and regtech vendors get particular focus.
Companies that align vendor-management practices with MAS-grade expectations face fewer queries and smoother service delivery.
- Practical tip: be ready for vendor-related questions during onboarding.
- Map your own third-party controls to what banks expect to speed approvals.
“Demonstrable controls and clear governance shorten review cycles and build operational trust.”
Market-wide transitions and innovation: benchmarks, tokenisation and regulated fintech
Interest‑rate reform is no longer theoretical; it alters pricing and operational routines for loans, derivatives and day‑to‑day transactions.
Benchmark transition and SORA adoption
LIBOR cessation (with end dates set by June 2023) and the discontinuation of SIBOR after 31 December 2024 moved SGD markets to a SORA‑centred landscape. Firms must convert legacy contracts and verify fallback language to avoid valuation gaps.
Check systems for compounded overnight rates, update treasury policy and confirm hedge alignments. Operational readiness is as important as legal wording.
Tokenisation and Project Guardian
Tokenisation is a regulated innovation, driven by MAS’s 4 November 2024 roadmap and industry trials under Project Guardian. The Guardian Fixed Income Framework and Guardian Funds Framework offer practical guidance for market and infrastructure adoption.
OCBC’s January 2025 tokenised bond (denominations from S$1,000) shows how fractionalisation can broaden investor access and free up treasury allocation.
- Benefits: efficiency, faster settlement and liquidity potential.
- Controls: eligibility checks, custody arrangements, AML/CFT safeguards and operational risk management.
“Treat tokenised products as regulated securities: innovation with clear custody, compliance and operational plans.”
Conclusion
A clear, layered rulebook ties core law to payments, market statutes and sector‑wide powers. The Banking Act sits at the centre, supported by the MAS Act, FSMA, PSA and activity laws that together shape how financial institutions operate.
For firms, the takeaways are practical: keep records tidy, record transaction rationales, tighten payment authorisation controls and watch regulatory updates. These steps reduce friction during onboarding and ongoing reviews.
Strategically, digital banks and regulated fintech widen choice but raise uniform expectations on AML, cyber resilience and governance. Treasury teams should prioritise SORA conversion and legacy contract remediation, while watching tokenisation trials for new product access.
Good supervision underpins a stable financial system — credible rules make transactions reliable, shield capital and support cross‑border trade.
FAQ
What is the role of the Monetary Authority of Singapore (MAS) in supervising banks and other financial institutions?
How do global standards like FATF and the Basel Committee affect local rules?
Which statutes form the backbone of regulation for banks in Singapore?
What are MAS’ powers for supervision, recovery and resolution of failing banks?
How does the Payment Services Act (PSA) affect banks and non-bank payment providers?
What AML and CFT expectations apply to banks following recent scam and laundering cases?
What are the licensing categories for banks operating in Singapore?
How do digital bank licences differ from conventional licences?
When can non‑financial companies offer financial services without breaching anti‑commingling rules?
What governance and fit‑and‑proper standards apply to key appointments and directors?
How are outsourcing and third‑party arrangements regulated?
What are the practical compliance implications of the Financial Institutions (Miscellaneous Amendments) Bill (FIMA Bill)?
How do MAS Notices and circulars differ from Acts and Regulations?
What should firms monitor regarding digital tokens and crypto asset services?
How has the transition from LIBOR affected corporate contracts and interest rate benchmarks?
What is COSMIC and how will it influence financial crime prevention?
Where can firms find guidance on transaction monitoring and scam prevention?
Dean Cheong is a Singapore-based commercial growth architect and CEO of VOffice, known for helping B2B companies turn fragmented sales efforts into predictable revenue systems. He specializes in sales process optimisation, CRM-driven visibility, and market entry strategy, combining execution discipline with a strong academic grounding in business banking and finance from Nanyang Technological University. His focus is on building repeatable, data-backed growth frameworks that companies can scale with confidence.