Data Bureau will never ask you to transfer money or disclose banking log-in details over a phone call.
Call the 24/7 ScamShield Helpline at 1799 if you are unsure if a contact is legitimate.
Resources
Reference materials, publications, and tools to help you understand Data Bureau's certification process and Singapore's trust landscape.
Section 1
A Data Bureau verification report is the full output of an Authority Certificate assessment. It sets out a business's performance across every assessed criterion — giving agents and applicants a complete picture of the determination and its basis.
Sample Authority Certificate Verification Report
A redacted sample report illustrating the full structure of a Data Bureau assessment — including domain scores, mandatory criterion outcomes, aggregate scoring, and the certification determination. Available to registered agents and applicants.
Sign in to accessSection 2
A Data Bureau verification report is structured in four parts. Here is what each part means and how to interpret the findings.
The top section of every report identifies the business being assessed: its legal name, Unique Entity Number (UEN), registered address, and the names of its directors and registrable controllers as filed with ACRA. It also states the certificate number, issue date, and expiry date.
The Determination — the final outcome of the assessment — appears prominently here. It will be one of four values:
Before the structural assessment is applied, a set of foundational requirements are evaluated on a strict pass/fail basis. These cover baseline conditions: valid ACRA registration, no active winding-up proceedings, verified directors, no outstanding court judgments or fraud history, no bankruptcy, and not listed on any government blacklist or advisory registry, among others.
A failure on any one of these foundational requirements results in automatic Disqualification, regardless of performance across the structural assessment areas. The report will identify which requirement failed and the basis for that determination.
If all foundational criteria are passed, the report presents a structured breakdown across six assessment areas under DB-001: Business Legitimacy, Reputation & Public Standing, Online Presence & Digital Footprint, Legal Standing & Regulatory Compliance, Financial Standing, and Operational Credibility. Each area is evaluated and the findings recorded.
Each area in the report records the verification method applied, the evidence reviewed, and the outcome for that assessment area. No aggregate score or individual weighting is disclosed in the public-facing certificate.
The final section states the resulting determination:Certified,Conditional,Not Certified, orDisqualified. ForCertified businesses, it states the certificate validity period and confirms that continuous monitoring is active. For Conditionaloutcomes, the report identifies the specific gap areas and the reapplication window. ForNot Certified andDisqualified outcomes, the applicable reapplication or exclusion period is stated.
The report also states the appeals process: a Disqualified or Not Certified applicant may submit a formal appeal within 30 calendar days of notification, supported by written evidence. Data Bureau issues its appeal determination within 21 business days.
Section 3
Selected government and institutional publications relevant to Singapore's anti-scam landscape.
Source: Scam.SG — How the Singapore Government is Fighting Scams
Facility Restriction Framework for Scam Mules
New measures to restrict scam mules' access to digital banking, ATMs, card transactions, new mobile lines, and Singpass/Corppass for high-risk registrations. Applies to those convicted, warned, or being investigated as scam mules.
Singapore Police Force
“Stop and Check” National Cybersecurity Campaign (6th Edition)
A public cybersecurity awareness campaign emphasising pausing to verify unsolicited messages and calls. Includes roadshows, pop-ups, digital and outdoor advertising, and public education on enabling 2FA, identifying scams, and using ScamShield.
Cyber Security Agency of Singapore
GovTech Joins Global Signal Exchange (GSE)
GovTech, in partnership with the Singapore Police Force, becomes the first government agency to join the Global Signal Exchange — enabling real-time sharing of scam signals and abuse data with the public and private sector globally.
Government Technology Agency of Singapore
2025 Mid-Year Scams and Cybercrime Report
Singapore Police Force statistics on scams and cybercrime for the first half of 2025, covering case volumes, total losses, key scam types, and enforcement outcomes.
Singapore Police Force, via Scam.SG
Section 4
DB-001 is Data Bureau's Certificate of Business Authenticity — the institutional standard covering six assessment areas applied during certification. Additional criteria are applied at the institution's discretion and are not publicly disclosed.
View Assessment Criteria →