123/A, Miranda City Likaoli Prikano, Dope
+0989 7876 9865 9
+(090) 8765 86543 85
info@example.com
example.mail@hum.com
All financial institutions that MAS supervises, ranging from fund managers to capital markets services licensees to payment institution licensees, banks, insurers, and financial advisers, are subject to a broad package of regulatory filing requirements. These requirements include various forms of periodic regulatory returns, event-driven notifications, annual audit returns, AML/CFT returns, and corporate governance returns, each with its own specific content and timeliness requirements that must be met on an ongoing basis throughout the licensed life of a firm. The MAS regulatory filing deadlines framework is not stagnant, and MAS frequently updates its regulatory notices, guidance and filing requirements to reflect new developments in the market or international regulatory regimes, so regulatory compliance teams must stay abreast of the latest and most complete information on all filing requirements.
Regulatory filing obligations are broadly broken down into: annual submissions on a regular cycle that is related to the end of the financial year; periodic submissions (monthly, quarterly or semi-annual) reporting operational and financial data over time; event-driven notifications, requiring filings when certain conditions occur; and one-off filing obligations when the institution’s regulatory status, ownership, or key personnel change. The demands of complying with all these responsibilities across different portals, regimes, and timelines require a structured, disciplined compliance management program embedded in the firm’s governance and risk management program and driven by a calendar.
The MAS compliance calendar guide is not just an administrative tool; it’s a risk management tool that avoids the regulatory impact of late or missed filings. A filing delay, even if substantive compliance is acceptable, is considered a violation of MAS regulations. Formal supervisory follow-up, civil monetary penalties, conditions imposed on a licence, and, in cases of continued non-compliance, suspension and revocation of a licence are possible sanctions for late notification of events, late regulatory returns, and failure to submit an audit. The risk of material and ongoing failure by regulated institutions with multiple licence types or operating in different regulatory environments to meet filing deadlines without a structured tracking system is significant.
In addition to the immediate regulatory implications, a properly managed regulatory submission calendar in Singapore can also help cultivate a more compliant society within the firm. Consistent, timely and accurate filing, coupled with proactive notice to MAS of filing delays or errors, fosters supervisory trust, which leads to engaging regulatory dialogue, quicker licence variation approvals and a reduced risk of unannounced supervisory visits. In contrast, institutions that are late or have late/incomplete filings will be subject to greater supervisory scrutiny, which will consume management bandwidth and increase compliance costs. Having a well-maintained, up-to-date compliance calendar is one of the best tools a compliance officer or senior manager can invest in for regulatory risk management, particularly regarding their compliance relationships with MAS.
MAS exercises supervisory authority over a broad range of financial institutions and activities in Singapore. Its supervisory role encompasses four interconnected functions that together define the regulatory environment within which all licensed firms operate.
MAS grants licences, registrations, and exemptions to financial institutions across all regulated activity categories. Each licence type comes with a defined set of ongoing regulatory obligations — including filing requirements — that the institution must maintain on a continuous basis as a condition of its licence.
MAS supervises licensed institutions through a combination of off-site monitoring of regulatory returns and on-site inspections. The quality, timeliness, and accuracy of an institution’s regulatory filings are among the primary indicators MAS uses to assess the firm’s overall compliance culture and governance standards.
MAS develops and updates the regulatory framework through notices, guidelines, and consultation papers. Changes to regulatory filing requirements — including new forms, revised deadlines, or expanded reporting scope — are communicated through these instruments and must be incorporated into the institution’s compliance calendar promptly.
MAS has broad enforcement powers under the statutes it administers — including the Securities and Futures Act, Financial Advisers Act, Payment Services Act, and Banking Act — and uses these powers to address regulatory breaches, including persistent or serious failures to meet filing obligations within prescribed timeframes.
MAS compliance requirements for financial institutions are segmented into several distinct categories, each with its own triggering conditions, submission portals, and deadline formats. The first step in creating a comprehensive regulatory compliance calendar is to understand these categories.
Annual regulatory returns, audited financial statements, AML/CFT programme assessments, and declarations of compliance are typically triggered by the institution’s financial year-end. Most annual filings must be submitted within a defined number of months (typically four to seven) after the close of the financial year, though exact deadlines vary by licence type and filing category.
Monthly, quarterly, and semi-annual operational reports cover transaction volumes, assets under management, customer counts, and other key metrics that allow MAS to monitor the institution’s business activities on a rolling basis. These reports are submitted through MAS’s dedicated regulatory submission portals on fixed calendar dates.
Certain events — including changes in ownership or control, appointment or resignation of key personnel, cybersecurity incidents, and breaches of licence conditions — trigger immediate or short-timeline notification obligations that do not follow a regular calendar cycle. These must be monitored continuously and filed promptly when the triggering event occurs.
Licence applications, variation requests, exemption applications, and submissions made in response to MAS consultation papers or information requests are one-off filings that arise irregularly but require dedicated resources and careful preparation to ensure accuracy and completeness.
The key MAS reporting deadlines explained framework has a very real and serious consequence for non-compliance. It is crucial to be aware of these impacts as background information for establishing and keeping a disciplined Singapore MAS filing timetable in any regulated institution.
The key MAS reporting deadlines explained framework imposes real and serious consequences for non-compliance. Understanding these consequences is essential context for building and maintaining a disciplined Singapore MAS filing schedule within any regulated institution.
Late or incomplete filings trigger formal supervisory follow-up from MAS, which may include requests for explanations, additional information requests, enhanced reporting requirements, or the attachment of new conditions to the firm’s licence. Each of these supervisory actions consumes compliance resources and management attention.
Persistent non-compliance with filing obligations can result in MAS attaching conditions to an institution’s licence — restricting its business activities, requiring the appointment of an external reviewer, or imposing enhanced supervisory reporting. These conditions are a material operational burden and may affect the firm’s commercial relationships.
MAS publishes enforcement notices and supervisory findings that may identify specific institutions and describe the nature of their regulatory breaches. Public enforcement action for filing failures carries significant reputational consequences in Singapore’s close-knit financial community, potentially affecting investor confidence, banking relationships, and the firm’s ability to attract and retain key talent.
The annual return is the foundation of MAS’s continuous monitoring of licensed financial institutions. All MAS-licensed institutions, irrespective of their licence type, submit an annual regulatory return (usually in a specific form and format) in which they report on the principal particulars, business activities, and the institution’s compliance. These returns are filed using MAS’s electronic reporting system and should be accompanied by supporting documentation as necessary.
The annual return includes fund management companies’ information on assets under management, the types and numbers of investors, fund structures, the geographic exposure of investments, and important personnel appointments. The annual return for payment institution licensees includes transaction volumes per service, changes in services, and event-driven notifications that were not submitted as separate returns but may have occurred during the reporting year. For financial advisers, the annual return includes the firm’s representative list, the number of clients, and the products sold over the period. In all instances, the MAS annual filing requirements for annual returns involve the institution certifying the accuracy of the information submitted, which means accuracy and completeness of the submission is a personal responsibility of the certifying director or senior manager.
As part of their annual compliance cycle, all MAS-licensed entities must submit audited financial statements to MAS. In addition, audited financial statements need to be prepared under the Singapore Financial Reporting Standards (SFRS(I)) or the International Financial Reporting Standards (IFRS), and audited by a registered public accountant in Singapore who is independent of the regulated institution, for most licence categories. The financial statements should be sent to MAS within the prescribed timeframe after the institution’s financial year-end, usually 4 to 7 months, depending on the type of licence) And it should include the auditor’s report.
For Major Payment Institution (MPI) licensees, this will include an additional auditor’s report that must be issued regarding the firm’s compliance with its Payment Services Act obligations, including its user fund safeguarding arrangements. VCC fund vehicles must provide separate audited financial statements for each sub-fund. They shall be made available to investors at the fund’s annual general meeting and submitted to ACRA together with the VCC’s annual return. Aligning financial year-ends and ensuring adequate scope and resources are in place before submitting audit engagements to companies will be crucial to managing the financial services compliance calendar in Singapore.
All regulated financial institutions (RFIs) must have an active, documented AML/CFT programme and review it annually to ensure it remains adequate and effective. In most cases, the annual AML/CFT assessment will comprise a review of the AML/CFT Risk Assessment (ML/TF Risk Assessment in the case of most licences), a review of the effectiveness of the institution’s customer due diligence procedures and transaction monitoring controls, and an assessment of any changes in the institution’s business model, customer base or the regulatory environment that may require an update of the AML/CFT programme.
The annual AML/CFT review must be endorsed by the institution’s board and/or senior management committee. It must lead to a documented plan of action to address any identified gaps or weaknesses. For certain licence categories (such as Major Payment Institution licensees), the independent external audit must include an opinion on the effectiveness of the firm’s AML/CFT controls in the annual audit report submitted to MAS. The most common targets of MAS supervisory findings in the AML/CFT space are institutions that allow their AML/CFT risk assessments to become outdated by failing to incorporate new product launches, customer segments, geographic exposures, and/or MAS typology publications.
In addition to the substantive regulatory returns, MAS-regulated institutions should keep and update records of their directors and shareholders, and must notify MAS of changes within certain time limits.
The appointment or resignation of a director of a regulated institution should be reported to MAS within the time frame set out in the applicable notice or guidelines, usually 14 days before and/or after the director’s appointment or resignation. The appointment is subject to the conditions laid by MAS for the new director regarding his/her fitness and propriety.
Changes to the shareholding of a regulated institution, such as a significant stake (usually 5% or more) or a change that could lead to a change of control, should be reported to MAS and may require MAS approval. The definition of change of control and the threshold depend on the type of licence.
The annual return is required to include a statement on the number of key personnel, which, for most licence types, comprises a declaration that all directors, the CEO, and appointed representatives meet MAS’s fit-and-proper criteria. MAS must be promptly made aware if any key personnel member’s personal circumstances change in a way that affects their suitability to hold the position.
At least, licensed institutions are required to keep an up-to-date list of shareholders and make it available to MAS upon request. The register shall be updated promptly upon any change, and the information contained in the register shall be consistent with the periodic regulatory returns filed by the institution.
Regulatory reporting is a monthly requirement, and applies mainly to payment institution licensees, both Standard Payment Institution (SPI) licensees and Major Payment Institution (MPI) licensees, for reporting transaction volume information to MAS every month. This monthly reporting is two-fold: firstly, it enables MAS to track the scale of each institution’s payment service activity against its respective licence threshold; secondly, it gives the information for calculating the 12-month average number of transactions per month for each institution to help determine if SPI threshold limits have been breached or approached.
The monthly transaction volume reports are usually required to be submitted within a prescribed period, typically within several business days after the end of each calendar month (as prescribed in MAS’s relevant notice on payment institutions). The monthly report also acts as an early warning tool for the SPIs near the approaching thresholds, prompting proactive licence variations. They should ensure their operational systems can provide the data required for the transaction volume to be reported within the specified time frame and with the specified granularity (by service type, as specified in the relevant MAS reporting form).
Different types of MAS-regulated institutions are subject to quarterly regulatory filings, the content and timing of which depend on the licence category. The quarterly filings are one of the most operationally challenging periodic obligations for Singapore financial reporting deadlines due to the following: (1) a relatively short reporting period and (2) a wide range of information to be reported; both of which depend on timely data collection and reporting system capability.
Fund managers, such as Licensed Fund Management Companies (LFMCs) and Venture Capital Fund Managers (VCFMs), must report quarterly changes in asset management, fund structure, key appointments, and the nature of investors to MAS. The reporting process for the quarter can be time-consuming and intensive for managers dealing with a large number of AUM changes, launches, or investor redemptions in a single quarter, and it requires careful planning. Depending on the cross-border money flow reporting framework implemented by MAS and the Department of Statistics Singapore, payment institutions that conduct a high volume of cross-border transactions may be required to submit Compliance Submissions quarterly or semiannually.
For certain licence categories, MAS has found that an intermediate reporting period (between quarterly and annual) is the most suitable for ensuring sufficient supervisory oversight of the institution’s compliance position, and will therefore require semi-annual compliance submissions.
Licensed Financial Advisers are required to provide MAS with new representative lists on a semi-annual basis, to confirm the names, qualifications and licensing status of all their representatives as of the reporting date. If any representatives have joined or left the firm since the last submission, this submission should include details of the change.
Understand that, in addition to the annual financial statement submission, some categories of CMS licensees (e.g. those with material derivatives or trading book exposures) may be expected to submit capital adequacy reports on a semi-annual basis, thereby enabling MAS to have greater visibility into the institution’s financial resources in relation to its risk requirement.
MAS will request institutions subject to its Technology Risk Management (TRM) Guidelines to provide summary reports on material technology incidents at regular intervals. If there has been a major cybersecurity incident or system outage, the semi-annual report shall include a description of the incident, its consequences, and the steps taken to remediate the DPT
Digital payment token service providers may need to report semi-annually on the nature and volume of DPT transactions handled, the jurisdictions with which they engage in cross-border DPT transactions, and the status of their DPT compliance programme and technology implementation.
Event-driven reporting obligations, also known as ad hoc or trigger-based reporting, must be made within a specified period after the triggering event, but not necessarily on a calendar basis. Compliance teams need to be vigilant about any events that could give rise to a notification or reportable event and have an internal escalation procedure to ensure that the appropriate compliance team member is informed as quickly as possible when a triggering event occurs.
Common events for reporting include: notification of a material change of shareholding or control (usually within 14 days of the change or, where the change is subject to pre-approval, before the change occurs); notification of a cybersecurity incident of a certain severity (usually 24 hours of the incident being detected with a full incident report being due within a prescribed time after the incident); notification of a breach of licence conditions (usually as soon as the institution is aware of it); notification of the appointment or resignation of key personnel; and notification of pending or concluded legal proceedings involving the institution or key personnel. A MAS regulatory compliance timeline for each of these notifications is set out in the relevant MAS notice, and should be followed and enforced under internal compliance arrangements.
LFMCs (whether under the accredited/institutional track or the retail track) are subject to a comprehensive regulatory reporting framework administered by MAS. These obligations highlight MAS’s need for continued transparency regarding the size, shape and level of compliance of the fund management industry. Because the data that must be provided in the annual filing for the MAS, including AUM data, investor classifications, fund structures, key personnel information, etc., is required from multiple internal systems, LFMCS need to plan ahead of each filing deadline.
The key reporting requirements of the core LFMC include the following: Event driven reporting requirements related to material changes in fund’s structure, business model and key appointments; Periodic reporting is required for information regarding key appointments and training records of licensed representatives; Quarterly information on material changes in AUM or fund structure; and an annual regulatory return within seven months of the financial year end, disclosing information about AUM, investor type, number, fund structure, and material changes in key appointments. LFMCs are also required to file annual audited financial statements, and — if applicable — their annual AML/CFT programme review results. Depending on the types of collective investment schemes managed and the categories of investors served, additional conduct reporting obligations may apply to retail LFMCs.
Venture Capital Fund Managers (VCFMs) are regulated differently from traditional LFMCs, and their filing requirements are commensurate with those of LFMCs. The VCFM’s simplified regime doesn’t mean VCFMs don’t have to submit anything – rather, it entails a limited set of periodic and annual reporting obligations.
VCFMs are required to file a regulatory return with MAS every year detailing key appointments, asset values under management, investor types, and numbers by geography and sector, including vintage year and fund type. Must be returned within 7 months of the VCFM’s financial year-end.
All VCFMs must declare to MAS that no misconduct report has been made regarding any key personnel or investment activities of the firm in the last 12 months. This is a VCFM-specific requirement that must be made on a VCFM-prescribed form within a prescribed time period.
VCFMs are required to notify MAS of the appointment or dismissal of key personnel, changes in investment mandate or fund structure, and of any events that could make the firm ineligible to operate as a VCFM (which could include proposed investments in listed securities that would cause the firm to lose its eligibility under the investment restrictions).
Although the regulatory regime for VCFMs is less stringent, they remain subject to MAS’s AML/CFT requirements. They are required to review their AML/CFT programme annually and document the findings, including an update to their ML/TF Risk Assessment and a review of the effectiveness of their AML/CFT programme, specifically the adequacy of their customer due diligence and transaction monitoring processes.
Under the Securities and Futures Act, there are distinct regulatory reporting requirements for Capital Markets Services (CMS) license holders, such as the broker-dealers, custodians, corporate finance advisers and operators of securities-based crowdfunding platforms. Some of the reporting requirements apply to all types of CMS licences. In contrast, others apply to the specific regulated activity for which the firm holds a licence and to the nature of its client relationship.
Examples of common licensing obligations for CMS include: annual regulatory returns outlining the firm’s regulated activities, key personnel and compliance certifications; financial reporting (capital adequacy and financial resources ratios); representative roster (all appointed representatives and regulatory status); and event-driven notifications (changes in key personnel, shareholding, material operational incidents). Additional conduct reporting requirements may apply to S licensees that engage in a substantial number of activities in connection with their clients, including activities as broker-dealers or custodians. They may require data on client asset protection, complaints, and outcomes of suitability assessments.
The key recurring filing deadlines for the majority of fund management companies regulated by MAS are summarised in the following table. Specific deadlines will vary depending on the firm’s financial year-end and the terms and conditions of its licence — and must always be checked against the relevant MAS notices.
Table 1: Key Annual Filing Deadlines for MAS-Licensed Fund Managers
Fund managers should consider the above deadlines as the bare minimum and plan internal submission timelines with time to compile data, review internally, secure senior management sign-off, and submit the data to technical for regulatory submission in good time. Institutions that file on time with the registrar of regulators, without allowing time for corrections or to address technical difficulties, face an unnecessary risk of late filing if there are system outages, data quality issues, or staff availability issues.
Under the Payment Services Act and applicable MAS Notices, Standard Payment Institution (SPI) licensees are required to report to MAS and the Central Bank of Malaysia (CBSM) regularly and upon certain events, in accordance with a prescribed framework. The SPI’s reporting needs are less rigorous than those for MPIs but still operationally challenging, especially for young companies developing payment systems while simultaneously building a regulatory compliance programme.
The key SPI reporting requirements are: monthly transaction volume reports (reporting each regulated payment service by type and volume within a defined number of business days of the end of the month); an annual regulatory return (reporting the firm’s business activities, transaction volumes, key personnel and changes since the last reporting); event-driven notifications (reporting changes to key personnel, shareholding and material operational incidents); and immediate notifications (when the firm’s transaction volumes approach or reach the applicable SPI thresholds). SPI must also ensure that records supporting its AML/CFT programme are kept and made available on request by MAS, and that any STRs connected with the firm’s operations are submitted to STRO.
The reporting requirements for Major Payment Institution (MPI) licence holders are the most stringent among all payment institution licence types. MPI reporting is structured around three reporting elements: periodic transaction reporting and operational reporting; annual audit and financial reporting; and continuous safeguarding reporting and disclosure. A multi-pillar approach — combined with a high-quality compliance programme — demands accompanying resources to compliance and a strong internal reporting mechanism.
MPI holders will be required to provide monthly transaction volume reports by service type, quarterly or semi-annual operational reports detailing changes in their business activities, counts of customers and AML/CFT programme metrics, annual audited financial statements and an independent auditor’s report on compliance with the PS Act and safeguarding arrangements, and an annual regulatory return confirming the firm’s principal particulars, service types and compliance. Further, the MPI holders are required to keep records of safeguarding balances and make them available to MAS upon request, including in their annual submissions to MAS, where they must make a clear statement on the adequacy of the firm’s user fund safeguarding arrangements.
One of the most operationally important and time-sensitive payment services filing requirements is the safeguarding and audit submission requirements of MPI holders.
MPI holders are required to have a wide-ranging annual audit of their PS Act compliance, safeguarding arrangements, AML/CFT controls, and technology risk management, conducted by an independent external auditor. The audit report must be presented to MAS within four to five months after the financial year-end and must be accompanied by management’s response to any audit findings.
The MAS will require MPI holders to make daily reconciliations between the amount of user funds owed and the amount of funds held in their user funds segregated safeguarding account, and record such reconciliations for MAS inspection at any time. In cases of a shortfall in the protection provided, it is necessary to correct it promptly and inform MAS accordingly.
The holders of a monetary value security deposit must keep the appropriate security deposit with MAS (either a cash deposit or a bank guarantee) at all times. Any shortening of the amount of the security deposit and/or any event that would impact the validity of the Bank Guarantee shall be reported to MAS immediately and rectified within the prescribed period.
MPI holders must comply with MAS’s technology incident notification requirements, which mandate specific deadlines for reporting significant cybersecurity incidents, system outages and data breaches. For critical incidents, the initial notification to MAS should typically be made within one hour of detecting the incident, and the full incident report should be submitted within the prescribed subsequent period.
Reporting accurate and timely transaction volumes is a fundamental compliance requirement for all payment institution licensees, but especially for SPI licensees, for whom the monthly transaction volume is a key factor in determining whether they have approached or exceeded the relevant licence thresholds.
Table 2: Payment Institution Reporting Obligations and Frequency
Please note that the dates in the table above are the published MAS targets and can be subject to change. Payment institutions should check the current deadlines against the relevant MAS notices (particularly MAS Notice PSN01 and the PS Act reporting guidelines for regulatory reports) and treat these as the maximum deadlines for submitting data, with adequate time for internal validation and review by senior management before the regulatory deadline.
One of the most critical, time-bound, and non-negotiable regulatory requirements for all MAS-licensed financial institutions is the obligation to report Suspicious Transaction Reports (STRs) to the Suspicious Transaction Reporting Office (STRO). STR filing does not have a fixed calendar requirement. Still, it is triggered by the development of a suspicion. It should be processed as soon as practicable after it is reasonably suspected that a transaction is related to criminal activity or terrorist financing. Planning the MAS regulatory compliance timeline for STR filing is therefore impossible, as it requires constant monitoring, internal escalation, and clearly documented procedures for evaluating suspicions.
MAS requires financial institutions to have documented internal processes for identifying, escalating, investigating, and reporting on suspicious transactions, which they must consistently follow and periodically test. The internal timeframe from the identification of a potentially suspicious pattern to the decision to report an STR should be set out in the AML/CFT policy and be as short as is operationally practicable; this should also include the timeframe for completing and submitting an STR to STRO. Institutions that take a significant amount of time to investigate suspicious activity before they submit a STR or institutions that do not submit STRs when there are reasonable grounds for suspicion are potentially subject to regulatory actions for violations of AML/CFT standards. MAS has stated that it intends to have STRs filed as soon as there is suspicion of a transaction, rather than when it has been proven to be a proceeds-of-crime transaction.
The annual AML/CFT programme review is a fundamental regulatory requirement for all MAS-licensed financial institutions, irrespective of their type, size and regulatory track. It is critical to approach this review as a real risk management process, not simply a compliance tick-box exercise, to ensure MAS’s expectations are met.
The institution’s Money Laundering and Terrorist Financing Risk Assessment should be reviewed and updated at least annually, as it should be tailored to the institution’s business model, customers, geographic exposure, product range, delivery channels, and external threat environment. The new risk assessment is to be approved by the board or the designated senior management committee.
The annual review should include an evaluation of the effectiveness of the AML/CFT controls of the institution, including the effectiveness of the customer due diligence procedures, the performance of the transaction monitoring system, the rate of STR filings and the completion of training, by taking into account the risks identified in the updated risk assessment. All gaps between the risk profile and the control framework should be documented and mitigated through a remediation plan supported by a timeline of activities.
In the case of larger institutions or those that have more complex AML/CFT risk factors, MAS will require the annual AML/CFT review to have an independent component, whether undertaken internally by the institution’s internal audit function or by an external reviewer, which gives objective assurance on the adequacy and effectiveness of the institution’s AML/CFT programme. This independent review is part of the required annual independent audit for the MPI holders.
The AML/CFT Annual review (including the revised AML/CFT Risk assessment, the effectiveness of controls, and the AML/CFT remediation plan) shall be submitted to the Board for approval. It shall be set out in full detail. This documentation needs to be retained and provided to MAS upon request – MAS regularly requests AML/CFT review documentation during on-site inspections or supervisory reviews.
The annual AML/CFT review cycle is a key structured requirement. Still, MAS expects financial institutions to review their internal AML/CFT risk assessments more often if the firm’s business or the external risk environment has materially changed, before the annual review cycle, and again after it. This is a continuous risk assessment management process and is examined by MAS during supervisory reviews, as part of a considered AML/CFT programme.
Factors that may lead to an out-of-cycle risk assessment review are: introduction of a new product or service type; inclusion of a new customer segment with materially different risk profile; expansion into a new geographical jurisdiction that has a higher level of risk; changes to the list of high risk or sanctioned countries published by FATF, or MAS; material changes in the typologies of financial crime relevant to the firm’s business, such as new cryptocurrency fraud methods or the emergence of new trade based money laundering patterns. The institution’s AML/CFT policy should outline the circumstances under which an out-of-cycle risk assessment update is required, as well as the internal timeline and procedures for doing so.
Recordkeeping requirements for AML/CFT policies and procedures are among the most operationally intensive parts of the regulatory compliance program and involve the institution maintaining extensive records across many categories for extended periods.
All customer identification, beneficial ownership verification, risk assessment, and enhanced due diligence documents in connection with the CDD should be retained for at least five years after the termination of the customer relationship or the date of the transaction with the customer, whichever is later. The records should be kept in a retrievable format and be ready to be produced upon request to MAS.
All trading that took place within the institution must be documented (date, amount, currency, parties, etc.) and retained for at least 5 years from the transaction date. Cross-border records should contain enough detail to enable a complete payment history to be traced, including the identities of the originator and beneficiary.
All internal suspicion reports, STR filings presented to STRO, and the analysis and rationale behind each internal suspicion report and STR filing, including the decision not to report an STR when suspicious activity is detected but determined to be below the STR threshold, shall be stored safely for a minimum of five years. These records may not be made available to the customer about whom the suspicion assessment is made.
AML/CFT policies, ML/TF risk assessments, annual review reports, training records, audit findings and remediation plans must be kept for a minimum of 5 years. MAS will be concerned with these records if they are not updated or remain the same year after year – it is a continuous, evolving compliance programme.
The MAS-regulated financial institutions in Singapore are required to file corporate taxes, which are managed by the Inland Revenue Authority of Singapore (IRAS), just like other companies in Singapore. Generally, corporate tax will be charged at the prevailing corporate income tax rate for taxable income generated in Singapore, after applying the applicable exemptions and deductions, for most financial institutions. Financial institutions need to mark the following dates on their financial services compliance calendar: Singapore: Estimated Chargeable Income (ECI) filing — must be filed within three months of the company’s financial year-end; and Annual Income tax return (Form C or Form C-S) — must be filed by 30 November every year for companies with a financial year-end of 31 December. Firms may have various financial year-ends, and it will be necessary to check with their tax advisers what obligations they have.
Coordinated corporate tax filing by financial institutions that manage VCC fund vehicles eligible for either the Section 13O or Section 13U tax exemption schemes will be required to document and verify, with their tax advisers, the qualifying income generated by each VCC, as well as any conditions attached to the tax exemptions under either scheme (such as the AUM thresholds, minimum local spending and the number of investment professionals) at the time of tax filing. If any conditions of the tax incentive have been inadvertently contravened during the reporting period, this must be reported to MAS and IRAS, as it can affect the tax incentive’s availability during the period.
All financial institutions registered for Goods and Services Tax (GST) in Singapore must prepare and file GST returns with IRAS quarterly or monthly, depending on the type of their GST registration and the amount of their taxable supplies.
Financial institutions with GST registration should submit GST returns within 1 month of the end of each GST accounting period. This equates to 4 reporting cycles per year for institutions that report quarterly and 12 reporting cycles per month for those that report monthly. GST returns need to be more accurate, reflecting the institution’s taxable and exempt supplies and the input tax credits claimed.
Certain financial services provided by MAS-regulated institutions (such as fund management fees, fund advisory services, and some payment services) may be exempt from or zero-rated for GST. Each type of service should be correctly classified for accurate GST returns, and this should be reviewed regularly as the institution’s product range expands.
Financial services companies licensed by MAS that provide a combination of taxable and exempt financial services are usually allowed to claim only a portion of the input GST on business expenses under the partial exemption method. The partial exemption calculation must be done the same way and recalculated each year because the ratio of taxable to exempt supplies may change.
IRAS may audit institutions that claim a substantial amount of input tax or have complex financial structures for GST. To be ready for an audit, institutions must keep adequate records of all GST transactions, input tax claims, and input tax calculations for exemptions for at least five years, the same period as the record-keeping period under the GST Act.
Singapore-incorporated financial institutions are required to submit their annual return under the Companies Act (ACRA) as well as their MAS regulatory filing. The annual return is to be submitted via the BizFile+ web portal by the end of the company’s financial year. Still, it is to be withheld there by the end of the seventh month of the financial year for private companies and by the end of the fifth month for listed companies. The annual return provides an update on the company’s principal particulars, and should correspond with the information attached to the company’s regulatory returns with MAS.
In the case of VCC fund vehicles, the obligations for annual returns apply separately at the level of the VCC and the sub-funds; that is, each sub-fund should be registered separately with ACRA and file the annual return separately. The annual return of VCC shall include an auditor’s report for every sub-fund of VCC and audited financial statements of VCC. The timing of filing the ACRA is focused on coordinating the filing of the audit in accordance with the deadline for the MAS regulatory return — which usually falls within seven months after the financial year-end — and ensuring that the audit is completed and the financial statements are finalised. All necessary sign-offs are obtained ahead of the deadlines.
It is important that any submissions to MAS are consistent with tax and corporate filings to prevent inconsistencies or lack of coordination, and that the financial information in all submissions to MAS and in tax and corporate filings is presented consistently.
To rationalise audit, tax, and regulatory filing deadlines, the financial year-end should, where possible, be synchronised across all regulated entities, including the fund managers, the VCC umbrella, and the sub-funds. Having a consistent financial year-end minimises the risk of having the same deadlines across multiple entities and enables the finance and compliance team to do more with their resources.
If a single external auditor can perform both regulatory and statutory audits (which are required by MAS, ACRA, and IRA, S respectively), the benefit is that there is less duplication of effort, a greater consistency in the results of the audit and the financial statements, and the overall audit cost will be lower — assuming the auditor has the necessary expertise and independence to perform both audits.
The institution should perform information consistency checks to verify that important financial indicators such as AUM, revenue, expenses, and capital are consistent before submitting any regulatory returns, financial statements, and tax filings. Regulatory and tax follow-up often occurs when there are inconsistencies between regulatory and tax filings.
The time frame just after the financial year-end is the most critical period for filing delays, as auctions, MAS regulatory returns, ACRA annual returns, ECI submissions,s and AML/CFT annual reviews are due within a short period. Institutions should have a detailed schedule for year-end filings established at least three months before year-end, with clear responsibilities for each filing and adequate buffer time for review and correction.
For any MAS-regulated institution, an effective regulatory compliance programme is built on a comprehensive compliance calendar guide. The compliance calendar should include all filings that apply to the institution, including all types of licences held, all regulatory frameworks that apply to each service and/or activity, and all corporate and tax filing requirements, and should include information on each filing, such as: the filing trigger or period; which form to file, what portal, and instructions for the filing; the regulatory deadline; buffers for review and approval; the internal person responsible for preparing the filing; and the internal person responsible for signing off on the filing.
The compliance calendar should be kept as an ‘active’ document, not an annual planning spreadsheet. It should be updated as the regulatory requirements change, when the scope of the institution’s licence is altered, when the nature of its business activities changes or when internal responsibilities change as a result of staff changes. Many institutions have their own compliance calendar, which they can store in a separate compliance management system that generates automated reminders, tracks submission status, and creates management reports on compliance performance. A well-structured spreadsheet-based calendar with automated email reminders can also function, albeit it does not have to be a full-blown compliance management system, but it must be kept current and reviewed regularly by the compliance officer and senior management of smaller institutions that do not have one of these systems.
A clear definition of each filing requirement is crucial to avoiding missed filings, as a result of lack of ownership. The responsibility assignment should be accompanied by compliance calendar management.
All filing requirements listed in the compliance calendar should have a named primary responsible person and a named backup responsible person. The primary owner’s filing will be prepared, verify data and submit on time to the regulatory deadline. A key protection in case of filing failure is that the backup owner will ensure filing is made if the primary owner is not present.
The compliance calendar should contain well-defined escalation procedures to be followed as the preparation process progresses, with a risk of late submission to be reported to the compliance officer, the CEO or, if the late filing is unavoidable, to MAS. Institutions that proactively inform MAS of a delay before the regulatory deadline, with an explanation and updated submission due date, generally get a more positive regulatory response than those that don’t notify MAS.
Senior management review and formal sign-off should occur prior to submission of all material regulatory documents, such as annual returns, audited financial statements and AML/CFT programme certifications. This sign-off procedure ensures the filing is accurate and complete and reflects the institution’s regulatory position, and establishes an audit trail of internal control of the filing.
The board of a MAS-regulated institution should be regularly informed on the status of the institution’s regulatory filing obligations, covering including pending filing, filing that may be expected in the near future but which is not yet submitted, and outcomes of any MAS enquiries or supervisory follow-up. The compliance calendar is reviewed by the Board, which reflects the culture of accountability for compliance that MAS hopes to foster and enforce within the organization.
Technology is an increasingly important enabler of effective regulatory compliance calendar management. Purpose-built regulatory compliance management platforms and customised workflow management systems can also minimise the risk of filing errors and missed deadlines by triggering reminders, monitoring progress in the preparation task and generating management dashboards offering real-time visibility of how compliant the institution is at filing.
The best automated compliance tracking systems have the following in common: they have a comprehensive, real-time, searchable database of all compliance requirements, and update as new regulatory requirements are released; they issue automated e-mails or workflow reminders before each filing date; they track the process of preparing each filing in defined workflow stages, ranging from data collection through internal review, approval, and submission; and they create management reports that enable the compliance officer and senior management to see the institution’s overall filing posture at a single glance. Compliance management technology investing institutions should make sure that the product or service they invest in addresses all of the relevant compliance regulations, not just MAS filings, and that it can be used to support the specific filing requirements, institutional workflows and approval flows within the institution.
Compliance programmes, regardless of their best efforts, do have occasions of filing escalations — when the risk of a late or incomplete submission is discovered. If there are defined procedures for escalation, then these will be dealt with effectively.
The compliance calendar should feature dates of compliance for internal preparations, which are set well in advance of the dates for MAS submission, as early warning triggers. If the deadline is not met within the company, the escalation process begins but the filing deadline is still in time.
If it is determined that, for reasons outside the institution’s control, a filing will or will not be made by the deadline, the institution should notify MAS in writing before the deadline of the circumstances and ask for an extension. MAS doesn’t have to approve extensions, but will be more responsive to a proactive notification before the deadline than to an explanation after the deadline.
Any filing escalation (whether or not it leads to a late filing) should be followed by a Root Cause Analysis to explain the causes of the near miss or failure and how to change the internal processes to prevent a repeat. It should be documented and shared with the compliance officer and senior management and should be considered in the next revision of the compliance calendar and responsibility assignment framework.
The reason(s) for the filing escalation, the actions taken, the result of the actions and any interactions with MAS should be documented and retained. This documentation shows that the institution meets its compliance governance standards and serves as an audit trail should MAS ask questions on the reasons for delayed and/or missing submissions.
This is one of the most common compliance shortcomings found in MAS-regulated institutions, and is caused by a repeatable pattern of root causes that can be identified and addressed through an appropriate compliance infrastructure. Once you know these root causes, you can start to create a Singapore MAS filing schedule that’s strong enough to ward them off.
Routine late submissions are caused by institutions starting the filing preparation process too late in the day, which leaves little time for data collection and internal review and approval by the senior management. Institutions may adopt internal deadlines for preparation of each material filing that provide at least three to four weeks of “lead time” between when the material is prepared internally and the regulatory filing date.
Regulatory returns which need to report on financial and other statistics, such as AUM, transaction volume or capital ratios, will rely on the accuracy and completeness of the institution’s underlying financial and operational information. Common reasons for delays and errors to the submission include data quality problems, data reconciliation issues, or limitations in the system that can be used to extract accurate data in the allotted time frame.
The CEO, CFO or chief compliance officer is responsible for sign-off on many regulatory filings. Individuals who are not available to travel, sick, or unable to devote time to timely submission may cause delays. There should be embedded backup authorisation arrangements, including a pre-authorisation of options for authorising if the primary approver is unavailable.
Newly licensed, expanded, or recently changed institutions may submit late if the deadline for compliance is missed because the compliance team is unfamiliar with the filing requirements of the institution’s current regulatory status. Preventative elements include regular compliance team training, planned regulatory update briefings and consultation with external compliance advisers.
MAS continually updates capital market rules and regulations in the form of new and modified notices, outcomes of consultation papers and guidelines. The changes could include additional filing requirements, new deadlines, increased reporting requirements, or new filing methods or portals and should be identified, evaluated and added to the institution’s compliance calendar and procedures in a timely manner. When institutions don’t keep track of regulatory changes and adjust their compliance programmes – they can find themselves inadvertently out of compliance with new requirements even if they are otherwise dedicated to compliance.
A systematic approach is needed to monitor the regulatory activity of MAS. Institutions should ensure that a person is responsible (usually the compliance officer or a senior compliance analyst) for monitoring MAS’s website, their email subscriptions, and updates from industry associations for new notices, consultation papers, and policy announcements. The application of each regulatory development should be considered in the context of the institution’s type of licence and activity and material changes should be reflected immediately in the compliance calendar, internal policies and where necessary, staff training.
The coordination of the interaction between various regulatory frameworks and regulatory filing periods is an important challenge for financial institutions with multiple MAS licences or MAS licences and ACRA/IRAS obligations.
Organizations that are issued more than one type of license can find themselves in a situation where deadlines for each of these licenses coincide, which can cause a conflict in the workload and focus of the compliance team. Use of the compliance calendar and prioritizing filings according to regulatory consequence and readiness to prepare is key to preventing simultaneous filings from vying with one another for quality.
If more than one regulatory return is to be completed for multiple licences for the same reporting period, the institution should ensure that financial and operational metrics are reported in a consistent manner across the multiple returns. The lack of uniformity in AUM or transaction numbers or staffing information reported in the various regulatory returns may lead to enquiries by MAS and result in loss of credibility with the regulator.
New regulated activities that are added as part of a licence variation application or by launching a new product need to be reflected in the compliance calendar as soon as the activity is added. Often missed filing requirements are uncovered at licence variation time, which is a frequent reason for missed submissions in the first few months after a licence variation.
In a non-compliant team with a small number of people, the amount of compliance resources has to be distributed among various competing priorities like regulatory filings, AML/CFT monitoring, internal audit support and regulatory relationship management. The explicit resource allocation planning approach (specifying the staffing needs for each material filing and ensuring that the capacity is reserved in advance) avoids the risk of individual material files being deprioritised because of other competing demands.
Effective regulatory filing compliance requires well-documented and organised record-keeping. Institutions that fail to keep their compliance documentation in a retrievable, organised and accessible format repeatedly have the issues of late submissions, incomplete submissions and negative audit results. MAS’s supervisory expectations are well communicated in the notices and guidelines and institutions with lower recordkeeping standards are deemed to be at higher supervisory risk.
Recordkeeping errors include: records in differing formats, making it harder to retrieve; not having version control on policy documentation and being unsure which version of a policy was in effect during a particular period; inappropriate documentation of the decision making process underlying regulatory filings (including the basis for specific AML/CFT risk ratings or capital adequacy calculations); and not keeping records for the required minimum retention period. The effective development of a structured document management system, where documents are properly named, retained, accessed and regularly audited, is a critical investment in the institution’s regulatory infrastructure which is worthwhile in every aspect of the institution’s regulatory filing programme.
The building blocks of all regulatory filing compliance is an effective compliance function. For MAS-regulated institutions, compliance functions should be well-resourced, suitably structured within the institution, and have the appropriate skills and authority to assume compliance responsibilities across all relevant regulatory frameworks and filing periods.
The compliance officer of a MAS regulated institution should be sufficiently qualified, experienced and empowered to effectively conduct the institution’s compliance programme. This includes direct access to the board and CEO, the ability to stop or escalate activities that pose a regulatory risk and enough authority to hold fellow employees accountable for their compliance obligations, including the timely delivery of data for regulatory filing.
The compliance team should be appropriately sized and organized to carry out the regulatory filing requirements without being “overwhelmed. Frequent operating teams at or above capacity result in poor quality submissions, failure to keep up with regulatory changes, and inability to offer proactive regulatory risk management, which are not what MAS expects. Every year, institutions need to review their compliance resource needs and make decisions on staffing, outsourcing or technology investments based on those findings.
The compliance function needs to be independent enough of income-generating activities to give objective oversight of the institution’s regulatory compliance posture. The compliance officer should not have personal financial arrangements that could compromise the compliance responsibilities of the institution – for example, bonuses based on business volume may lead to under-reporting of transaction data that falls within thresholds.
The compliance team shall be provided with regular training on the regulatory frameworks applicable to the institution, updates on regulatory developments by MAS and training on the institution’s compliance systems and procedures. This involves targeted training on regulatory filing requirements, submission portals and data quality standards, which are often not taught in general compliance training programs.
Another key aspect of proactive compliance calendar management is conducting regular internal governance reviews of the institution’s regulatory compliance position, both to assess the quality of past filings and also to ensure the institution is ready for future obligations. These reviews shall be performed by the compliance officer at stipulated periods, and be reported to senior management and board.
The compliance officer should perform a quality check prior to submission of the material regulatory filing to ensure accuracy and completeness of the filing, consistency with previous filings and other concurrent regulatory filings and the quality of supporting documentation. This review should be recorded and only submitted after all identified issues have been addressed.
The compliance team should review post-filing after each significant filing cycle – especially every annual filing cycle – looking for what went well, what caused delays or quality issues, and what process improvements are needed for the next filing cycle. This learning process is the way compliance programmes are improved over time.
The compliance officer shall prepare a quarterly compliance performance report to senior management and the board, including the status of all regulatory filings due for the quarter, any late filing or quality issues that arose during the quarter, the status of any MAS enquiries or supervisory follow-ups and an outlook on the filings to be made for the upcoming quarter. This report enables senior management to gain visibility needed to allocate compliance resources efficiently.
The institution should review its regulatory compliance programme comprehensively at least once a year covering such matters as the timeliness and accuracy of its compliance calendar, the size and capability of its compliance team, the effectiveness of internal controls over the filing process and the overall regulatory position of the institution with MAS. This review should be shared with the board and be used for compliance improvement priorities for the upcoming year.
Many MAS-regulated institutions rely on external compliance advisers to assist with regulatory filing compliance, such as lawyers specializing in regulatory laws, compliance consulting or professional compliance outsourcing firms. They are most useful where the institution does not have in-house expertise, where the regulatory regime is especially complex or where the institution is facing a transition to a change in its regulatory status or licence scope.
The institution may obtain timely, expert advice on new MAS notices, consultation papers and policy developments from external advisers with MAS specialisation, including an evaluation of the filing and compliance requirements for the institution’s particular licence type(s) and business activities. This advisory service helps to minimise the risk of the in-house compliance team missing or misunderstanding regulatory changes.
External compliance advisers will be able to carry out an expert review of draft submissions, highlight any gaps or inconsistencies and offer guidance on the likely interpretation of MAS on data and disclosures in the MAS licence application and/or variation applications, as well as annual returns and AML/CFT programme certification. This is especially useful when filing a type of filing for the first time with an institution.
Independent reviews of the AML/CFT programme can be conducted by external compliance consultants with AML/CFT expertise to review the AML/CFT programme at the institution and assess the level of AML/CFT control and identify any gaps from MAS Notice PSN01 or MAS Notice CMG-N02, and make recommendations for improvements. This independent insight adds to the internal audit report and offers the board objective assurance of the effectiveness of the programme.
It also contains guidelines for external compliance advisers who have direct engagement experience with the MAS on which the institution is based, to support the institution during an MAS on-site inspection or supervisory review, such as in the preparation of documents, briefing staff on the inspection process, and drafting responses after the inspection. This support minimises disruption to the inspection process and improves the quality of the institution’s regulatory engagement.
MAS can carry out inspections at any time, on short notice, at licensed institutions; compliance calendar management automatically carries over to keep institutions ready for inspection. Institutions that prepare for inspection as a routine part of operations, rather than a reactive process in response to an inspection notice, are far better prepared for every supervisory interaction.
Compliance documentation (such as regulatory submissions made within the scope of the inspection, AML/CFT programme documentation, logs of transactions undertaken, STR submissions, minutes of governance meetings, audit reports, etc.) should be kept in an organised, indexed, and retrievable format. Compliance teams should conduct regular audits of documentation “readiness” to detect and remedy any gaps in the documentation archive.
MAS inspectors often ask to see how the institution’s compliance systems — such as platforms for monitoring transactions, customer identity verification tools, and regulatory reporting tools — work. Compliance and technology staff should be able to clearly and confidently demonstrate these and should undergo regular mock demonstrations to ensure they are proficient.
Institutions that have well-established compliance programmes regularly run ‘mock’ inspections as exercises to simulate responses to an MAS information request or inspection, to check that staff are competent to carry out their work, that documentation is adequate, and that escalation procedures are working effectively. Mock inspections reveal areas for improvement in inspection readiness before a true MAS inspector conducts the inspection.
After an inspection by MAS, the institution shall consider all items observed and reported during the inspection, even those described as regulatory breaches, as priority remediation items. A remediation plan should be developed within the designated timeframe in the compliance officer’s inspection report, include the names of remediation owners and timelines for each action item, and be actively monitored and reported to the board until the items are closed.
The guide has been comprehensive, covering all types of regulated financial institutions in Singapore, ranging from fund managers and financial advisers to payment institution licensees and VCC operators. The key tenets of a successful regulatory filing programme are:
A compliance calendar that just lists some of the institution’s regulatory filing requirements is not a compliance calendar; it is a gap waiting to become a regulatory breach. It is up to institutions to expend the effort to identify as many filing requirements as possible for all types of licences, regulatory frameworks, and corporate and tax matters, and to ensure that this list remains up to date as the institution’s regulatory framework changes over time.
Timely filing is not just an administrative convenience; it’s a separate regulatory requirement. MAS will consider late submissions as regulatory violations, even if the underlying substantive compliance is good. Institutions are best managed when they have a culture that consistently results in accurate, complete, and timely filings.
Indeed, Institutions that proactively engage with MAS – providing the regulator with advance notice of a filing risk, engaging with the regulator on new regulatory issues before the issue arises, and engaging constructively in MAS supervisory engagements – consistently experience improved regulatory outcomes compared with those that engage reactively. An institution and MAS have a long-term relationship that is being developed or undermined by the quality of each interaction between them.
Compliance filing is a process that requires the right technology — compliance management systems, automated reminders, data extraction systems — as well as the right processes — ownership of the filing, escalation procedures, pre-filing review and post-filing learning. The technology alone is not enough; it’s a combination of technology and process that will create the compliance infrastructure enabling reliable filing performance across the full spectrum of operational conditions a real institution will encounter.
Best-practice compliance programmes are a mix of excellent in-house capacity and targeted external advice. Regulatory intelligence, independent review, expertise, and MAS engagement experience by external advisers complement the existing regulatory team and help ensure that the compliance programme is based on best practice, not just the existing team’s experience.
There is no single way to achieve sustainable regulatory compliance, which is why it’s important to create an integrated compliance programme that continually improves, with regulatory filing requirements embedded in the institution’s overall governance standards and risk management culture. The demands of the MAS regulatory compliance timeline framework are real and ongoing. Still, they can be handled by institutions that have invested in the right compliance infrastructure, have allocated sufficient resources and are genuinely seeking to comply with regulations, not to the bare minimum.
This guide serves as a starting point for financial institutions regulated by the MAS to understand and navigate the full landscape of regulatory filing requirements imposed by the Singapore financial regulatory regime, for their compliance officers, senior management, and board members. This foundation – investment in compliance technology, team building, external advisory relationships, and a culture of proactive MAS engagement – enables financial services compliance calendar Singapore institutions to deliver consistent compliance performance, maintain their regulatory standing with MAS, and direct their attention to the commercial activities that will sustain the bottom line.
