Singapore RFID Compliance & Regulations Guide
Everything you need to know about RFID regulations, data protection, and industry standards in Singapore. Stay compliant while maximising your RFID investment.
In This Guide
1. IMDA Frequency Allocations & Equipment Approval
The Infocomm Media Development Authority (IMDA) regulates all radio frequency equipment in Singapore, including RFID readers and active tags. All RF equipment must be IMDA type-approved before use.
RFID Frequency Bands in Singapore
| Band | Frequency | Max Power | Usage |
|---|---|---|---|
| LF | 125 – 134 kHz | Generally exempt | Access control, animal tracking |
| HF | 13.56 MHz | Generally exempt | NFC, smart cards, library systems |
| UHF Band 1 | 866 – 869 MHz | 500 mW ERP | RFID readers (EU-compatible equipment) |
| UHF Band 2 | 920 – 925 MHz | 2W ERP | RFID readers (primary band, most common) |
| Active / BLE | 2.4 GHz ISM | 100 mW EIRP | BLE beacons, active RFID, WiFi |
Equipment Approval Requirements
- Type approval: All UHF RFID readers must have IMDA type approval. Look for the IMDA compliance label on the equipment.
- Dealer's licence: Companies selling RF equipment in Singapore need an IMDA dealer's licence. Intensecomp holds the appropriate licences for all equipment we supply.
- Passive tags: Passive RFID tags (no transmitter) are generally exempt from type approval as they don't actively emit RF energy.
- Active tags / BLE beacons: Battery-powered transmitting devices must comply with IMDA's Short Range Device (SRD) standards.
- Import: RF equipment imported into Singapore should have relevant approvals. Non-compliant equipment may be seized by customs.
💡 Tip: When purchasing from Intensecomp, all hardware comes pre-approved for Singapore use. We handle the compliance verification so you don't have to. Browse our approved hardware catalogue.
2. PDPA — Personal Data Protection Act
Singapore's Personal Data Protection Act (PDPA) applies when RFID is used to track individuals — directly or indirectly. This is particularly relevant for personnel tracking, access control, and any system where tag IDs can be linked to identifiable persons.
When PDPA Applies to RFID
⚠️ PDPA Applies
- • Employee badges with RFID for location tracking
- • Visitor management with RFID wristbands
- • Patient tracking in healthcare facilities
- • Any system linking tag ID to a person's name
- • Uniforms/PPE with embedded tags tied to individuals
✅ PDPA Generally Not Triggered
- • Inventory/pallet tracking (no personal data)
- • Equipment and tool tracking
- • Vehicle/container tracking
- • Environmental monitoring sensors
- • Anonymised aggregate occupancy data
PDPA Compliance Requirements for Personnel Tracking
- Consent: Obtain informed consent before collecting personal data via RFID. Employees must know they are being tracked and the purpose.
- Purpose limitation: Data collected for safety purposes cannot be repurposed for performance monitoring without separate consent.
- Data minimisation: Collect only the data you need. If zone-level tracking suffices, don't implement room-level precision.
- Retention limitation: Define and enforce data retention periods. Don't keep location history indefinitely.
- Access and correction: Individuals have the right to access their personal data and request corrections.
- Protection: Implement appropriate security measures — encryption, access controls, audit logs.
- Data Protection Officer (DPO): Designate a DPO responsible for PDPA compliance.
💡 Inventrack & PDPA: Inventrack 6.0 includes built-in PDPA compliance features: configurable data retention policies, role-based access controls, full audit logging, and data anonymisation options for personnel tracking.
3. Industry-Specific Regulations
🏗️ MOM — Workplace Safety & Health
The Ministry of Manpower's Workplace Safety and Health (WSH) Act is relevant when RFID is used for:
- Confined space monitoring: RFID/BLE can track personnel entering/exiting confined spaces — ensuring rescue teams know who is inside
- PPE compliance: RFID-tagged hard hats, harnesses, and safety gear can verify workers have required PPE before entering hazardous zones
- Tool calibration tracking: RFID can enforce calibration schedules for safety-critical equipment like gas detectors and lifting equipment
- Safety zone enforcement: UWB/BLE can create virtual safety zones around dangerous machinery
💊 NEA & HSA — Pharmaceutical & Food
The National Environment Agency (NEA) and Health Sciences Authority (HSA) have requirements relevant to RFID:
- Cold chain compliance: Temperature-sensitive pharmaceuticals and food require continuous cold chain monitoring. RFID temperature logger tags provide auditable proof. See our cold chain solution.
- Traceability: NEA requires food businesses to maintain traceability records. RFID enables automated, tamper-proof chain-of-custody documentation.
- GDP compliance: Good Distribution Practice for pharmaceuticals requires documented handling and storage conditions throughout the supply chain.
🏦 MAS — Financial Asset Tracking
The Monetary Authority of Singapore (MAS) has guidelines relevant to financial institutions using RFID:
- IT asset management: MAS Technology Risk Management (TRM) guidelines require financial institutions to maintain accurate inventories of all IT assets
- Data centre compliance: Physical access controls and asset tracking in data centres must be documented and auditable
- Business continuity: Accurate asset registers support BCP/DR planning as required by MAS
🏥 MOH — Healthcare
Ministry of Health requirements relevant to RFID in healthcare:
- Medical device tracking: Tracking of medical equipment for maintenance scheduling and utilisation optimisation
- Patient safety: Wristband RFID for patient identification, reducing medication errors
- Sterilisation tracking: RFID tags on surgical instruments to ensure proper sterilisation cycles are completed
- See our healthcare industry page for more details.
4. GS1 Singapore Standards
GS1 Singapore is the local office of GS1, the global standards organisation for supply chain visibility. If your RFID deployment involves supply chain, retail, or cross-company data exchange, GS1 standards are essential.
Key GS1 Standards for RFID
- EPC (Electronic Product Code): The standard encoding scheme for UHF RFID tags. Ensures tags are globally unique and interoperable across supply chain partners.
- EPCIS (EPC Information Services): Standard for sharing "what, where, when, why" event data across supply chain partners. Critical for multi-party visibility.
- SGTIN (Serialised Global Trade Item Number): Encodes product identity at item level — essential for pharmaceutical serialisation and retail item-level tracking.
- GIAI (Global Individual Asset Identifier): For unique identification of returnable assets, containers, and equipment across organisations.
- GS1 Digital Link: Emerging standard that bridges physical RFID tags to digital product information via web URIs.
💡 Inventrack & GS1: Inventrack 6.0 supports EPC encoding, SGTIN, GIAI, and EPCIS event publishing out of the box, making it easy to comply with GS1 standards for your supply chain.
5. Compliance Checklist
Need Help With RFID Compliance?
Intensecomp ensures every deployment meets Singapore's regulatory requirements. We handle IMDA approval verification, PDPA compliance features, and GS1 standards.