Singapore - Gambling Regulatory Authority

(Section: "Markets and Jurisdictions")

1) The picture of the regime and the role of the GRA

GRA (Gambling Regulatory Authority) is the unified gambling regulator in Singapore. Basic principles:

Limited permissive model with public safety and RG priority.
Two integrated resort areas with casino (IR) as well as lotteries/betting via Singapore Pools are allowed.
Online games for money are not allowed for a wide audience, with the exception of Singapore Pools' strictly licensed remote services (betting/lotteries) when conditions are met.
Network and payment block measures are actively used against unlicensed operators.

2) What is allowed/forbidden

It is authorized

Casinos within IR (land-based licensed properties).
Lotteries and sports betting through Singapore Pools (including approved distance channels).
Entertainment games without a bet-chance-cash prize sign.

It is forbidden

Online casinos/slots/poker and other gambling B2C formats without a Singapore license.
Promotion/mediation in favor of illegal sites; organization of "game rooms" and private sweepstakes.

3) Age, admission and entrance fees

Casino: 21 + (international standard for Singapore).
Lotteries/Pools: 18 +.
For citizens/permanent residence, there is an entrance fee to the casino (daily and annual) - a tool to deter visits. The current sizes are specified in budget/operations planning.

4) Authorities and areas of responsibility

GRA - licensing, technical requirements, audit, sanctions, RG supervision.
NCPG - exclusives/self-exclusions, family exclusions, counseling.
STRO - Receive STR on AML/CFT.
IMDA/communication providers/payment systems - blocking domains, applications and payment routes.
IR Operator/Singapore Pools - License Compliance, Reporting, RG, Marketing Control.

5) Responsible Gambling (RG) and exclusions

Self-exclusion (online/offline), family exceptions, third parties (for debt/bankruptcy triggers) and automatic bans (for example, for recipients of social assistance - according to current rules).
In casinos - visible warnings, behavioral monitoring, "cooling," limits.
Ban on targeting vulnerable groups and minors, control of VIP programs.

6) Advertising and Communications

Severe restrictions on advertising gambling services; you cannot promise "guaranteed winnings," use "without risk," mask the chances.
Materials only in the form and places approved by GRA; strict age-gating and contextual constraints.
Affiliates/Media: responsibility for promoting unlicensed brands; compliance log is required (creatives/URL/dates/target, off-switch process).

7) AML/CFT and data

KYC/CDD/EDD: identity/age verification, sanctions/PEP, SoF/SoW (source of funds/wealth) if necessary.
Transactional monitoring: signals of crushing, rapid "cashing" of chips, collusion; STR escalation in STRO.
Data storage: retention by standards; access at the request of authorities.
Privacy/information security: encryption, segmentation, access control, audit.

8) Technical requirements and supervision

Certification of platforms, RNG/spreadsheet calculations, billing and reporting showcases.
WORM logging of the "contribution/rate → calculation → payment → adjustment" chain; time synchronization (NTP).
CCTV and zone control: box office/cage/table/VIP coverage, regulatory retention, reservation.
Supervision interfaces: secure APIs/uploads, test accounts, SLAs for GRA responses.
DR/BCP: target RPO/RTO, fault tolerance tests; regular pentests/scans.

9) Enforcement and block measures

Network blocking of domains/applications/mirrors as prescribed; platform/hosting sanctions for evasion.

Payment block measures: prohibition of routes to illegal operators, control of "pseudo-merchants."

Checks: on-site inspections, selective IT audits, mystery-shopping, control of advertising and VIP programs.
Sanctions: fines, suspension/cancellation of license, bans on advertising/platforms, aggravated criminal prosecution.

10) Taxes, fees and accounting (high level)

Royalties/fees for casinos and Singapore Pools - by category/volume.
Gambling and corporate taxes - at current rates; separate accounting of IR zones and products.
Accounting: transparent fixation of buy-in/chips/tickets, bonuses/computers, void/cashout; otchetnost↔billing reconciliation.

💡 Specific rates/formulas and sizes of entrance fees for citizens/permanent residence must be clarified before budgeting - they are periodically revised.

11) Road map (playbook)

A) IR casino (operator/provider)

1. Licensing: category, address conditions, room plan, quotas and CCTV coverage.
2. Operations: cash registers/cages, chip accounting, table/slot regulations, VIP policies.
3. RG: exclusions/self-exclusions, staff training, "cooling down" process.
4. AML/CFT: KYC/EDD/SoF, STR procedures, anomaly monitoring.
5. Technique: certifications, WORM logs, DR/BCP, protected APIs in GRA.
6. Advertising: whitelist creatives/channels, compliance magazine, age-gating.

B) Singapore Pools (dist. channels and offline points)

1. Channels: only approved remote products, tight age/geo control.
2. CCM/limits: deposit/rate/time filters, RG messages, self-exclusion.
3. Payments: KYC-compatible routes, anonymous wallet ban; returns/settlements - according to the rules.
4. Advertising: message format, risk warnings, prohibition of "aggressive" inductions.

C) B2B providers (content/platform/IDV/anti-fraud/IS)

1. Compatibility: approved versions, reporting formats, safe-SDK.
2. Contracts: SLA, DPIA/security, escrow/versions, change control.
3. Tools: NGR/GGR showcases, RG/AML signals, anti-bot/anti-collusion, retention monitoring.

12) Compliance checklists

Legal regime

Current license/GRA approval; address conditions are met
Officers assigned: Compliance/AML/RG/Ads/IT-Security
Procedures for GRA prescriptions/block measures (fast off-switch)

AML/KYC & RG

KYC (21 + casino/18 + Pools), sanctions/PEP; SoF/SoW by Trigger
STR procedures in STRO; retention of CUS/logs
Limits/timeout/self-exclusion; banning promo self-excluded

IT/Security

Platform Certification/RNG; WORM logs; NTP
Encryption, RBAC/SoD, secret management; pentests/scans
DR/BCP tests; protected uploads/APIs; CCTV-retention

Advertising/PR

No "guaranteed win "/" no risk"; age-gating
Compliance log (creatives/URL/dates/target)
Instant Recall Procedure

Taxes/Fees/Accounting

Confirmed rates/fees and entrance fees for citizens/permanent residence
Separate accounting buy-in/chips/tickets/bonuses/void/cashout
otchetnost↔billing reconciliation <0.5%; innings calendar ≥99%

13) First year KPI

Fiscal: timely filing ≥99%; discrepancy otchetnost↔billing <0.5%

AML/CFT: mean KYC/EDD time; proportion of valid STRs; reduction of "crushing"

RG: share of guests/accounts with active limits; Self-exclusion TTR <1 min

IS/resilience: MTTR incidents; closing high-vulns on time; successful DR tests

Marketing: 100% compliance with GRA rules; no age-gating violations

14) FAQ

Can I open an online casino for Singaporeans?
No, it isn't. Online casinos/slots/poker for general audiences are prohibited; remote services are limited to the Singapore Pools license.

Do you need an entrance fee for foreigners?
Entrance fees are a tool for regulating visits to citizens/permanent residence. There is a general admission regime for foreign guests (ID-check, 21 +).

Can casinos be advertised outside IR?
Advertising is strictly limited and is only permissible under GRA rules; aggressive inductions, promises of "guaranteed winnings" - are prohibited.

What are the main risks for affiliates?
Domain/payment blocking, fines and criminal consequences for promoting unlicensed services to Singapore audiences.

Ad notata

The practice in terms of entrance fees, advertising restrictions, remote channels and technical specifications is periodically updated. For legally significant decisions, be sure to check the current GRA/NCPG/IMDA documents and financial guidelines for AML/CFT and reporting.