MOVO-X Singapore is built ground-up for Singapore's regulatory environment. Every data store, API, and access control maps to a specific regulatory obligation.
3 days
PDPC breach notification window
7 years
Clinical audit log retention
ap-southeast-1
Singapore-only data residency, no PHI cross-border
DPO on record
dpo.sg@movo-x.com · Registered with PDPC
Personal Data Protection Act 2012 (PDPC Singapore)
Healthcare Services Act 2020 (HCSA)
Monetary Authority of Singapore Technology Risk Management Guidelines
MOH Health Sector Cybersecurity Framework
National Electronic Health Records — MOH Electronic Health Records Act 2011
Information Security Management System
Yes. MOVO-X Singapore is fully compliant with PDPA Singapore 2012. We have a registered DPO with PDPC, consent management built into every patient check-in flow, and mandatory breach notification capability within 3 calendar days.
Yes. NEHR integration is available on the Enterprise tier. All NEHR access is read-only, requires patient consent per MOH NEHR policy, and is logged in a 7-year audit trail.
Yes. MAS TRM guidelines apply to our payment-bearing components (PayNow, NETS, card). We maintain audit logs, access controls, and disaster recovery per MAS TRM requirements.
Contact our Data Protection Officer for access requests, correction requests, or breach notifications.