Artifact GuideSingaporeDNC Marketing Checks

Singapore PDPA DNC Marketing Checks

Before sending specified marketing messages to Singapore telephone numbers, teams need a campaign record that shows the DNC account used, the numbers checked, the channel-specific register status, and whether consent evidence was used instead of a DNC clearance.

This page turns PDPC and DNC Registry guidance into operating language for marketing, sales operations, privacy, and vendor teams. This guidance is practical, source-linked, and should be validated against current legal and policy requirements before implementation.

Back to main artifactReview sources
Author
Sorena AI
Published
May 9, 2026
Updated
May 9, 2026
Sections
4

Structured answer sets in this page tree.

Primary sources
4

Cited legal and guidance references.

Publication metadata
Sorena AI
Published May 9, 2026
Updated May 9, 2026
Overview

Use this page as a launch checklist for Singapore PDPA DNC marketing checks. It focuses on the records a campaign owner should keep before voice, text, or fax telemarketing goes live: DNC Registry account evidence, relevant register status, result validity, consent evidence, sender responsibility, and when a new check is supported by the source material.

Section 1

When a campaign needs a DNC marketing check

Start with the message, not the audience list label. Under PDPC guidance, a commercial marketing message to a Singapore telephone number is generally a specified message when one purpose is to advertise, promote, or offer goods, services, land, an interest in land, a business opportunity, or an investment opportunity.

For each campaign, record whether the message will be sent by voice call, text channel, fax, or a data application that uses a Singapore telephone number. If the team is relying on clear and unambiguous consent instead of checking the DNC Registry, keep the consent evidence in the same launch record and make the approval say exactly which sender, number, channel, and message category the consent covers.

  • Classify the message as specified, excluded from specified-message treatment, or blocked for legal review because the purpose is unclear.
  • Identify every sender: the brand, business unit, agency, call centre, or platform that sends, causes, or authorises the message.
  • Separate voice, text, and fax channels because the DNC Regulations define separate No Voice Call, No Text Message, and No Fax Message Registers.
  • Do not treat a request for telemarketing consent sent to a Singapore telephone number as outside DNC controls; PDPC guidance treats offers to send specified messages as specified messages.
Sources for this answer
Advisory Guidelines on the Do Not Call Provisions
Supports the duty to check the DNC Register before sending specified messages unless clear and unambiguous consent in evidential form is available.
Personal Data Protection (Do Not Call Registry) Regulations 2013
Defines the No Voice Call, No Text Message, and No Fax Message Registers used for channel-specific DNC status checks.
Section 2

Account and sub-account evidence to keep

The DNC Registry business rules distinguish the main account from sub-accounts. A useful campaign file should show which main account was used, which sub-account or user submitted the check, and whether the checker was acting for its own organisation or on behalf of another organisation.

For agency, reseller, group-company, or outsourced call-centre launches, keep the on-behalf evidence with the DNC check output. The campaign owner should be able to show who authorised the marketing, who submitted the DNC check, and which organisation names were declared for on-behalf checking at the time of submission.

  • Record the main account holder, sub-account user, submission timestamp, campaign owner, and approving privacy or legal reviewer.
  • For Singapore-registered organisations, keep the UEN or account registration evidence used for DNC account administration; for overseas organisations, keep the company registration evidence used for the account.
  • For on-behalf checks, retain the downloaded On Behalf List or equivalent export with the campaign record.
  • Do not approve a vendor-sent campaign unless the record names both the business authorising the message and the vendor or call centre that will send it.
Sources for this answer
Do Not Call Registry Business Rules
Supports keeping main-account and sub-account evidence because the DNC Registry account model allows one main account and sub-accounts for multiple users.
Do Not Call Registry Business Rules
Supports on-behalf evidence because bulk filtering output includes an On Behalf List for organisations covered by the submission.
Advisory Guidelines on the Do Not Call Provisions
Supports naming both business and vendor senders because PDPC guidance treats persons who send, cause, or authorise specified messages as responsible senders.
Section 3

How to use DNC check results

The campaign approval should store the submitted list, rejected-number report, filtered-number output, summary, and any on-behalf export. The business rules say submitted telephone numbers are checked against all three DNC Registers, but the launch decision should still compare the campaign channel with the relevant register status: voice campaign to No Voice Call, SMS or MMS campaign to No Text Message, and fax campaign to No Fax Message.

Treat the 21-day validity window as a ceiling, not a general review cadence. A result supports telemarketing activity only while the returned result remains valid and while the campaign facts still match the checked list, sender, channel, and message. If the validity period has lapsed and the organisation intends to continue telemarketing, perform another DNC check.

  • Accept only Singapore telephone numbers in the DNC submission format supported by the Registry and keep rejected-number reasons out of the approved send list.
  • For Small Number Lookup, retain the immediate result; for Bulk Filtering, retain the downloaded filtered numbers, summary, on-behalf list, and rejected numbers files.
  • Block channel sends where the relevant register status says the number is listed and no clear, unambiguous, channel-specific consent evidence is being relied on.
  • Re-check only where supported by the operational facts: the 21-day result period has lapsed, the number list changed, rejected numbers were corrected and resubmitted, or the team no longer has the consent evidence it planned to rely on.
Sources for this answer
Do Not Call Registry Business Rules
Supports retaining DNC output files because bulk filtering provides filtered-number, summary, on-behalf, and rejected-number files.
Do Not Call Registry Business Rules
Supports channel-status review because DNC submissions are checked against all three DNC Registers.
Do Not Call Registry Business Rules
Supports the 21-day result-validity window and re-checking after the window lapses if telemarketing continues.
Recommended next step

Turn DNC checks into campaign launch evidence

Use Sorena to capture Singapore PDPA DNC account evidence, register results, consent proof, sender ownership, and re-check triggers before marketing campaigns go live.

Assessment workflow
Open Assessment Autopilot for Singapore PDPA

Convert DNC campaign facts into evidence fields, owners, and approval tasks.

Explore next step
Research workflow
Review DNC source evidence

Use Research Copilot to answer follow-up DNC questions with cited PDPC and DNC Registry material.

Explore next step
Talk to Sorena
Talk through DNC implementation

Review account setup, consent evidence, register results, and campaign owner records with Sorena.

Explore next step
Primary sources

References and citations

Advisory Guidelines on the Do Not Call Provisions
pdpc.gov.sg
Referenced sections
  • Supports requiring third-party source evidence when the sender obtains Singapore telephone numbers from a referrer or list source.
"could obtain from B evidence of clear and unambiguous consent"
Do Not Call Registry Business Rules
dnc.gov.sg
Referenced sections
  • Supports the 21-day result-validity window and re-checking after the window lapses if telemarketing continues.
"Results returned from the DNC Registry are valid for up to 21 days."
Do Not Call Registry Business Rules
pdpc.gov.sg
Referenced sections
  • Supports retaining DNC output files because bulk filtering provides filtered-number, summary, on-behalf, and rejected-number files.
"The following files will be available for download"
Related guides

Explore more topics

Singapore PDPA Anonymisation and DPIA Records
Build Singapore PDPA anonymisation and DPIA records around PDPC guidance: release model, re-identification risk, data flows, action plans, safeguards, and monitoring.
Singapore PDPA anonymisation FAQ
FAQ on anonymisation under the Singapore PDPA: de-identification, pseudonymisation, re-identification risk, when PDPA may no longer apply, and evidence records.
Singapore PDPA Applicability Test
Test whether Singapore PDPA obligations apply by checking personal data, organisation role, data intermediary status, public agency and individual boundaries, and business contact information.
Singapore PDPA Breach Notification Playbook
A grounded Singapore PDPA breach-notification playbook covering assessment, notifiable-breach thresholds, PDPC and affected-individual notification steps, roles, records, and citations.
Singapore PDPA breach notification thresholds FAQ
FAQ on Singapore PDPA notifiable data breach tests: significant harm, significant scale, 500 affected individuals, assessment timing, PDPC notices, and affected-individual notices.
Singapore PDPA Breach Notification Workflow
A grounded Singapore PDPA workflow for containing a personal data breach, assessing notifiability, notifying PDPC or affected individuals, and retaining evidence.
Singapore PDPA Compliance Checklist
A grounded Singapore PDPA checklist for scope, DPO accountability, consent, data intermediaries, breach notification, DNC checks, transfers, and evidence records.
Singapore PDPA Compliance Guide
Build a Singapore PDPA compliance plan covering DPO accountability, consent and notification, protection, retention, access and correction, transfers, breach notification, and DNC checks.
Singapore PDPA Consent and Deemed Consent Workflow
Choose express consent, deemed consent by conduct, contractual necessity, notification, or the legitimate interests exception under Singapore PDPA with grounded intake fields and evidence records.
Singapore PDPA Consent, Notification and Purpose Rules
How Singapore PDPA consent, notification, purpose limitation, deemed consent, withdrawal, and consent exceptions should be handled in product and privacy workflows.
Singapore PDPA Cross-Border Transfers
Grounded Singapore PDPA guidance for overseas personal data transfers, comparable protection, ASEAN MCCs, APEC certifications, vendor roles, and evidence records.
Singapore PDPA Data Breach Notification Thresholds
Grounded Singapore PDPA breach notification thresholds covering significant harm, the 500-individual significant-scale test, assessment records, and notification timing.
Singapore PDPA Data Intermediaries FAQ
FAQ guidance on Singapore PDPA data intermediary roles, direct obligations, organisation accountability, contracts, retention, protection, and breach escalation.
Singapore PDPA Data Intermediary Responsibilities
Practical Singapore PDPA guide to data intermediary role boundaries, organisation accountability, protection, retention, breach escalation, and contract evidence.
Singapore PDPA Deadlines and Compliance Calendar
A grounded Singapore PDPA compliance calendar for breach notification, DNC checks, access and correction requests, retention reviews, and DPMP maintenance.
Singapore PDPA Deemed Consent and Legitimate Interests
How to apply Singapore PDPA deemed consent by conduct, contractual necessity, notification, and legitimate interests with opt-out, adverse-effect, disclosure, and assessment records.
Singapore PDPA Deemed Consent FAQ
FAQ on Singapore PDPA deemed consent by conduct, contractual necessity, notification, opt-out periods, adverse-effect assessment, withdrawal, and direct-marketing limits.
Singapore PDPA DNC and Marketing Messages Guide
A grounded Singapore PDPA guide to DNC checks, specified marketing messages, Singapore telephone numbers, consent evidence, opt-outs, sender duties, and excluded messages.
Singapore PDPA DNC checking FAQ: when to check the DNC Registry
FAQ guidance on Singapore PDPA DNC checking: when to check the DNC Registry, which registers apply, 8-digit numbers, 21-day result validity, consent evidence, on-behalf checks, opt-outs, and supported exclusions.
Singapore PDPA DNC Marketing Workflow
Workflow for Singapore PDPA DNC marketing campaigns: classify specified messages, check Singapore telephone numbers, document consent, suppress opt-outs, and approve sends.
Singapore PDPA DPIAs: when to run and what to document
FAQ-style implementation guidance on Singapore PDPA DPIAs, including when PDPC guidance recommends them, data-flow mapping, risk treatment, DPO review, and evidence records.
Singapore PDPA DPMP Accountability FAQ | DPO, Policies, Evidence
FAQ for implementing Singapore PDPA accountability through a DPMP: DPO designation, policies, evidence, training, monitoring, incident logs, and review records.
Singapore PDPA DPMP Accountability Guide
Build a Singapore PDPA Data Protection Management Programme with DPO ownership, policies, data inventories, DPIAs, training, monitoring, breach logs, and review records.
Singapore PDPA FAQ: scope, DPO, consent, breaches and DNC
FAQ answers for Singapore PDPA implementation, covering scope, accountability, consent, access and correction, security, retention, transfers, data intermediaries, breach notification, and DNC checks.
Singapore PDPA legitimate interests FAQ
FAQ guidance on Singapore PDPA legitimate interests: assessment fields, adverse effects, mitigation, balancing, disclosure, records, and marketing limits.
Singapore PDPA NRIC Handling FAQ
FAQ guidance on when Singapore organisations may collect, use, disclose, retain, mask, or replace NRIC and other national identification numbers under PDPC guidance.
Singapore PDPA NRIC Handling Rules
When Singapore organisations may collect, use, disclose, retain, mask, or replace NRIC numbers under PDPC guidance.
Singapore PDPA Penalties and Enforcement Cases
How PDPC enforcement under Singapore's PDPA works: directions, voluntary undertakings, published decisions, financial penalty caps, and implementation lessons from cases.
Singapore PDPA Penalties and Fines
Singapore PDPA penalty ceilings, PDPC directions, undertakings, breach notification context, and practical controls grounded in official PDPC and Singapore Statutes sources.
Singapore PDPA Privacy Policy Template
A Singapore PDPA privacy policy template for writing notices, DPO contact details, access and correction routes, retention, transfers, protection, withdrawal, and complaint handling without overclaiming compliance.
Singapore PDPA Requirements: Core Obligations
Map Singapore PDPA obligations across consent, notification, access, security, retention, transfers, accountability, breaches, DNC checks, and data intermediaries.
Singapore PDPA Scope, Exclusions, and Data Intermediaries
Classify Singapore PDPA coverage, business contact information, personal or domestic activity, employee acts, and data intermediary obligations with grounded implementation records.
Singapore PDPA Transfer Assessment Workflow
A Singapore PDPA workflow for assessing overseas personal data transfers, comparable protection, ASEAN MCCs, APEC CBPR/PRP certifications, vendor due diligence, onward transfers, and evidence records.
Singapore PDPA Transfer Clauses
Draft Singapore PDPA transfer clauses for overseas vendors, affiliates, data intermediaries, onward transfers, breach support, ASEAN MCCs, and APEC CBPR or PRP evidence.
Singapore PDPA transfer clauses FAQ
FAQ guidance on Singapore PDPA transfer clauses, comparable protection, ASEAN MCCs, APEC CBPR and PRP certifications, onward transfers, and evidence records.
Singapore PDPA Vendor Outsourcing and Contracts
Contract and operating checklist for Singapore PDPA vendor outsourcing: data intermediary status, written terms, security, retention, breach, transfers, sub-contracting, and exit evidence.
Singapore PDPA vs GDPR Comparison
Compare Singapore PDPA and GDPR implementation work across consent, DPO accountability, processors, transfers, breach notification, DNC marketing, rights, retention, and penalties.