38B.—(1) Subject to paragraph (3), an individual must authenticate the individual’s identity using Singpass in order to access the electronic system to carry out an online transaction involving the individual.
(2) Subject to paragraph (3), a person who is authorised by an entity to carry out through the electronic system an online transaction involving the entity, must authenticate the identity of the entity using Corppass in order to access the electronic system to carry out that transaction for the entity.
(3) The Registrar may, on application by an individual who is unable to authenticate the individual’s identity using Singpass, issue the individual with SYCPass credentials to enable the individual to access the electronic system using SYCPass to carry out an online transaction involving the individual.
(4) An individual who is issued SYCPass credentials under paragraph (3) —
(a)
must ensure the confidentiality and security of the SYCPass credentials; and
(b)
must not —
(i)
divulge the SYCPass credentials to any other person; or
(ii)
permit any other person to use the SYCPass credentials.
(5) An individual must not facilitate the use, by any other person, of the individual’s Singpass credentials or SYCPass credentials to access the electronic system.
(6) An entity must not facilitate the use, by any unauthorised person, of the Corppass credentials of the entity to access the electronic system.