Freight Management
Digitalise information flow in freight forwarding operations that can encompass import and export shipments over air, sea and land.
Instructions
This page helps you prepare "Solution Requirements" section in Vendor Management Portal and you will see the exact questions and flow.
🔴 Mandatory questions: Must answer "Yes" to continue
🟡 Preferred questions: Can answer either way and continue
Follow the question flow as indicated
Q1 🔴 Mandatory - Cloud and Multi-Device Accessibility
Main Question: Does your solution allow for cloud-based, mobile-based, and/or web-based usage?
🔴 Answer: ○ Yes [Next: Q2] ○ No [⚠️ Cannot Proceed]
Q2 🔴 Mandatory - User Role Management
Main Question: Does your solution enable the user to perform administration of user accounts and management of access rights or permissions for modules/functions/features in the solution?
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q3] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q3 🔴 Mandatory - Freight Operations Support
Main Question: Can your solution fulfill EITHER sea freight OR air freight operation?
Please indicate "Yes" for both question number 4 and 5 if your solution can fulfill BOTH requirements.
🔴 Answer: ○ Yes [Next: Q4] ○ No [⚠️ Cannot Proceed]
Q4 🟡 Preferred - Sea Freight Management
Main Question: If your solution support the key processes in sea freight, does the solution cover at least 3 of the functions listed below:
Sea Freight Functions: a. Sea export operation b. Sea import operation c. Sea and air transhipment operation d. Cost computation for specific freight jobs (e.g. integrating carrier rates, port rates, any other relevant charges)
🟡 Answer: ○ Yes [Next: Q5] ○ No [Next: Q5]
Q5 🟡 Preferred - Air Freight Management
Main Question: If your solution support the key processes in air freight, does the solution cover at least 3 of the functions listed below:
Air Freight Functions: a. Air export operation b. Air import operation c. Airway bill management d. Air and sea transhipment operation e. Generation of all other necessary documents required by the airlines, and the freight processes
🟡 Answer: ○ Yes [Next: Q6] ○ No [Next: Q6]
Q6 🔴 Mandatory - Shipment Tracking
Main Question: Does your solution provide users with the visibility of the shipment status (i.e. shipment location)?
🔴 Answer: ○ Yes [Next: Q7] ○ No [⚠️ Cannot Proceed]
Q7 🟡 Preferred - Automated Booking Document Generation
Main Question: Does your solution allow for automated generation of booking document with the respective airline/vessel operators?
🟡 Answer: ○ Yes [Next: Q8] ○ No [Next: Q8]
Q8 🟡 Preferred - Freight Platform Integration
Main Question: Is your solution integrated with other key e-platforms used for the air and/or sea freight?
🟡 Answer: ○ Yes [Next: Q9] ○ No [Next: Q10]
--
Q9 🔴 Mandatory Follow-up - Freight Platform Integration - Elaboration
This question appears only if you answered "Yes" to Q8
Main Question: Please name these e-platforms and specify the extent of integration.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q10] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q10 🔴 Mandatory - Invoice and Quotation Management
Main Question: Does your solution provide either:
Invoice/Quotation Options: a. an Invoice/Quotation Module which enable the company to setup/edit invoice and quotation details b. integration with accounting management software to leverage on its capability to generate invoices
🔴 Answer: ○ Yes [Next: Q11] ○ No [⚠️ Cannot Proceed]
Q11 🟡 Preferred - Invoice Generation or Processing
Main Question: Does your solution generate or process invoices?
🟡 Answer: ○ Yes [Next: Q12] ○ No [Next: Q13]
--
Q12 🔴 Mandatory Follow-up - InvoiceNow-Ready Solution Provider Accreditation
This question appears only if you answered "Yes" to Q11
Main Question: Is your solution listed on IMDA InvoiceNow-Ready Solution Provider (IRSP) Listing?
Requirements: [1] If you are the Product Principal of the solution, you are required to be accredited as an IRSP by IMDA. [2] If you are the reseller of the solution, your Solution Product Principal must declare to IMDA that you are an authorised reseller of their solution.
Additional Information: For more information on InvoiceNow, refer to: Becoming an InvoiceNow-Ready Solution Provider | E-invoicing | IMDA (https://www.imda.gov.sg/how-we-can-help/nationwide-e-invoicing-framework/becoming-an-invoicenow-ready-solution-provider)
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q13] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q13 🟡 Preferred - Accounting Software Integration
Main Question: Can your solution be integrated with accounting management software to provide the following features:
Integration Features: a. General Ledger b. Sales Ledger c. Purchase Ledger d. Invoicing
🟡 Answer: ○ Yes [Next: Q14] ○ No [Next: Q15]
--
Q14 🔴 Mandatory Follow-up - Accounting Software Integration - Elaboration
This question appears only if you answered "Yes" to Q13
Main Question: Please state the accounting management software that your solution can be integrated with.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q15] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q15 🟡 Preferred - Transport and Warehouse Management Integration
Main Question: Can the solution be integrated with transport management system or warehouse management system?
🟡 Answer: ○ Yes [Next: Q16] ○ No [Next: Q17]
--
Q16 🔴 Mandatory Follow-up - Transport and Warehouse Management Integration - Elaboration
This question appears only if you answered "Yes" to Q15
Main Question: Please state the transport and warehouse management systems that can be integrated with your solution.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q17] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q17 🟡 Preferred - NTP Integration
Main Question: Is your solution integrated with NTP? If not, you can contact: [email protected] for further discussion on integration with NTP.
🟡 Answer: ○ Yes [Next: Q18] ○ No [Next: Q18]
Q18 🔴 Mandatory - Dashboards and Reports
Main Question: Can your solution provide dashboards and reporting capabilities to track key metrics, user interactions, operational performance, or other relevant data insights across your digital solution?
Dashboard Requirements: Your digital solution should have one or more dashboards that provide an at-a-glance overview of key metrics/indicators with at least 4 charts/graphs to help users analyse data through data visualisation.
Interactive Features (Must include at least one): Option 1: Interactive charts/graphs that allow users to interact with one chart and apply that interaction as a filter to other charts on the dashboard, and vice versa Option 2: At least three common filters/slicers applicable to ALL charts/graphs on the same dashboard
🔴 Answer: ○ Yes [Next: Q19] ○ No [⚠️ Cannot Proceed]
Q19 🟡 Preferred - AI Features
Main Question: Does your solution incorporate AI in your core features and functions?
🟡 Answer: ○ Yes [Next: Q20] ○ No [Next: Q21]
--
Q20 🔴 Mandatory Follow-up - AI Features - Elaboration
This question appears only if you answered "Yes" to Q19
Main Question: Describe your AI feature and its benefits. Examples are:
AI Feature Examples: a. Generate output, identify items, or provide recommendations based on training models to improve decision-making b. Recognise text, images to shorten time taken for manual inputs of forms c. Others, please specify
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q21] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Q21 🔴 Mandatory - Business Data Extraction
Main Question: Can your solution enable SMEs to efficiently extract business data in various discrete formats such as CSV, XLSX, XML, and TSV?
🔴 Answer: ○ Yes [Next: Q22] ○ No [⚠️ Cannot Proceed]
Q22 🟡 Preferred - Personal Data Collection
Main Question: Does your digital solution collect, use, disclose, process or dispose personal data?
🟡 Answer: ○ Yes [Next: Q23] ○ No [Next: Q25]
--
Q23 🔴 Mandatory Follow-up - Personal Data Protection
This question appears only if you answered "Yes" to Q22
Main Question: Can your solution demonstrate compliance with the following Personal Data Protection requirements?
Compliance Requirements: Digital solutions that collect, use, disclose, process or dispose personal data should incorporate features that support the obligations under the Personal Data Protection Act (2020).
To comply with this requirement, you MUST complete the Personal Data Protection Requirements form at https://go.gov.sg/pdp.
🔴 Answer: ○ Yes [Next: Q24] ○ No [⚠️ Cannot Proceed]
Q24 🔴 Mandatory - Vulnerability Assessment/Penetration Testing (VA/PT)
Main Question: Has your solution undergone a comprehensive security vulnerability assessment/penetration testing (VA/PT) conducted by a qualified third-party within the last 12 months? The scope of the VA/PT must cover network security; application security; data protection measures and access control (if applicable); API security testing (if applicable); Cloud security configuration review (if applicable). Specifically, for web application security, the scope must cover minimally all OWASP Top 10 vulnerabilities.
Submission Requirements: Please submit the VA/PT report (dated maximum 1 year from the checklist submission date). The VA/PT Report must include Executive summary; Detailed findings and risk ratings; Remediation recommendations; Evidence of vulnerability fixes or mitigation plans; Testing methodology used; Scope of assessment; Assessor's qualifications and certifications.
Reseller Requirements: If you are the reseller of the solution, please obtain the VA/PT report from your product principal. SOC 2 Type II report can be accepted if the detailed technical vulnerability assessment results are part of the SOC2 Type II scope.
Qualified Third-Party Definition: [1] Qualified third-party refers to: CREST-certified companies [ https://www.crest-approved.org/members/] or companies with security professional with relevant CREST certifications; Security professionals with recognised certifications such as: Offensive Security Certified Professional (OSCP); EC-Council Certified Penetration Testing Professional (CPENT); GIAC Penetration Tester (GPEN); or other equivalent industry-recognised certifications.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Next: Q25] ○ No [⚠️ Cannot Proceed]
Date of Issue Required: [Date Field]
Upload Supporting Document Required: [File Upload]
Q25 🟡 Preferred - Cybersecurity Compliance - Cyber Essentials Mark (CEM)
Main Question: Are you the Product Principal of the solution that you are submitting for pre-approval?
🟡 Answer: ○ Yes [Next: Q26] ○ No [Next: Q28]
Q26 🟡 Preferred - CEM for Product Principal
Main Question: Has your organisation achieved CSA Cyber Essentials for ICT Vendor Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval?
Compliance Timeline: Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory.
Additional Information: For more information on Cyber Essentials mark, please refer to https://www.csa.gov.sg/cyber-essentials/
🟡 Answer: ○ Yes [Next: Q27] ○ No [Assessment Finished]
--
Q27 🔴 Mandatory Follow-up - CEM for Product Principal - Elaboration
This question appears only if you answered "Yes" to Q26
Main Question: Please specify the following information:
Required Information: i. The certificate demonstrating your organisation has attained Cyber Essentials for ICT Vendors ii. The cybersecurity certification the organisation has met iii. The scope of the certification
Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Assessment Finished] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Date of Issue Required: [Date Field]
Upload Supporting Document Required: [File Upload]
Q28 🟡 Preferred - CEM for Resellers
Main Question: Has your organisation achieved CSA Cyber Essentials Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval?
Compliance Timeline: Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory.
Additional Information: For more information on Cyber Essentials mark, please refer to https://www.csa.gov.sg/cyber-essentials/
🟡 Answer: ○ Yes [Next: Q29] ○ No [Assessment Finished]
--
Q29 🔴 Mandatory Follow-up - CEM for Resellers - Elaboration
This question appears only if you answered "Yes" to Q28
Main Question: Please specify the following information:
Required Information: i. The cybersecurity certification the organisation has met ii. The scope of the certification
Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field.
Click "Yes" to confirm you have completed the instructions.
🔴 Answer: ○ Yes [Assessment Finished] ○ No [⚠️ Cannot Proceed]
Text Elaboration Required: [Text Box for Description/Details]
Date of Issue Required: [Date Field]
Upload Supporting Document Required: [File Upload]
Preparing for submission?
Your submission should contain screenshots and write-ups that clearly demonstrate compliance with each mandatory requirement sub-point. Contact us if you need help.
Last updated