# Sales Management Integrate core business functions by automating production planning, sales quotation, accounting, and other operational processes, enabling streamlined management of wholesale business activities. **Instructions** * This page helps you prepare "*Solution Requirements*" section in Vendor Management Portal and you will see the exact questions and flow. * 🔴 **Mandatory questions:** Must answer "Yes" to continue * 🟡 **Preferred questions:** Can answer either way and continue * Follow the question flow as indicated **Q1 🔴 Mandatory - Cloud and Multi-Device Accessibility** **Main Question:** Does your solution allow for cloud-based, mobile-based, and/or web-based usage? 🔴 **Answer:** ○ Yes \[Next: Q2] ○ No \[⚠️ Cannot Proceed] *** **Q2 🔴 Mandatory - Sales and Inventory Management** **Main Question:** Does your solution allow businesses to manage sales activities, such as enter quotes, fulfil sales order, create shipment, track prices, apply discounts, and check available inventory? 🔴 **Answer:** ○ Yes \[Next: Q3] ○ No \[⚠️ Cannot Proceed] *** **Q3 🔴 Mandatory - Multi-Channel Sales** **Main Question:** Does your solution allow businesses to take sales orders via various channels (e.g. internet or mobile)? 🔴 **Answer:** ○ Yes \[Next: Q4] ○ No \[⚠️ Cannot Proceed] *** **Q4 🔴 Mandatory - Digital Product Catalogue** **Main Question:** Does your solution enable electronic product catalogue creation with ability for admin or sales person to easily create new products for ordering or customised product catalogues for individual customers? 🔴 **Answer:** ○ Yes \[Next: Q5] ○ No \[⚠️ Cannot Proceed] *** **Q5 🔴 Mandatory - Order Document Generation** **Main Question:** Does your solution have the ability to generate online, email or SMS quotations, confirmation and invoices for orders? 🔴 **Answer:** ○ Yes \[Next: Q6] ○ No \[⚠️ Cannot Proceed] *** **Q6 🔴 Mandatory - Online Order Self-Management** **Main Question:** Does your solution allow online order self-management by customers, such as change of orders, change of timing, in addition to specific requirements? 🔴 **Answer:** ○ Yes \[Next: Q7] ○ No \[⚠️ Cannot Proceed] *** **Q7 🔴 Mandatory - Online Payment Support** **Main Question:** Does your solution provide online payment methods such as NETs, Visa, and MasterCard? 🔴 **Answer:** ○ Yes \[Next: Q8] ○ No \[⚠️ Cannot Proceed] *** **Q8 🟡 Preferred - Business Financing Solutions** **Main Question:** Does your solution offer business financing solutions and allow businesses to compare and determine the optimal financing solutions for their financing needs? 🟡 **Answer:** ○ Yes \[Next: Q9] ○ No \[Next: Q9] *** **Q9 🟡 Preferred - NTP Integration** **Main Question:** Is your solution integrated with NTP? If not, you can contact: for further discussion on integration with NTP 🟡 **Answer:** ○ Yes \[Next: Q10] ○ No \[Next: Q10] *** **Q10 🔴 Mandatory - InvoiceNow-Ready Solution Provider Accreditation** **Main Question:** Is your solution listed on IMDA InvoiceNow-Ready Solution Provider (IRSP) Listing? **Requirements:** \[1] If you are the Product Principal of the solution, you are required to be accredited as an IRSP by IMDA. \[2] If you are the reseller of the solution, your Solution Product Principal must declare to IMDA that you are an authorised reseller of their solution. Note: For more information on InvoiceNow, refer to: Becoming an InvoiceNow-Ready Solution Provider | E-invoicing | IMDA () 🔴 **Answer:** ○ Yes \[Next: Q11] ○ No \[⚠️ Cannot Proceed] *** **Q11 🔴 Mandatory - Dashboards and Reports** **Main Question:** Can your solution provide dashboards and reporting capabilities to track key metrics, user interactions, operational performance, or other relevant data insights across your digital solution? **Technical Requirements:** Your digital solution should have one or more dashboards that provide an at-a-glance overview of key metrics/indicators with at least 4 charts/graphs to help users analyse data through data visualisation. The dashboard must include at least one of the following interactive features: Option 1: Interactive charts/graphs that allow users to interact with one chart and apply that interaction as a filter to other charts on the dashboard, and vice versa Option 2: At least three common filters/slicers applicable to ALL charts/graphs on the same dashboard 🔴 **Answer:** ○ Yes \[Next: Q12] ○ No \[⚠️ Cannot Proceed] *** **Q12 🟡 Preferred - AI Features** **Main Question:** Does your solution incorporate AI in your core features and functions? 🟡 **Answer:** ○ Yes \[Next: Q13] ○ No \[Next: Q14] \-- **Q13 🔴 Mandatory Follow-up - AI Features - Elaboration** *This question appears only if you answered "Yes" to Q12* **Main Question:** Describe your AI feature and its benefits. Examples are: **AI Feature Examples:** (a) Ability to automate routine sales tasks (update forecasts and determine call lists) (b) Ability to automate customer responses, data capture activities and follow-ups (c) Ability to analyse and predict potential conversion of pipelines (d) Others, please specify Click "Yes" to confirm you have completed the instructions. 🔴 **Answer:** ○ Yes \[Next: Q14] ○ No \[⚠️ Cannot Proceed] **Text Elaboration Required:** \[Text Box for Description/Details] *** **Q14 🔴 Mandatory - Business Data Extraction** **Main Question:** Can your solution enable SMEs to efficiently extract business data in various discrete formats such as CSV, XLSX, XML, and TSV? 🔴 **Answer:** ○ Yes \[Next: Q15] ○ No \[⚠️ Cannot Proceed] *** **Q15 🟡 Preferred - Personal Data Collection** **Main Question:** Does your digital solution collect, use, disclose, process or dispose personal data? 🟡 **Answer:** ○ Yes \[Next: Q16] ○ No \[Next: Q18] *** **Q16 🔴 Mandatory - Personal Data Protection** **Main Question:** Can your solution demonstrate compliance with the following Personal Data Protection requirements? **Compliance Requirements:** Digital solutions that collect, use, disclose, process or dispose personal data should incorporate features that support the obligations under the Personal Data Protection Act (2020). To comply with this requirement, you MUST complete the Personal Data Protection Requirements form at . 🔴 **Answer:** ○ Yes \[Next: Q17] ○ No \[⚠️ Cannot Proceed] *** **Q17 🔴 Mandatory - Vulnerability Assessment/Penetration Testing (VA/PT)** **Main Question:** Has your solution undergone a comprehensive security vulnerability assessment/penetration testing (VA/PT) conducted by a qualified third-party within the last 12 months? The scope of the VA/PT must cover network security; application security; data protection measures and access control (if applicable); API security testing (if applicable); Cloud security configuration review (if applicable). Specifically, for web application security, the scope must cover minimally all OWASP Top 10 vulnerabilities. **Submission Requirements:** Please submit the VA/PT report (dated maximum 1 year from the checklist submission date). The VA/PT Report must include Executive summary; Detailed findings and risk ratings; Remediation recommendations; Evidence of vulnerability fixes or mitigation plans; Testing methodology used; Scope of assessment; Assessor's qualifications and certifications. If you are the reseller of the solution, please obtain the VA/PT report from your product principal. SOC 2 Type II report can be accepted if the detailed technical vulnerability assessment results are part of the SOC2 Type II scope. **Note:** \[1] Qualified third-party refers to: CREST-certified companies \[ ] or companies with security professional with relevant CREST certifications; Security professionals with recognised certifications such as: Offensive Security Certified Professional (OSCP); EC-Council Certified Penetration Testing Professional (CPENT); GIAC Penetration Tester (GPEN); or other equivalent industry-recognised certifications. Click "Yes" to confirm you have completed the instructions. 🔴 **Answer:** ○ Yes \[Next: Q18] ○ No \[⚠️ Cannot Proceed] **Date of Issue Required:** \[Date Field]\ **Upload Supporting Document Required:** \[File Upload]\ **Text Elaboration Required:** \[Text Box for Description/Details] *** **Q18 🟡 Preferred - Cybersecurity Compliance - Cyber Essentials Mark (CEM)** **Main Question:** Are you the Product Principal of the solution that you are submitting for pre-approval? 🟡 **Answer:** ○ Yes \[Next: Q19] ○ No \[Next: Q21] *** **Q19 🟡 Preferred - CEM for Product Principal** **Main Question:** Has your organisation achieved CSA Cyber Essentials for ICT Vendor Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval? **Requirements:** Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory. Note: For more information on Cyber Essentials mark, please refer to 🟡 **Answer:** ○ Yes \[Next: Q20] ○ No \[Assessment Finished] *** **Q20 🔴 Mandatory - CEM for Product Principal - Elaboration** **Main Question:** Please specify the following information: **Required Information:** i. The certificate demonstrating your organisation has attained Cyber Essentials for ICT Vendors ii. The cybersecurity certification the organisation has met iii. The scope of the certification Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field. Click "Yes" to confirm you have completed the instructions. 🔴 **Answer:** ○ Yes \[Assessment Finished] ○ No \[⚠️ Cannot Proceed] **Date of Issue Required:** \[Date Field]\ **Upload Supporting Document Required:** \[File Upload]\ **Text Elaboration Required:** \[Text Box for Description/Details] *** **Q21 🟡 Preferred - CEM for Resellers** **Main Question:** Has your organisation achieved CSA Cyber Essentials Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval? **Requirements:** Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory. Note: For more information on Cyber Essentials mark, please refer to 🟡 **Answer:** ○ Yes \[Next: Q22] ○ No \[Assessment Finished] *** **Q22 🔴 Mandatory - CEM for Resellers - Elaboration** **Main Question:** Please specify the following information: **Required Information:** i. The cybersecurity certification the organisation has met ii. The scope of the certification Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field. Click "Yes" to confirm you have completed the instructions. 🔴 **Answer:** ○ Yes \[Assessment Finished] ○ No \[⚠️ Cannot Proceed] **Date of Issue Required:** \[Date Field]\ **Upload Supporting Document Required:** \[File Upload]\ **Text Elaboration Required:** \[Text Box for Description/Details] {% hint style="info" %} **Preparing for submission?** Your submission should contain screenshots and write-ups that clearly demonstrate compliance with each mandatory requirement sub-point. [Contact us](https://form.gov.sg/68117f6fa667a54847523fd2) if you need help. {% endhint %}