Audit Retention Policy Template for Singapore

Generate a bespoke document

Trusted by 200k+ teams

4.7 Capterra
4.8 Product Hunt
4.6 Trustpilot

What is a Audit Retention Policy?

An Audit Retention Policy is essential for organizations operating in Singapore to maintain compliance with statutory requirements and professional standards. This document outlines the mandatory retention periods for different types of audit records, specifies storage requirements, and establishes procedures for secure disposal. It addresses requirements under Singapore's Companies Act, which mandates a minimum 5-year retention period for business records, while also incorporating requirements from other relevant legislation such as the Income Tax Act and PDPA. The policy ensures that organizations can effectively manage their audit documentation while meeting their legal obligations and maintaining proper governance standards.

Reviewed by

Swetha Meenal

Legal Engineer, GenieAI

Swetha Meenal profile photo

A lawyer, legal researcher and legal tech founder, Swetha has built AI products deployed inside Tier 1 firms and enterprises. She ensures GenieAI's alignment with the latest regulation and executes testing on the legal robustness of Genie output.

Reviewed by

Imad Mohammed Nazar

Legal Engineer, GenieAI

Imad Mohammed Nazar profile photo

A Skadden-trained M&A lawyer, Imad advised on cross-border transactions and contractual risk before moving into legal AI. He reviews GenieAI's output for compliance and enforceability across our 150+ supported jurisdictions, as well as facilitating external benchmarking.

Jurisdiction

Singapore

Publisher

GenieAI

Sector

Business

Cost

Free to use

Last updated

About the Audit Retention Policy

An Audit Retention Policy is a critical governance document that establishes systematic procedures for retaining, storing, and disposing of audit-related records in your organization. This policy ensures compliance with Singapore's complex regulatory framework while protecting your organization from potential legal and financial risks associated with inadequate record management.

When do you need this document?

You need an Audit Retention Policy if your organization undergoes statutory audits, internal audits, or regulatory reviews in Singapore. Companies required to prepare audited financial statements under the Companies Act must implement comprehensive record retention procedures. Organizations subject to GST audits, income tax investigations, or PDPA compliance reviews also require formal retention policies. Additionally, if your organization works with external auditors or faces potential litigation, having a documented retention policy protects against claims of document destruction or non-compliance. The policy becomes essential when establishing corporate governance frameworks or preparing for regulatory inspections.

Key legal considerations

Your retention policy must address several critical legal aspects to ensure comprehensive compliance. The policy should clearly define different categories of audit records, including financial statements, working papers, correspondence, and supporting documentation, with specific retention periods for each category. Consider data protection obligations under the PDPA, particularly regarding personal data within audit records and secure disposal requirements. Include provisions for litigation holds that suspend normal disposal schedules when legal proceedings are anticipated. Address electronic record management, including backup systems, data integrity measures, and migration procedures for evolving technology platforms. Ensure the policy covers both internal audit documentation and external auditor work papers, as different retention obligations may apply.

Legal requirements in Singapore

Singapore's Companies Act Section 199 mandates that companies maintain proper accounting records for at least 5 years from the end of the relevant financial year, including all financial statements, accounting records, and audit papers. The Income Tax Act Section 67 requires businesses to retain tax returns, supporting documents, and audit-related materials for 5 years from the end of the year of assessment. Under the Goods and Services Tax Act Section 46, GST-registered businesses must maintain all GST-related records, including invoices and audit documentation, for 5 years. The Personal Data Protection Act imposes specific obligations regarding retention and secure disposal of personal data contained in audit records. Additionally, the Institute of Singapore Chartered Accountants (ISCA) sets professional standards for auditor record retention that may extend beyond statutory minimums.

Genie's Security Promise

Genie is the safest place to draft. Here's how we prioritise your privacy and security.

Your data is private:

We do not train on your data; Genie's AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

We are ISO27001 certified, so your data is secure

Organizational security:

You retain IP ownership of your documents and their information

You have full control over your data and who gets to see it