Website Development Agreement (Singapore)
This Website Development Agreement ("Agreement") is entered into on [Agreement Date] between:
[Developer Name] (UEN/NRIC: [Developer UEN Or NRIC]) of [Developer Address], Email: [Developer Email] ("Developer");
and
[Client Name] (UEN/NRIC: [Client UEN Or NRIC]) of [Client Address], Email: [Client Email] ("Client").
1. SCOPE OF WORK
The Developer agrees to design, develop, and deliver the following website project ("Project") for the Client: [Project Description].
The Project shall be completed and delivered to the Client for final review by [Project Deadline]. The timeline is contingent on the Client providing content, feedback, and approvals within the agreed timeframes. Delays caused by the Client shall extend the completion date accordingly.
The scope includes [Revisions Included]. Additional revisions beyond the agreed rounds, or requests for new features outside the original scope, will be quoted and charged separately at the Developer's then-current hourly rate.
2. FEES AND PAYMENT MILESTONES
The total project fee is [Total Fee] (excluding GST where applicable). Payment is structured as follows:
Deposit on signing: [Deposit Percent] of total fee
Milestone payment: [Midpoint Percent] upon design approval
Final payment: [Final Percent] upon project delivery and launch
Each milestone payment is due within 7 days of the relevant milestone being reached. The Developer reserves the right to suspend work if payments are overdue by more than 14 days. The website will not be transferred to the Client's hosting or domain until all outstanding payments are received.
Where the Developer is GST-registered under the Goods and Services Tax Act (Cap. 117A), GST at the prevailing rate (currently 9%) will be added to each invoice.
3. INTELLECTUAL PROPERTY
Upon receipt of full and final payment, [IP Ownership]. Until full payment is received, the Developer retains all intellectual property rights in the website and deliverables.
The following third-party components are incorporated into the Project and are subject to their respective licences: [Third Party Components]. The Client is responsible for obtaining and maintaining any commercial licences required for third-party components after project delivery.
The Client warrants that all content, images, text, and materials provided to the Developer for incorporation into the website do not infringe any third-party intellectual property rights. The Client shall indemnify the Developer against any claims arising from Client-supplied content.
The Developer may include a portfolio credit (e.g. 'Website by [Developer Name]') in the website footer unless the Client requests otherwise in writing. The Developer may reference the Project in its portfolio and marketing materials.
4. WARRANTIES AND POST-LAUNCH SUPPORT
The Developer warrants that the website will function materially as described in the scope for a period of [Warranty Period Days] days after launch ("Warranty Period"). During the Warranty Period, the Developer will fix bugs in the custom-developed code at no additional charge. The warranty does not cover: (a) new feature requests; (b) issues arising from third-party plugins or hosting; (c) changes made by the Client or third parties after delivery.
Post-warranty maintenance services will be provided at a monthly retainer of [Maintenance Retainer], covering security updates, backups, and minor content changes as agreed.
5. PDPA AND DATA SECURITY
Where the website collects personal data from end-users, the Client (as data controller) is responsible for compliance with the Personal Data Protection Act 2012 (PDPA), including the provision of a Privacy Policy and compliance with the PDPA's collection, use, and disclosure obligations. The Developer shall implement reasonable technical security measures in the website code but is not responsible for the Client's ongoing PDPA compliance after delivery.
6. LIMITATION OF LIABILITY
The Developer's aggregate liability under this Agreement shall not exceed the total fees paid by the Client under this Agreement. Neither Party shall be liable for indirect, consequential, or loss of profits damages. The Developer is not liable for website downtime, data loss, or security breaches arising from third-party hosting or the Client's own actions after delivery.
7. GOVERNING LAW
This Agreement is governed by the laws of Singapore including the Electronic Transactions Act 2010. Disputes shall be resolved by the Singapore courts or, for claims not exceeding S$30,000, the Small Claims Tribunal.
This Agreement may be signed electronically and such signatures shall be legally binding under the Electronic Transactions Act 2010.
IN WITNESS WHEREOF, the Parties have executed this Website Development Agreement as of the date first written above.
Developer
________________
Signature
Date: ________________
Client
________________
Signature
Date: ________________
What Is a Website Development Agreement (Singapore)?
A Website Development Agreement in Singapore sets out the rights and obligations the parties agree to be bound by.
The agreement typically covers the project scope (wireframes, design mockups, front-end and back-end development, content management system integration, hosting configuration, and user acceptance testing), the development timeline with milestones, the payment schedule tied to deliverables, and the ownership of intellectual property in the completed website. Under Singapore law, copyright in a website (including source code, graphic design, and written content) vests in the author unless a written assignment transfers ownership to the commissioning party. Section 130 of the Copyright Act 2021 governs the ownership and assignment of copyright in works created under a contract for services.
Website development projects in Singapore frequently involve the processing of personal data — user registration, contact forms, payment processing, and analytics tracking. The Personal Data Protection Act 2012 (PDPA) imposes obligations on organisations that collect, use, or disclose personal data through websites. Section 24 of the PDPA requires organisations to implement reasonable security arrangements to protect personal data, and the Personal Data Protection Commission (PDPC) has penalised businesses whose websites suffered data breaches due to inadequate security measures.
A Website Development Agreement differs from a software licensing agreement, a mobile application development agreement, and a digital marketing agreement. Software licensing governs the right to use existing software products. Mobile app development covers native or hybrid applications for iOS and Android platforms. Digital marketing agreements govern online advertising, search engine optimisation, and social media campaigns. Each of these may be ancillary to but distinct from the core website development engagement.
The Competition and Consumer Commission of Singapore (CCCS) and the Consumer Protection (Fair Trading) Act (Cap. 52A) protect clients against unfair practices by developers, including misrepresentation of capabilities, hidden charges, and failure to deliver agreed specifications. Under Singapore law, Section 169 of the Companies Act 1967 (Cap. 50) and Section 8 of the Employment Act 1968 (Cap. 91) govern the core requirements for this type of document.
When Do You Need a Website Development Agreement (Singapore)?
A Website Development Agreement is needed in Singapore whenever a business, organisation, or individual commissions a third party to build or redesign a website.
When a startup or SME engages a freelance developer or agency to build its first corporate website, the agreement defines the scope of deliverables, prevents scope creep, and protects both parties if the project encounters delays or disputes. The Infocomm Media Development Authority (IMDA) administers grants such as the Productivity Solutions Grant (PSG) that subsidise website development costs for qualifying SMEs, and grant conditions often require a written development agreement.
When an e-commerce business commissions a developer to build an online store with payment gateway integration, the agreement must address PCI-DSS compliance for payment card data, the developer's obligations regarding secure coding practices, and liability for data breaches. The Monetary Authority of Singapore (MAS) and the PDPC both impose regulatory expectations on organisations that process payment data through websites.
When a government agency or statutory board procures website development services, the procurement must comply with the Government Procurement Act (Cap. 120) and GeBIZ (Government Electronic Business) tendering procedures. The development agreement incorporates the standard government IT terms and conditions published by the Government Technology Agency (GovTech).
When a business requires ongoing website maintenance, hosting, and content updates after the initial build, the agreement should include a post-launch support schedule specifying response times for bug fixes, security patches, and feature enhancements. Maintenance obligations are a frequent source of disputes in Singapore, and a written agreement reduces ambiguity.
When the website involves the collection of user data — registration forms, cookies, analytics — the agreement should allocate responsibility for PDPA compliance between the client and the developer, including the preparation and implementation of a privacy policy, cookie consent mechanism, and data breach response plan. Under Singapore law, the common-law requirements for a valid contract — offer, acceptance, consideration, and intention to create legal relations — and Section 169 of the Companies Act 1967 (Cap. 50) govern the core requirements for this type of document.
What to Include in Your Website Development Agreement (Singapore)
A well-drafted Singapore Website Development Agreement should include the following elements to protect both the client and the developer.
Parties: The full legal names and Unique Entity Numbers (UEN) of the client and the developer (or development agency). Where the developer is a sole proprietor, the NRIC or FIN number should be recorded.
Project Scope: A detailed specification of the website to be developed, including the number of pages, design requirements (wireframes, mockups, brand guidelines), functionality (CMS integration, e-commerce features, contact forms, user authentication), technology stack (front-end framework, back-end language, database, hosting environment), and third-party integrations (payment gateways, APIs, analytics tools). A well-defined scope prevents disputes over deliverables.
Timeline and Milestones: A project schedule with clearly defined milestones — such as wireframe approval, design sign-off, development completion, user acceptance testing (UAT), and go-live date — and the consequences of delay by either party.
Payment Terms: The total project fee, the payment schedule tied to milestones (typically 30% upfront, 30% on design approval, 30% on UAT completion, 10% on go-live), accepted payment methods, and late payment interest. GST at 9% applies to website development services provided by a GST-registered developer under the Goods and Services Tax Act (Cap. 117A).
Intellectual Property: A clear statement of IP ownership. Under the Copyright Act 2021, copyright in source code and design vests in the developer unless assigned to the client in writing. The agreement should specify whether the client receives full ownership of all IP (including source code) or a licence to use the website. Any pre-existing IP or open-source components used by the developer should be disclosed.
Warranties: The developer's warranties regarding the website's functionality, compatibility with specified browsers and devices, compliance with accessibility standards, and freedom from malware or security vulnerabilities. A warranty period (typically 30 to 90 days post-launch) during which the developer will fix defects at no additional cost should be specified.
PDPA Compliance: Allocation of responsibility for Personal Data Protection Act 2012 compliance, including the development and implementation of a privacy policy, cookie consent banner, data collection forms with consent mechanisms, and technical security measures (SSL/TLS encryption, secure authentication, data encryption at rest). Organisations building websites through forms-legal.com can customise PDPA clauses to match their data processing activities.
Liability: A limitation of liability clause capping the developer's total liability (typically at the total project fee) and excluding liability for indirect, consequential, or economic losses. Mutual indemnities for IP infringement and data breaches should be considered.
Termination: The circumstances under which either party may terminate the agreement — such as material breach, insolvency, or failure to meet milestones — and the consequences of termination, including payment for work completed, return of materials, and IP ownership of partially completed work.
Confidentiality: Mutual obligations to keep project-related information (business plans, pricing strategies, source code, user data) confidential during and after the project.
Governing Law and Dispute Resolution: Singapore law as the governing law, with disputes subject to the jurisdiction of the State Courts or, for larger claims, the High Court of Singapore. Arbitration under the Singapore International Arbitration Centre (SIAC) may be appropriate for cross-border engagements. Under Singapore law, Section 169 of the Companies Act 1967 (Cap. 50) and Section 8 of the Employment Act 1968 (Cap. 91) govern the core requirements for this type of document.
Cite this page
Reference this free template in an article, syllabus, or research note:
Forms Legal. (2026). Website Development Agreement (Singapore) (Singapore) [Legal document template]. Forms Legal. https://forms-legal.com/singapore/business/services/website-development-agreement-singapore
"Website Development Agreement (Singapore) (Singapore)." Forms Legal, 2026, https://forms-legal.com/singapore/business/services/website-development-agreement-singapore.
@misc{formslegal-website-development-agreement-singapore,
author = {{Forms Legal}},
title = {Website Development Agreement (Singapore) (Singapore)},
year = {2026},
howpublished = {\url{https://forms-legal.com/singapore/business/services/website-development-agreement-singapore}},
note = {Free legal document template. Based on Companies Act 1967 (Cap. 50)}
}
Frequently Asked Questions
Under the Copyright Act 2021, copyright in a website — including source code, graphic design, and original content — vests in the author (the developer) unless a written agreement assigns ownership to the commissioning party (the client). Section 130 of the Copyright Act governs the ownership of works created under a contract for services, and Singapore courts have held that the mere payment of a fee does not transfer copyright. Clients who require full ownership of the website IP must include an express written assignment clause in the Website Development Agreement. The assignment should cover all works created during the project, including derivative works, and should be executed as a deed or supported by consideration. Where the developer uses pre-existing code libraries or open-source components, the agreement should identify these components and grant the client a licence to use them.
The Personal Data Protection Act 2012 (PDPA) imposes obligations on organisations that collect, use, or disclose personal data through websites. Section 13 requires consent before collecting personal data, Section 18 limits the use of data to the purposes for which consent was given, and Section 24 mandates reasonable security arrangements. Website developers must implement technical security measures — SSL/TLS encryption, secure authentication protocols, input validation to prevent SQL injection and cross-site scripting, and data encryption at rest — to comply with the PDPA. The Personal Data Protection Commission (PDPC) has penalised organisations whose websites suffered data breaches due to inadequate security. The Website Development Agreement should allocate PDPA compliance responsibilities between the client and the developer, specify the security standards to be implemented, and include a data breach notification procedure.
When a website developer fails to meet the agreed delivery deadline in Singapore, the client's remedies depend on the terms of the Website Development Agreement and general contract law principles under Singapore contract law (based on English common law, received under the Application of English Law Act 1993). If the agreement includes a time-is-of-the-essence clause, the client may terminate the agreement and claim damages for the developer's breach. If time is not of the essence, the client must give the developer reasonable notice to complete the work before terminating. Damages for late delivery may include additional costs incurred by the client (e.g., extended hosting fees, lost revenue from delayed launch) and the cost of engaging a replacement developer. Liquidated damages clauses — specifying a fixed amount per day or week of delay — are enforceable in Singapore provided the amount represents a genuine pre-estimate of loss rather than a penalty.
A website development agreement in Singapore should include a post-launch maintenance clause or, alternatively, reference a separate maintenance agreement. Websites require ongoing updates — security patches, plugin updates, CMS upgrades, content changes, and performance optimisation — after the initial launch. Without a maintenance clause, the developer has no obligation to provide post-launch support once the project is delivered and accepted. The maintenance clause should specify the scope of services (bug fixes, security updates, content updates, feature enhancements), the response times for different priority levels, the monthly or annual maintenance fee, and the term of the maintenance arrangement. The Infocomm Media Development Authority (IMDA) recommends that businesses include maintenance provisions in their IT contracts to protect against security vulnerabilities and ensure business continuity.
Website development services provided by a GST-registered developer in Singapore are subject to Goods and Services Tax at the prevailing rate of 9% under the Goods and Services Tax Act (Cap. 117A). The developer must charge GST on all taxable supplies of services, issue tax invoices to the client, and file GST returns with the Inland Revenue Authority of Singapore (IRAS). Developers whose annual taxable turnover exceeds S$1 million must register for GST. For website development services provided to overseas clients who are outside Singapore at the time of supply, the zero-rating provisions under Section 21(3) of the GST Act may apply, meaning GST is charged at 0%. The client should verify whether the developer is GST-registered and factor the 9% GST into the project budget. Input tax on GST-inclusive invoices may be claimable by GST-registered clients against their own GST output tax.
This template is provided for informational purposes only and does not constitute legal advice. Laws vary by jurisdiction and change over time. Consult a qualified attorney for advice specific to your situation.Full disclaimer
Found an error? Let us knowRelated Documents
You may also find these documents useful:
Mobile App Development Agreement (Singapore)
A contract for mobile application development covering iOS and Android platforms, intellectual property assignment under Singapore's Copyright Act 2021, app store compliance, PDPA data handling obligations, and payment milestones. Suitable for startups, enterprises, and agencies commissioning mobile apps in Singapore.
Digital Marketing Agreement (Singapore)
A Digital Marketing Agreement governs the provision of digital marketing, SEO, social media management, and online advertising services in Singapore. It covers service scope, performance metrics, IP ownership of creative content, PDPA 2012 data processing obligations, and IMDA guidelines on digital advertising.
Data Processing Agreement (Singapore)
A Data Processing Agreement (DPA) governing the processing of personal data by a third-party processor on behalf of an organisation, compliant with the Personal Data Protection Act 2012 (PDPA). Establishes processor obligations, data handling standards, and breach notification requirements under the PDPA as amended by the Personal Data Protection (Amendment) Act 2020.
Privacy Policy (Singapore)
A PDPA 2012-compliant privacy policy for businesses operating in Singapore. Addresses the Personal Data Protection Commission's (PDPC) nine data protection obligations, mandatory data breach notification under s.26D, consent requirements, purpose limitation, data retention, and the Do Not Call Registry provisions. Suitable for websites, apps, and physical businesses collecting personal data.
Terms of Service (Singapore)
Website and app terms of service governed by Singapore law for businesses offering digital services in Singapore. Covers user obligations, intellectual property, limitation of liability under the Unfair Contract Terms Act, dispute resolution, and compliance with the Electronic Transactions Act 2010 and Computer Misuse Act. Suitable for SaaS platforms, marketplaces, and content websites.