Singapore's Infocomm Media Development Authority commences age-assurance obligations under the Code of Practice for Online Safety for App Distribution Services on 1 April 2026, requiring the Apple App Store, Google Play Store, Huawei AppGallery, Microsoft Store and Samsung Galaxy Store to verify, estimate or infer user age and restrict under-18 access to age-inappropriate apps.

On 1 April 2026, the Infocomm Media Development Authority (IMDA) of Singapore commences the age-assurance obligations under the Code of Practice for Online Safety for App Distribution Services. From that date, every designated app distribution service must implement age-assurance measures to determine whether users on the platform are under 18 and, if so, to restrict them from accessing or downloading apps rated above their age. Five platforms are designated: the Apple App Store, Google Play Store, Huawei AppGallery, Microsoft Store, and Samsung Galaxy Store.

The Code itself was issued by IMDA on 15 January 2025 and took effect on 31 March 2025; the 1 April 2026 step adds the age-assurance requirements that follow the IMDA's October 2024 public consultation with the designated services. The statutory anchor is the Broadcasting Act 1994 as amended by the Online Safety (Miscellaneous Amendments) Act 2022 (in force 1 February 2023), which created Part 10A regulating Online Communication Services.

The regulatory rationale, set out in the IMDA "Keeping Young Users Safe Online" page and the press release of 15 January 2025, is that app distribution services have become primary gateways to digital content for children, and the existing physical-world age safeguards (film classification, alcohol purchase limits, venue entry rules) need a digital counterpart. The IMDA presents Singapore as an early mover in mandating ADS-level age assurance.

The mechanism is concrete. Designated services may use any of three approaches: age verification (Singpass, identity card or passport date-of-birth check); age estimation (face or voice analysis using artificial intelligence); or age inference (account history, usage patterns, credit-card ownership and similar signals). Personal Data Protection Act 2012 obligations apply throughout — services must obtain consent, must not collect excessive data, and may not repurpose age-check data without further consent.

The RegLegBrief Specialist Panel considered the IMDA "Keeping Young Users Safe Online" landing page alongside the press release of 15 January 2025, the Code of Practice for Online Safety text, the Online Safety (Miscellaneous Amendments) Act 2022 and the Broadcasting Act 1994 itself, and the IMDA "Enhancing Online Safety in Singapore" overview. Together these documents establish the statutory chain — Broadcasting Act → 2022 amendment Part 10A → 2025 ADS Code → 1 April 2026 age-assurance commencement — under which designated platforms now operate.

Looking outward, the Specialist Panel finds three near-contemporaneous international comparators. The United Kingdom's Online Safety Act 2023 (Royal Assent 26 October 2023), supplemented by Ofcom's Protection of Children Codes of Practice published 24 April 2025, requires services to implement Highly Effective Age Assurance by 25 July 2025; non-compliance attracts fines of up to £18 million or 10 per cent of global turnover. Australia's Online Safety Amendment (Social Media Minimum Age) Act 2024, passed 29 November 2024 and in force from 10 December 2025, prohibits under-16s from holding social media accounts, with fines up to A$49.5 million. The European Union's Digital Services Act sits over both, addressing systemic risk to minors at the very-large-platform level.

The Specialist Panel notes that Singapore's design diverges architecturally from the comparator cohort. The IMDA approach regulates the distribution layer (the app stores) under-18 rather than the content-service layer (the United Kingdom) or the social-media-account layer (Australia). The eSafety Commissioner's Age Assurance Technology Trial of September 2025 informed the Australian regulatory guidance and indirectly shapes industry capability that Singapore-designated services can draw on.

The 1 April 2026 commencement directly engages designated app distribution services operating in Singapore (the five named platforms), Online Communication Services regulated under Part 10A of the Broadcasting Act 1994, Data Protection Officers appointed under the Personal Data Protection Act 2012 by those services, age-assurance technology vendors offering biometric face- or voice-based estimation and Singpass-integrated identity verification, compliance officers and Chief Information Security Officers of MAS-regulated digital businesses operating in-app commerce, and legal practitioners admitted to the Singapore Bar advising on Broadcasting Act compliance.

The operational delta is precise. Designated services must implement age-assurance gates at app discovery, download and (where applicable) in-app purchase points; submit an implementation plan to IMDA; and maintain transparency reports comparable to those required of social-media services under the July 2023 Code. Non-compliance with the Code may attract a fine of up to S$1 million or directions under the Broadcasting Act.

Second-order consequences may include repricing of app-marketplace contracts where age-restricted reach is monetisation-relevant, recalibration of in-app purchase flows for under-18 users, and pressure on age-assurance vendor ecosystems to accept Singpass federation as a verification anchor.

The age-assurance obligations under the Code take effect on 1 April 2026. Designated app distribution services should finalise their IMDA-submitted implementation plans, deploy at least one of the three age-check methods at the discovery and download points, document Personal Data Protection Act 2012 compliance for any biometric data processed, and prepare for transparency reporting cycles. This regulatory development is preserved and cited by RegLegBrief at reglegbrief.com/cite/RLB-SG-2026-00054.