> For the complete documentation index, see [llms.txt](https://docs.corppass.gov.sg/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.corppass.gov.sg/products/corppass-login/key-principles.md). # Key Principles ### Authentication and Authorisation #### Use Corppass Login as an authentication and authorisation service * Corppass Login should be used to verify both the identity of the user and their authorised role / permissions for the digital service. #### User identification using UUID * While Corppass provides both NRIC/FIN and UUID, digital services are recommended to use the Universally Unique Identifier (UUID) to identify users. * UUID avoids handling sensitive NRIC/FIN information and provides a stable, privacy-friendly identifier for authentication and authorisation. #### Alternative login options * Where feasible, offer support for users who may require non-Corppass login options to access your service. *** ### Data Use and Compliance #### Comply with PDPA and applicable legislation * Protect, retain and transfer any data retrieved according to the Personal Data Protection Act (PDPA), relevant industry regulations and applicable legislation. * For collection of National Identification Numbers, refer to the advisory guidelines from PDPC [here](https://www.pdpc.gov.sg/-/media/Files/PDPC/PDF-Files/Advisory-Guidelines/Advisory-Guidelines-for-NRIC-Numbers---310818.pdf). #### Use data and credentials for lawful purposes * Ensure that any access or usage of Corppass credentials and retrieved data is strictly for authorised and lawful purposes. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.corppass.gov.sg/products/corppass-login/key-principles.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.