A technology consultancy in Singapore delivers a custom inventory management system for a mid-sized retailer. The system goes live in November, ahead of the year-end peak trading period. Three weeks in, a data synchronisation error causes the stock figures displayed to clients to diverge from actual warehouse stock. The retailer oversells products it does not have, issues refunds, and loses the peak-period revenue it had planned for. The retailer's loss runs to several hundred thousand dollars. They hold the consultancy responsible.
The consultancy's standard professional indemnity policy, arranged when the business was primarily doing consulting work, contains an exclusion for claims arising from software products. The policy was never updated when the business moved into systems delivery. The claim has nowhere to go.
This scenario illustrates the most common gap in technology company insurance in Singapore: a policy that does not match what the business actually does.
What technology liability insurance is
Technology liability insurance, sometimes called technology professional indemnity or tech errors and omissions (Tech E&O) insurance, is a specialist professional indemnity policy designed for companies that provide technology products, services, or both.
Standard professional indemnity insurance was built for advice-giving professions: lawyers, accountants, consultants, architects. It responds where a client suffers financial loss because a professional gave negligent advice or made an error in the course of providing a service. The key word is advice.
Technology companies do not only give advice. They build things. They deliver software, configure systems, integrate platforms, provide managed services, and develop products that clients depend on operationally. When one of those deliverables fails, the loss to the client is not just from bad advice. It is from a product or system that did not work as specified.
A standard PI policy is often not written to respond to claims arising from a software defect, a system failure, or a product that does not perform to specification. Technology liability insurance specifically addresses this gap. It is built for the risk profile of companies whose primary output is technology.
What it covers
A technology liability policy typically covers the following categories of claim.
Professional negligence and errors and omissions. A claim that the technology company made an error in the design, development, implementation, or management of a system or service that caused the client a financial loss. This is the equivalent of the standard PI cover, applied to technology work.
Software defects and system failures. Where a software product or system the company delivered contains a defect that causes the client's operations to be disrupted or their data to be lost, the policy responds to the resulting claim. This is the extension that a standard PI policy often does not provide.
Failure to deliver to specification. Where the company undertook to deliver a system or product with defined capabilities and the deliverable does not meet those specifications, the client may have a claim for the gap between what was promised and what was delivered.
Data loss or corruption. Where the company's work results in the client's data being lost, corrupted, or rendered inaccessible, the resulting claim is covered. This is particularly relevant for managed service providers, cloud migration specialists, and database developers.
Intellectual property infringement. Where the company's code, system, or deliverable incorporates third-party intellectual property without authorisation, or infringes a client's existing IP, the resulting claim is within scope under most technology liability policies.
Unintentional breach of confidentiality. Where the company's work exposes client confidential information to unauthorised parties, not as the result of a cyber attack but as a result of an error in the work itself, the policy responds.
Who needs it in Singapore
The category of businesses that need technology liability cover in Singapore is broader than most technology business owners initially assume.
Software development companies. Building custom applications, platforms, or systems for clients is the clearest case. The deliverable is the product, and any defect in it creates a liability.
IT consultancies and systems integrators. Companies that design, configure, and implement technology solutions for clients carry liability for the design and the integration, even where the underlying components are third-party products.
Managed service providers (MSPs). A business that takes on the management of a client's IT infrastructure, cloud environment, or security posture carries ongoing operational liability. A failure in the managed environment, even one caused by a third-party product, can create a claim against the MSP if the failure was within their scope of management.
SaaS and product companies. A company that delivers software as a service carries liability for the performance and availability of that service. Service level agreement (SLA) failures, data loss events, and platform outages all create potential claims from enterprise clients.
Technology consultancies. Advisory firms that provide technology strategy, architecture advice, or vendor selection guidance carry professional liability for the recommendations they make. If a client implements a technology stack based on the consultancy's recommendation and it fails to deliver the expected outcomes, the consultancy faces exposure.
IT staffing and outsourcing businesses. Companies that provide technology personnel on a contract or outsourcing basis carry liability for the work those personnel perform at client sites.
The contractual trigger: when clients require it
One of the most practical reasons Singapore technology companies arrange technology liability cover is because clients require it as a contractual condition.
The MAS Technology Risk Management (TRM) Guidelines impose requirements on Financial Institutions (FIs) regarding their technology vendors. In practice, this means banks, insurers, payment processors, and other MAS-regulated entities operating in Singapore routinely require their technology vendors to hold technology professional indemnity insurance, often at a specified minimum limit, before a contract is executed.
The same requirement has migrated into procurement by large non-financial corporates, government-linked companies, and statutory boards. A technology company that cannot produce evidence of adequate PI cover when a contract requires it loses the contract. This is increasingly a commercial reality for Singapore technology businesses looking to scale into enterprise or government work.
The MAS Notice on Technology Risk Management took effect on 10 May 2024, with legally binding requirements on critical system availability and incident notification for regulated financial institutions. Vendors supporting these institutions face heightened expectations accordingly.
The retroactive date: the detail that matters most
For a claims-made policy, which is how technology liability insurance is typically written, the retroactive date determines how far back the cover extends. A client can bring a claim for work done years ago. The policy that responds is the one in force when the claim is made, not when the work was done.
But if the retroactive date on the current policy is set to the policy inception date, work done before that date is not covered, even if the policy is currently in force. A technology company that switches insurers and accepts a retroactive date of the new policy's start date may have a gap covering all its prior work.
When arranging or reviewing technology liability cover, the retroactive date should go back to when the company first started providing technology services. Where a prior insurer is involved, the continuity of the retroactive date across the transition is a critical point to confirm.
A note on the defence costs question
Most PI policies are structured in one of two ways: defence costs included within the limit of indemnity, or defence costs paid in addition to the limit. The distinction matters significantly in practice.
If defence costs are included within the limit, legal fees incurred defending a claim reduce the amount available for damages. In a case that runs to a full trial, legal costs can easily absorb a significant portion of the limit before any damages are paid. A policy that pays defence costs in addition to the indemnity limit preserves the full limit for the compensation element of any claim.
You can read more about our professional indemnity cover on the products page, and about the broader picture of how technology liability sits alongside cyber cover in our post on Technology Liability Insurance in Singapore.
If you provide technology services or products and would like to understand whether your current PI cover actually responds to your work, we would be glad to review it with you.
This article provides general information only. It is not insurance advice. Policy availability, terms, conditions, and exclusions vary by insurer and product, and cover is subject to the full policy wording. Please contact TZY CO for advice on your specific situation.