In the course of conducting its business and providing its services, the Company may gather and process personal data.
These can include personal data (any information that can or will lead to identifying you) from customers, suppliers, business contacts, employees, representatives, partners, agencies, authorities, contracting parties, III parties, and other individuals the organisation has a relationship with or may need to contact.
This policy describes how this personal data must be collected, used, disclosed, stored, protected to meet the Company’s data protection standards and to comply with the Personal Data Protection Act 2012 of Singapore (PDPA).
The contents of this policy may be updated from time to time and individuals providing personal data should revisit this policy at least once every quarter.
This Policy is available on request. A version of this statement is also available on the Company’s website.
By interacting with, submitting information to, or signing up with us for products or services offered by us, you agree and consent to the Company (including their related corporations and overseas branches and offices) (collectively, the “Company”), as well as their respective representatives and/or agents (“Representatives”) (the Company and Representatives are collectively referred to herein as “us”, “we”, or “our”) collecting, using, disclosing and sharing amongst themselves your Personal data, and disclosing such Personal data to the Company’s authorised service providers and relevant third parties in the manner set forth in this Data Protection Policy.
It applies to all data that the company holds relating to identifiable individuals, even if that information technically falls outside of PDPA.
We only collect data necessary for fulfilling our product / service requirements. By submitting you data, you are deemed to have given your consent to our collection, use, disclosure, and storage of your personal data. Please let us know if you wish to withdraw or vary your consent. In the event any other use of your personal data is contemplated, we will notify you of the same
Personal data is of no value to the Company unless the business can make use of it. However, it is when personal data is accessed and used that it can be at the greatest risk of loss, corruption or theft. The general staff guidelines are:
The Company hereby notifies you of use your personal data for the following purposes:
The Company may disclose your personal data, locally or overseas, to:
The Company will take reasonable steps to protect your personal data against unauthorised disclosure by overseas entities or organizations, check for transfer limitation obligation – by ensuring the recipient country or at least the recipient organization has data protection laws and policies.
This policy helps to protect the Company from data security risks.
These rules describe how and where data should be safely stored. Questions about storing data safely can be directed to the IT manager or data controller.
When data is stored on paper, it will be marked “CONFIDENTIAL” and kept in a secure place where unauthorised people cannot see it.
These guidelines also apply to data that is usually stored electronically but has been printed out for some reason:
It is the responsibility of all employees who work with data to take reasonable steps to ensure it is kept as accurate and up to date as possible.
All individuals who are the subject of personal data held by the Company are entitled to:
An individual can contact the Company and request for her/his personal data (Access Request).
Access Requests from individuals should be made by email, addressed to the DPO. The DPO may supply a standard request form, although individuals do not have to use this.
Individuals will be charged a reasonable fee per Access Request to defray minimum costs. This may also increase depending upon the extent and effort of procuring the personal data. The DPO will aim to provide the relevant data within 30 calendar days.
The DPO will always verify the identity of anyone making an Access Request before handing over any information.
Correction requests will be carried out within 30 calendar days. No charge will be levied for any correction requests.
So long as you have a direct or indirect relationship with the Company, your personal data will be held and processed in accordance with this Policy. Once the relationship ends or you withdraw all your personal data, the Company will not retain your personal data unless there are legal and / or business reasons for so doing.
This Data Protection Policy shall be governed in all respects by the laws of Singapore.