In connection with the Personal Data Protection Act (No. 26 of 2012) (“the Act”), this policy sets out how we, Singapore Computer Guys Pte Ltd (“ComputerGuys”), manage personal data which is subject to the Act. The security of your personal data is important to us. This policy describes how we collect, use, disclose, process and protect your personal data.
When you visit our websites or request a service from ComputerGuys, your use or continued use of our services shall be deemed as your acceptance and agreement to be bound by the provisions of this policy.
This policy supplements but does not supersede nor replace any other consent you may have previously provided to us in respect of your personal data.
For the purposes of the Act, we are a data intermediary when we process personal data on behalf of and for the purposes of another organisation. At the same time, we also collect use and disclose personal data for purposes that are reasonable and appropriate.
This policy forms part of the terms and conditions, if any, governing your specific relationship with any entity within ComputerGuys and should be read in conjunction with such terms of engagement. In the event of any conflict or inconsistency between the provisions of this policy and the terms of engagement, the terms of engagement shall prevail to the fullest extent permissible by law.
- Collection and Use
2.1 We may collect personally identifiable information from you which we require in order for us to provide our services to you, for a purpose authorised by you or for purposes that are reasonably appropriate: your name, personal telephone number(s), personal mailing address, personal email address, bank account number, employment history, education background; photos, film, CCTV and/or video recordings of you, information about your use of our websites, including cookies, IP addresses, etc. or any other information relating to you which you have provided us in any forms you may have submitted to us, or in other forms of interaction with you.
2.2 Before you disclose to us the personal information of another person, you must obtain that person’s consent to both the disclosure and the processing of that personal information in accordance with the terms of this policy. Failure on your part to do so or to ensure that the personal data for another person is complete, accurate, true and correct may result in us being unable to provide you with the services you have requested or require. Arrangements are in place to protect the security of any personal data shared.
- Disclosure to Third Parties
3.1 We will not disclose your personal information except to those to whom disclosure is necessary to provide our services to you or in the management, operation and administration of our business and who are similarly bound to hold your data in confidence; or
3.2 We will not disclose your personal information unless required to do so by law or in the good faith belief that such disclosure is reasonably necessary: (i) for our professional advisers such as our lawyers (ii) comply with legal process such as if required by any court, tribunal, regulator, government department, agency, ministry, statutory board or relevant authority; (iii) respond to claims that any of personal data provided to us violates the rights of third parties; or (iv) protect our rights, property, or personal safety and that of our clients or the public.
4.1 To safeguard your personal information, all electronic storage, hosting, processing, transmission and backup (for disaster recovery or otherwise) of personal and other information are secured with appropriate administrative, physical and technical security measures. You acknowledge and consent that we may make use of cloud services within or outside Singapore (which may be managed by a third party service provider) in accordance with your service agreement. While we take reasonable efforts to maintain the confidentiality and security of your personal data, we cannot guarantee that any information that is transmitted or stored electronically is completely secure.
We will retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required for legal or business purposes. Any personal data which are no longer needed for legal or business purposes will be destroyed or anonymised according to our document retention policy.
6.2 We may also include third party links on our website for your convenience and information. These linked sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites and we encourage you to consult the privacy notices of those sites.
You may, subject to applicable law, regulations and professional standards, at any time, give us reasonable written notice of your withdrawal of consent to collect, use or disclose the personal information. If you choose to withdraw your consent to any or all or the disclosure of your personal data, please note that we may not be in a position to continue providing our services to you. Withdrawal may also result in the termination of any agreement you may have with us.
- Data Intermediary
8.1 If we process personal data on your behalf and for your purposes as a data intermediary, we shall:
a. observe the relevant obligations under the Act in the performance of our services;
b. process the personal data we receive from you only to the extent necessary for the purposes specified in the engagement and in accordance with your instructions from time to time given in writing and shall not process the personal data for any other purpose;
c. ensure that access to the personal data is limited to employees who need to access to meet our obligations to you;
d. in order to perform the services, share the personal data with our subsidiaries and affiliates , whether in Singapore or elsewhere. When doing so, we will require them to ensure that the personal data are kept secure and confidential;
e. use reasonable degree of professional care to prevent unauthorised use, dissemination or disclosure of personal data, and shall implement any generally applicable physical, technical and administrative measures to protect the personal data from accidental or unauthorized disclosure, alteration, loss or destruction;
f. notify you promptly in writing if we become aware of any accidental or unauthorized disclosure, alteration, destruction or loss of personal data unless prohibited from doing so by law;
g. take reasonable action within reasonable time, and investigate the security incident, and use its best efforts to mitigate the impact and scope of any security incident, and to carry out such recovery or other action we determine necessary in the circumstance to remedy the security incident; and
h. not hold personal data any longer than required by law for the purpose of performing or having performed the services or for legal or business purposes.
8.2 In the same regard, if we process personal data on your behalf and for your purposes, you:
a. will provide us with specific written instructions with regard to the processing of personal data. Oral instructions given by your authorised representatives will be accepted by us in case of emergency only and subject to immediate written confirmation;
b. undertake and warrant that you have lawfully obtained personal data of your employees and have sufficient legal grounds, including all necessary authorizations, consents or permissions to provide us with the personal data, and that the same are accurate and provided in any form, to us in a secured way;
c. will inform us immediately in writing of any change, including any error or omission, with regard to the lawful processing and use of any of the personal data; and
d. will inform us as soon as reasonably possible of any access request, request for correction or blocking or deletion of personal data or any objection made by the employees related to the processing of their personal data.
If you require more information relating to this policy or require or access to correct or update your personal data or to withdraw your consent, please contact us at:
Data Protection Officer
Singapore Computer Guys Pte Ltd
11 Chang Charn Road
Telephone: 6962 0988
Email: [email protected]