Personal Data Protection Policy
This Personal Data Protection Policy (“Policy”) outlines the basis which Aggasys Solutions Pte Ltd (“we”, “us” or “our”) pertaining to the collection, processing, use and disclosure of personal data of our customers in accordance with the Personal Data Protection Act (“PDPA”).
Application of Policy
1 This Policy applies to personal data in our possession or under our control, including personal data in the possession of organisations which we have engaged to collect, process, use, or disclose personal data for our purposes.
2 As used in this Notice:
(a) “customer” means any individual who has contacted us through any means to find out more about our products or services; or may, or has entered into a contract or agreement with us; and
(b) “personal data” means data, whether true or not, which can be used to identify a customer either from that data; or other information that we have or are likely have access to.
Collection, Use and Disclosure of Personal Data
3 We may collect and use your personal data for any or all of the following purposes:
(a) performing obligations in the course of or in connection with our provision of the goods and/or services requested by you;
(b) verifying your identity;
(c) responding to, handling, and processing requests, complaints, and feedback from you;
(d) managing your relationship with us;
(e) processing payment or credit transactions;
(f) Sending you marketing information about our goods or services including notifying you of our marketing events, initiatives and promotions, lucky draws, membership and rewards schemes and other promotions;
(g) complying with any applicable laws, rules, regulations, codes of practice, or guidelines, or to assist in law enforcement and investigations conducted by any governmental and/or regulatory authority;
(h) transmitting to any unaffiliated third parties including our third party service providers and agents, and relevant governmental and/or regulatory authorities, whether in Singapore or abroad, for the aforementioned purposes;
(i) any other incidental business purposes; and
(j) any other purposes for which you have provided the information related to or in connection with the above;
4 We may disclose your personal data:
(a) where such disclosure is required for performing obligations during the course of or in relation with our provision of the goods or services requested by you; or
(b) to third party service providers, agents and/or other organisations we have engaged to perform any of the obligations listed in clause 3.1 above.
5 You may, in certain circumstances, provide us with personal data relating to third parties. In such cases, you are deemed to have represented and confirmed to us that you have obtained the consent of such third parties to provide his/her personal data to us for processing.
6 In an event where the personal data needs to be collected, processed, used or disclosed for a purpose not covered in the above, we will notify you of such other purpose(s) at the time of obtaining your consent, unless we are permitted by the PDPA or any other applicable law to process your personal data without your consent.
Access to and Correction of Personal Data
7 If you wish to make (a) a request for access to a copy of the personal data of you which we hold about you or information about the ways in which we use or disclose your personal data, or (b) a correction request to correct or update any of your personal data which we hold, you may submit your request in writing or via email to our Data Protection Officer at the contact details provided below.
8 We will respond to your request as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. In the event we are unable to provide you with any personal data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA).
9 The purposes listed in the above clauses may continue to apply even in situations where your relationship with us (for example, pursuant to a contract) has been terminated or altered in any way, for a reasonable period thereafter (including, where applicable, a period to enable us to enforce our rights under any contract with you).
Withdrawing Your Consent
10 You may withdraw your consent for the collection, usage and/or disclosure of your personal data that is in our possession or under our control by writing to us via email to our Data Protection Officer at the contact details provided below.
11 We will process your request within a reasonable time from such a request for withdrawal of consent being made, and will thereafter not collect, use and/or disclose your personal data in the manner stated in your request.
12 Your withdrawal of consent may result in certain consequences such as but not limited to the following examples:
(a) we will not be able to provide you with certain products or services that you have requested;
(b) we will not be able to continue your existing relationship with us; or
We will inform you of such consequences after we receive your request for withdrawal.
13 Please note that withdrawal of consent does not affect our right to continue to collect, use or disclose personal data if we are required or authorised to do so under the PDPA or any other applicable law.
Accuracy of Personal Data
14 We are generally reliant on you to provide us with accurate and complete personal data, including updates should there be any changes to your personal data. As such, we will not be responsible for any inaccurate or incomplete personal data you have provided and/or the failure to update us of any changes in your personal data.
Protection and Retention of Personal Data
15 In order to safeguard your personal data from unauthorised access, collection, usage, disclosure or similar acts of malicious intent, we have introduced appropriate measures to secure all storage and transmission of personal data by us, including disclosing personal data both internally and to our authorised third party service providers and agents only on a need-to-know basis.
16 We have put in place measures to ensure that any of your personal data in our possession or under our control is destroyed and/or anonymized as soon as it is reasonable for us to assume that:
(a) the purpose for which the collection of your personal data is no longer being served by the retention of such personal data; and
(b) retention is no longer necessary for any other legal or business purposes;
Data Protection Officer
17 You may contact our Data Protection Officer if you have any enquiries or feedback on our personal data protection policies and procedures, or if you wish to make any request, you may do so at the following address:
Mailing Address: Data Protection Officer
Aggasys Solutions Pte Ltd
18 Sin Ming Lane #08-23
Email Address: DPO@aggasys.com
Effect of Notice and Changes to Notice
18 As part of our efforts to ensure that we properly manage, protect and process your personal data, we will be reviewing our policies, procedures and processes from time to time.
19 We reserve the right to amend the terms of this Personal Data Policy at our absolute discretion. Any amended Personal Data Policy will be posted on the Website which you may access and view at www.aggasys.com. No individual notice will be sent to you.
Last Updated on 16 Aug 2019
Data Protection Officer