Privacy Policy
Policy Statement
This External Privacy Policy (the “Policy”) applies to the collection, use and disclosure of Personal Data (hereinafter defined) of its clients/customers/shareholders by APAC Realty Limited (“ARL” or “the Organisation”).
1 General
1.1 This Policy provides information on the obligations and policies of ARL in respect of an individual customer’s Personal Data. ARL undertakes to use reasonable efforts in applying, where practicable, those principles and the processes set out herein to its operations. Please take a moment to read this Policy so that you know and understand the purposes for which we collect, use and disclose your Personal Data.
1.2 ARL’s officers, management and members of staff shall use reasonable endeavours to respect the confidentiality of and keep safe all Personal Data collected, stored, disclosed and used for, or on behalf of, ARL. ARL shall use reasonable endeavours to ensure all collection, storage, disclosure and usage of Personal Data by ARL and by anyone acting on its behalf shall be done in an appropriate manner and in accordance to the Personal Data Protection Act and this Policy.
1.3 By interacting with us or submitting information to us, you agree and consent to ARL as well as to its respective representatives (collectively referred to herein as “ARL”, “us”, “we” or “our”) collecting, using, disclosing and sharing amongst themselves your Personal Data, and disclosing such Personal Data to ARL’s authorised service providers and relevant third parties in the manner set forth in this Policy.
1.4 This Policy supplements but does not supersede nor replace any other consents you may have previously provided to us in respect of your Personal Data, and your consents herein are additional to any rights which we may have at law to collect, use or disclose your Personal Data.
1.5 For the purposes of this Policy, in line with the provisions under the Singapore Personal Data Protection Act 2012 (No. 26 of 2012) (the “Act”), “Personal Data” shall mean data, whether true or not, about an individual who can be identified from that data; or from that data and other information to which an organisation has or is likely to have access. Such Personal Data shall also refer to that which is already in the possession of ARL or that which shall be collected by ARL in the future.
2 Contacting the Data Protection Officer
2.1 Where you: (i) legitimately request access to Personal Data relating to you which is in the possession and control of ARL; (ii) have any questions or feedback relating to your Personal Data or this Policy; or (iii) wish to correct Personal Data relating to you which is in the possession and control of ARL, you may contact our Data Protection Officer (“DPO”) in accordance with our standard procedures as stated hereinafter. We shall accede to your request within a reasonable time and manner.
2.2 In accordance with the Personal Data Protection Act, ARL has established a process for receiving and responding to any query or complaint that may arise with respect to the application of this Act. To ensure that ARL receives your complaints and enquiries, please send the same via email to the DPO at the following email address: [email protected]
2.3 Please note that if your Personal Data has been provided to us by a third party (e.g. through a referral), you should contact that individual to make such queries, complaints and access and correction requests to ARL on your behalf.
2.4 Should you wish ARL not to use your Personal Data for any of the purposes listed in Paragraphs 3.2 to 3.4, or not to receive promotional materials or information from ARL, you may opt out by sending a clearly worded email to the DPO via the email address provided in Paragraph 2.2 above. Your request shall be processed within a reasonable time. However, please note that in such an event we may not be in a position to continue to provide our services to you, administer any contractual relationship in place, and this may also result in the termination of any agreements with us, and your being in breach of your contractual obligations or undertakings, and our legal rights and remedies in such event are expressly reserved.
3 Statement of Practices
Types of Personal Data Collected
3.1 As part of its day-to-day activities, ARL may collect Personal Data from you through various means, including:
• when you leave your contact details with us after attending our marketing events such as roadshows and seminars;
• when you request that we contact you, be included in an email or other mailing list;
• when you are contacted by, and respond to, our marketing representatives and agents;
• when you submit a job application;
• when we receive references from business partners and third parties, for example, where you have been referred by them; and
• when you submit your Personal Data to us for any other reasons.
3.2 The type of Personal Data that we collect from you may include but is not limited to the following:
• NRIC/FIN/Passport Number
• Name
• Address
• Gender
• Race
• Date of Birth/Age
• Phone Number
• Email Address
• Occupation
• Household members
• Household/Personal Income
• Photo
• Tax returns
• CPF information
• Employment pass/Work permit
• Marriage certificates
3.3 If you provide us with any Personal Data relating to a third party (e.g. information of your spouse, children, parents), by submitting such information to us, you represent to us that you have obtained the consent of the third party to you providing us with their Personal Data for the respective purposes.
Purpose of Collection of Personal Data
3.4 The Personal Data mentioned in Paragraph 3.2 above is collected (if you are a shareholder) for the purposes of:
• administering the relationship, including the verification of your identity and/or the identity of your proxy (as may be applicable);
• informing you of our performance and the products and services that we provide to our customers through the sending of circulars, reports, newsletters and communications;
• communicating with you changes and development to our policies, terms and conditions and other administrative information; and
• any other purpose directly relating to any of the above.
3.5 In addition, ARL collects your Personal Data if you submit an application to us as a candidate for an employment:
• processing your application including pre-recruitment checks, such as in relation to your qualifications and work experience;
• providing or obtaining employee references and for background screening/vetting;
• collecting information about your suitability for the position applied for;
• communicating with you as required by ARL to comply with its policies and processes, including for business continuity purposes; and
• any other purpose directly relating to any of the above.
Disclosure of Personal Data
3.6 Without derogating from any of the above, we may also disclose your Personal Data to the following third parties:
• Partners
• Developers
• Insurers
• Law enforcement officials
• Government agencies
• Regulating body
• Lawyers
• Auditors
• Third party service providers and consultants
3.7 ARL may also disclose your Personal Data to the abovementioned parties in the occurrence of any of the following events:
• To the extent that we are required to do so by law;
• In connection with any legal proceedings or prospective legal proceedings;
• To establish, exercise or defend our legal rights;
• To third parties who provide services to us or on our behalf;
• With your consent; or
• For the purposes of disaster recovery.
3.8 Under certain circumstances, telephone calls made to us on our service hotlines and/or inquiry telephone numbers are recorded for the purposes of quality control, appraisal, as well as staff management and development. In such an event, by agreeing to this Policy, you hereby give your clear and unambiguous consent for the collection, use and disclosure of such Personal Data in accordance with this Policy.
4 Transfer of Personal Data Overseas
4.1 Your Personal Data may be processed by ARL, its partners, salespersons, agents and third parties providing services to ARL, in jurisdictions outside of Singapore. In this event, ARL will comply with the data protection provisions of the Personal Data Protection Act in respect of the transferred personal data while such personal data remains in its possession or under its control; and will ensure that the recipient of your personal data is bound by legally enforceable obligations to provide your personal data a standard of protection that is comparable to that under the PDPA.
5 Accuracy of Personal Data
5.1 Where possible, we will validate your Personal Data provided using generally accepted practices and guidelines. This includes the use of checksum verification on some numeric fields such as NRIC number. In some instances, ARL is able to validate the Personal Data provided against pre-existing data held by us. In some cases, ARL is required to see original documentation before we may use the Personal Data such as with Personal Identifiers and/or proof of address. To assist in ensuring the accuracy of your Personal Data in our possession, so as to allow ARL to remain in compliance with the Personal Data Protection Act, you are required to inform us of any updates of any parts of your Personal Data by sending a clearly worded email to the DPO at the email address provided at Paragraph 2.2.
5.2 ARL shall not be liable for any damage, claim and/or harm suffered by you as a result of your failure to update us of any change of your Personal Data.
5.3 Should you fail to inform us of your new home address, any correspondence sent by us to your last home address shall be deemed to have been duly received by you.
6 Protection of Personal Data
6.1 ARL uses commercially reasonable physical, managerial and technical safeguards to preserve the integrity and security of your Personal Data and will not knowingly allow access to this data to anyone outside ARL, other than to you or as described in this Policy. However, we cannot ensure or warrant the security of any information you transmit to us and you do so entirely at your own risk. In particular, ARL does not warrant that such information may not be accessed, altered, collected, copied, destroyed, disposed of, disclosed or modified by breach of any of ARL’s physical, technical or managerial safeguards.
7 Access and Correction of Personal Data
7.1 In accordance with Paragraph 2.1 of this Policy, you have the right to:
(a) check whether ARL holds any Personal Data relating to you and, if so, obtain copies of such data and information about the ways in which your Personal Data have been or may have been used or disclosed by ARL within the past year; and
(b) require ARL to correct any Personal Data relating to you which is inaccurate for the purpose for which it is being used.
7.2 ARL reserves the right to charge a reasonable administrative fee in order to meet your requests under Paragraph 7.1(a). Upon payment of the requisite fee, your request shall be processed within a reasonable time.
7.3 If you wish to verify the details you have submitted to ARL or if you wish to check on the manner in which ARL uses and processes your Personal Data, our security procedures mean that we may request proof of identity before we reveal information. This proof of identity will take the form of full details of name and NRIC/FIN/Passport number. You must therefore keep this information safe as you will be responsible for any action which ARL takes in response to a request from someone using your personal details.
7.4 ARL shall respond to an access or correction request within 30 days from the time the request is made. If ARL is unable to respond within 30 days, ARL will inform you in writing within that time frame, of the time by which it will be able to respond to the request.
8 Storage and Retention of Personal Data
8.1 ARL will delete, as reasonably possible, or otherwise anonymise any Personal Data in the event that the Personal Data is not required for any reasonable business or legal purposes of ARL and where the Personal Data is deleted from ARL’s electronic, manual or other filing systems in accordance with our internal procedures and/or other agreements.
9 Contacting you
9.1 To the extent that any of the communication means which you have provided us with (which may include your telephone number and fax number) is/will be listed on the Do Not Call Registry (the “DNC”), by agreeing to this Policy, by any means of indication, you hereby grant ARL your clear and unambiguous consent to contact you using all of your communication means you have provided to us including using voice calls, SMS, Whatsapp, MMS, fax or other similar communications applications or methods, for the purposes as stated in Paragraphs 3.4 and 3.5.
10 Change of Policy
10.1 ARL reserves the right to alter any of the clauses contained herein in compliance with local legislation and/or to meet international policy requirements, and for any other purpose deemed reasonably necessary by us. You should look at these terms regularly. If you do not agree to the modified terms, you should inform us as soon as possible of the terms to which you do not consent. Pending such notice, if there is any inconsistency between these terms and the additional terms, the additional terms will prevail to the extent of the inconsistency.
11 Governing Law
11.1 This Policy is governed by and shall be construed in accordance with the laws of Singapore. You hereby submit to the non-exclusive jurisdiction of the Singapore courts.
12. Miscellaneous
12.1 This Policy only applies to the collection and use of Personal Data by ARL. It does not cover third party sites to which we provide links, even if such sites are co-branded with our logo. ARL does not share your Personal Data with third party websites. ARL is not responsible for the privacy and conduct practices of these third party websites, so you should read their own privacy policies before disclosure of any Personal Data to these websites.
12.2 ARL will not sell your personal information to any third party without your permission, but we cannot be responsible or held liable for the actions of third party sites which you may have linked or been directed to/from ARL’s website.