SINGAPORE DATA PROTECTION NOTICE
Singapore has enacted the Personal Data Protection Act 2012 (“PDPA”) with effect from 2 July 2014 which strives to protect personal data of individuals. It is our policy to comply with the requirements of the PDPA. In doing so, we will ensure compliance by our staff to the standards of security and confidentiality in line with industry standards. This Singapore Data Protection Notice (“Notice) explains our practices.
Your privacy is of utmost importance to us. This Notice outlines how we collect, use, store and disclose your personal data in accordance with the PDPA. Please take a moment to read this Notice so that you know and understand the purposes for which we may collect, use and/or disclose your personal data.
Also you agree and consent to Invest Partners Capital Group Pte. Ltd. (“the Company”, “we”, “our” or “us”) and affiliates as well as our authorised service providers and relevant third parties collecting, using, disclosing and/or sharing your personal data in the manner set forth in this Notice.
This Notice supplements but does not supersede nor replace any other consents which you may have previously provided to us nor does it affect any rights that we may have at law in connection with the collection, use and/or disclosure of your personal data.
We may from time to time update this Notice to ensure that this Notice is consistent with our future developments, industry trends and/or any changes in legal or regulatory requirements. Subject to your rights at law, the prevailing terms of this Notice shall apply.
For the avoidance of doubt, this Notice forms part of the terms and conditions governing your relationship with us and should be read in conjunction with such terms and conditions.
2. What is Personal Data?
Personal data refers to any data or information about you from which you can be identified either (a) from that data or (b) from that data and other information to which we have or are likely to have access.
Depending on your relationship with us (e.g. prospective or current client, employee or business partner), the personal data about you that we may collect, use, store and disclose include:
your contact details like your name, passport or other identification numbers, contact numbers, address, email;
your personal details enabling us to evaluate and manage your client, employment or business relationship with us, e.g. your work experience, education, date of birth, bank details;
your personal details enabling us to analyse your situation, determine suitable strategies and execute respective action, e.g. family status, financial status, transaction history;
photos and videos of you from our events or office surveillances; and
information about your use of our services and website, including cookies and IP address.
3. Purposes for Collection, Use and Disclosure of Your Personal Data
We collect, use and/or disclose your personal data to provide enhanced asset management services including operations for these purposes. This may include the following (non-exhaustive) as applicable to the relationship we have with you:
evaluating your standing, resources and capabilities to enter or maintain a relationship with you as a client, employee, business partner or other;
analysing your financial situation and determining financial strategies and products suitable for you as our client;
assessing and processing any applications, requests and instructions for financial products and services offered by us and/or other financial institutions or product providers for you as our client;
managing commercial and financial risks, including preventing, detecting and investigating crime, including fraud and any form of financial crime;
reporting to you as our client on your financial situation and our performance of our services to you;
evaluating your performance as our employee or business partner;
updating you on developments in our services and special happenings;
responding to your queries and requests and handling complaints;
internal reporting and analysis related to our business operations;
maintaining records of our interactions with you, through telephone recordings, documentation (hard copy and electronic),
satisfying our responsibility to observe any legal, government or regulatory requirements of Singapore or other relevant jurisdiction including any disclosure or notification requirements to which any recipient of the data is subject; and
other purposes, directly or indirectly relating to any of the above and our business activities.
(hereinafter collectively referred to as the “Purposes”).
If we wish to collect, use, retain and/or disclose your personal data for any other purposes, we will adequately seek your consent.
4. How We May Collect Your Personal Data
Generally, we may collect your personal data ourselves or through third parties in ways including the following:
during our preliminary discussions with you to establish a new client relationship, enter into employment or for any other business relationship;
when you interact with our employees, in particular with your Portfolio Manager;
when you communicate with us by email or telephone, your emails will be retained and we may monitor and/or record your voice calls to us;
when you attend our events or enter our premises, we may take pictures or videos or you may be captured on our closed circuit television cameras surveillance;
when you access our website;
when you respond to our requests for additional personal data; or
when you submit your personal data to us for any other reason.
5. We Keep Your Personal Data Confidential and Secure
At each stage of data collection, use and disclosure, we implement physical, electronic, administrative and/or procedural safeguards to protect your personal data against loss, misuse, damage and unauthorized access, modifications or disclosures.
6. Who We May Disclose/Transfer Your Personal Data To
Where your consent is given, the personal data which you have provided to us may be transferred to the parties set out below within or outside Singapore, as may be necessary for any of the Purposes stated above:-
our group companies including any of their subsidiaries, parent companies, affiliates, associated entities and any of their branches and offices which may also include entities and activities overseas;
banks, financial institutions, credit card companies and their respective service providers;
companies providing services relating to insurance and/or reinsurance to us, and associations of insurance companies;
agents, contractors or third party service providers who provide services to us such as telecommunications, information technology, payment, data processing, storage and archival;
our professional advisers such as our auditors and lawyers;
government authorities, regulatory bodies and/or other law enforcement agencies;
courts, tribunals and/or parties to the legal proceedings; and/or
debt collection agencies.
When we disclose your personal data to third parties, we will ensure that they are contractually bound to protect your personal data in accordance with applicable laws and regulations, save in cases where your personal data is shared with governmental agencies and regulators, or where your personal data is publicly available, or where use/disclosure of your personal data is otherwise legally mandated and exempted.
If your personal data has to be transferred overseas, we will, where legally required, inform you of the extent to which your personal data will be protected, in the foreign jurisdiction(s) to which it will be transferred.
7. How Long We Keep Your Personal Data For
The PDPA does not prescribe the retention period. However, we shall retain your personal data for as long as necessary to fulfil the Purposes for which such data was collected, our business purposes, our internal and legal needs or as is otherwise legally required.
8. Contact Us
You can contact our Data Protection Officer (“DPO”) via email: firstname.lastname@example.org if you have any of the following enquiries
A. Access to and Correction of Personal Data
You are responsible for ensuring that the personal data you provide to us is accurate, complete, and not misleading and that such personal data is kept up to date. You acknowledge that failure on your part to do so may result in our inability to provide you with the products and services you have requested.
To update your personal data in our possession or under our control, please submit a written request to your Portfolio Manager or our DPO via email: email@example.com. Our DPO shall strive to respond to you within 30 days of your submission.
Where you provide us personal data concerning individuals other than yourself, you are responsible for obtaining all legally required consents from the concerned individuals and you shall retain proof of such consent(s), such proof to be provided to us upon our request.
B. Withdrawal of Consent
If you wish to withdraw your consent to our collection, use or disclosure of your personal data, please submit a written request to our DPO via email: firstname.lastname@example.org. Our DPO shall strive to respond to you within 30 days of your submission.
Please note that if you withdraw your consent to any or all use or disclosure of your personal data, depending on the nature of your request, we may not be in a position to continue to provide our services or products to you or administer any contractual relationship in place. Such withdrawal may also result in the termination of any agreement you may have with us. Our legal rights and remedies are expressly reserved in such event.
We are committed to protecting your personal data. If, however, you should be dissatisfied with our handling of your personal data, please submit a written complaint containing details of your dissatisfaction to our DPO via email: email@example.com
Our DPO shall acknowledge in writing the receipt of your complaint within 2 business days. Within 10 business days, our DPO shall strive to contact you to provide you with an estimated timeframe for our investigations and resolution of your complaint. If your complaint requires more time beyond such estimation to resolve due to its complexity, our DPO shall inform you accordingly on or before the expiry of the original estimated timeframe.
In the event that the DPO’s investigations conclude with a solution that is dissatisfactory to you, you may wish to contact our Chief Executive Officer via general email: firstname.lastname@example.org
Our Chief Executive Officer will strive to acknowledge your complaint within 2 business days and strive to provide a satisfactory solution to you within 10 business days. In the unlikely event that we cannot reach an agreement with you, you may wish to refer your complaint to the Personal Data Protection Commission or consider dispute resolution by way of mediation.
D. General Queries
If you have general queries about this Notice, our data protection process and/or practices, please submit a written request to our DPO via email: email@example.com on what you would like to enquire on. Our DPO shall strive to respond to you within 30 days of your submission.
The Company reserves the right to change this statement and/or any part thereof.