The Personal Data Protection Act 2012 applies to all private organisations that collect or process personal data in Singapore. Personal data means data (whether true or not) about an individual who can be identified (a) from that data; or (b) from that data and other information to which the organisation has or is likely to have access.
Personal data protection gives individuals the right to control the collection, processing, use, disclosure and storage of their personal data.
We may use “cookies”, where a small data file is sent to your browser to store and track information about you when you enter our websites. The cookie is used to track information such as the number of users and their frequency of use, profiles of users and their preferred sites. While this cookie can tell us when you enter our sites and which pages you visit, it cannot read data off your hard disk. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
To safeguard your personal data, all electronic storage and transmission of personal data is secured with appropriate security technologies.
Please contact us at [DataProtection@kuokgroup.com.sg] if you:
(b) would like to withdraw your consent to any use of your personal data; or
(c) would like to obtain access and make corrections to your personal data.
For our employees, please refer to our Data Protection Policy available on the KSL Intranet, for details on the collection, use and disclosure of personal data.
For job applicants, please refer to our Recruitment Privacy Notice available at: https://kuoksingaporelimited.recruitee.com/privacy-policy for details on the collection, use and disclosure of personal data.
Our Companies in the EU
We have various corporate entities incorporated within the European Union and as such are subject to the EU General Data Protection Regulation 2016/679 (“GDPR”). Such entities will be considered controllers for the purposes of the GPDR.
What information we will collect
The personal data we, collect and process may include:
your name and business contact details (email, telephone number and email address)
the information gained from AML/KYC checks that we are required to conduct;
your interactions with our Group, or your employer’s transactions and use of our products and services.
How we use your information
Our primary purpose in collecting your personal information is to administer the business of our Group.
Additionally, we use your information for the following specific purposes:
to process transactions and to improve the quality of the service that we provide to you or your employer;
to communicate with you as necessary in connection with the proper running of our Group;
to report regulatory and tax-related information to regulatory and tax authorities in order to comply with a legal obligation;
to comply with our legal obligations;
in order to carry out anti-money laundering checks and related actions which are necessary to comply with legal obligations, in relation to, the prevention of fraud, money laundering, terrorist financing, bribery, corruption, tax evasion and to prevent the provision of financial and other services to persons who may be subject to economic or trade sanctions, on an on-going basis; and
other reasons compatible with the primary purpose.
Grounds for using your personal information
We process your personal data because such use is:
necessary for the purposes of the legitimate interests that we pursue, which are to run and administer our Group’s business, to discharge our legal obligations, to store and disclose information where necessary and to evaluate, develop and improve our services; or
necessary for the performance of a contract with individuals (from time to time); or
necessary in order to comply with a legal obligation to which we are subject.
Providing your information to third parties
third parties such as service providers of our Group, auditors, regulatory authorities and technology providers, agents, contractors, service providers or related companies (including payment processors), respond to your enquiries or for any other related purposes;
any regulatory, supervisory or governmental authorities to the extent we are required by law to do so, or in other limited circumstances (for example if required by a court order or regulatory authority, or if we believe that such action is necessary to prevent fraud;
other entities within our Group for our ordinary business purposes.
Transferring data outside of the EEA
Personal data may be transferred to, and stored at, a destination outside the UK or the European Economic Area (“EEA”) or to countries not regarded by the European Commission as providing an adequate level of data protection. When we, or our permitted third parties, transfer personal information in this manner will ensure that the transfer is subject to appropriate safeguards in accordance with Data Protection Legislation.
We aim to ensure that the information we hold about you is accurate at all times. To assist us in ensuring that your information is up to date, do let us know if any of your personal details change.
How long we keep your information
This will involve us regularly reviewing our files to check that information is accurate, up-to-date and still required.
How we protect your information
We ensure that there are appropriate technical, physical, electronic, and administrative safeguards in place to protect your personal details from unauthorised access.
Complaints and your rights
In certain circumstances you may also have the right to make a complaint to the supervisory authority which regulates and supervises the use of personal data in your jurisdiction.
You should note that you have the right to access, modify or delete any information concerning your personal profile in compliance with the GDPR.