The General Data Protection Regulation (“GDPR”) is a legal framework for data protection which came into force on 25 May 2018.
This framework applies to all organisations, regardless of whether it is established within or outside of the European Union (“EU”) if the organisation processes personal information or possesses personal information of data subjects residing in the EU.
These provisions will apply to you if you are residing in the EU and should be read together with our Privacy Policy which can be found here. Please review this GDPR Privacy Statement and the Privacy Policy in each document’s entirety carefully before using our website, or otherwise providing us with any of your personal information.
Processing of Personal information
We will process your personal information where there is one or more lawful bases to do so under the GDPR, where:
- You have given your consent for the processing of your personal information;
- It is necessary for the performance of a contract you have entered into with us or to take specific steps at your request prior to entering into the contract;
- It is necessary to comply with our legal or regulatory obligations under applicable law (as defined in the Privacy Policy);
- It is necessary to protect the vital interests of a natural person, whether you or another person;
- It is necessary for the performance of a task carried out in the public interest or exercise of official authority on our part; or
- It necessary for the purposes of our legitimate interests or another natural person’s legitimate interests.
For the avoidance of doubt, the requisite consent you will need to provide us for the use of this website or our provision of any Service (as defined in the Privacy Policy) is contained in the Privacy Policy.
Individual Rights
Subject to any exceptions under the GDPR, you have the following rights:
Right to access
You have the right to request for confirmation on whether we process your personal information, as well as personal information and any supplementary information as permissible under the GDPR, which will be processed in accordance with the Privacy Policy.
Right to rectification
You have the right to require us to rectify any incomplete or inaccurate personal information, which will be rectified in accordance with the Privacy Policy.
Right to erasure
You have the right to request that we delete personal information we process about you if one of the bases provided under the GDPR applies, which will be erased in accordance with the GDPR.
Right to restrict processing
You have the right to restrict our processing of your personal information in certain circumstances. Examples of such circumstances include the accuracy of your personal information is disputed, where the processing is not lawful under the GDPR, or we no longer need your personal information for processing, but you require the personal information to establish, exercise or defend a legal claim.
Right to object
You have the right to object to our processing of your personal information where such personal information is being processed by us for the performance of a task carried out in the public interest, or in the exercise of official authority on our part, or for the purposes of the legitimate interests pursued by us. Additionally, you have the right at any time to object to our processing of your personal information for direct marketing or for scientific or historical research purposes or statistical purposes.
Right to data portability
You have the right to right to request for personal information processed in the format we have processed such personal information you had provided, which we will process in a structured, commonly used, and machine-readable format. You also have the right to then transmit such personal data to another controller upon obtaining such processed personal information from us, without any hindrance from us.
Collection of Information from Children
Generally, our Services (as defined under the Privacy Policy) are not directed to children. We also do not knowingly collect personal information from children, and will not do so except as permitted under applicable law. To the extent required by applicable law, where we become aware that a child has provided us with personal information without parental consent, we will delete such information.
Notification of Breach
In addition to the procedures we have put in to deal with any suspected personal information breach as stated in the Privacy Policy, we will notify any applicable regulator and the affected persons of a breach where we are legally required to do so. In determining if we are so required to do so, we will consider in particular the risks to the rights and freedoms of such affected persons.
Questions or Feedback
If you have any questions about this GDPR Privacy Statement or any other queries in relation to how we manage, protect and/or process your personal information, please contact us at [email protected]. Where appropriate, such request may be referred to the relevant data protection officer.
Updates
This GDPR Privacy Statement may be updated from time to time without any prior notice. As changes to this GDPR Privacy Statement take effect when they are posted on this website, you may determine if any such revision has taken place by referring to the date on which this GDPR Privacy Statement was last updated and should visit this website periodically note any changes. Your continued use of any Service (as defined in the Privacy Policy), including without limitation this website, constitutes your acknowledgement and acceptance of such changes.
Last Updated 10 April 2023