PDPA Policy

UEMS Personal Data Protection Policy

UEMS respects the privacy of individuals and recognises the importance of the personal data entrusted to us and believe that it is our responsibility to properly manage, protect, process and disclose personal data. We are also committed to adhering to the provisions and principles of the Singapore Personal Data Protection Act 2012 and other applicable personal data protection laws applicable to us in the various countries in which we operate (“Applicable Law”).

By interacting with us or submitting information to us, you agree and consent to UEMS Solutions Pte. Ltd., its related corporations and business units (collectively, “UEMS”), as well as their respective representatives and/or agents collecting, using, disclosing and sharing amongst themselves your personal data, and disclosing such personal data to the relevant third parties in the manner set forth in this Data Protection Policy.

In this Policy, the term “personal data” shall have the same meaning ascribed to it in the Singapore Data Protection Act 2012.

Summary

We will collect, use or disclose personal data for reasonable business purposes only if there is consent or deemed consent from the individual and information on such purposes have been notified. We may also collect, use or disclose personal data if it is required or authorised under Applicable Law.

Collection of Personal Data

We collect personal data from clients, customers, business contacts, employees, personnel, contractors and other individuals. Such personal data may be provided to us by individuals, face to face meetings, letters, email messages, facsimile messages, telephone conversations, through our website or provided by third parties. If you contact us, we may keep a record of that contact.

We collect these personal data when it is necessary for business purposes or to meet the purposes for which you have submitted the information.

We will only collect, hold, process, use, communicate and/or disclose such personal data, in accordance with this Policy and Applicable Law. If you supply us with personal data of a third party (such as an employee or a client of yours), you undertake that you have obtained all necessary consents from such third party to the collection, processing, use and disclosure by us of their personal data. Because we are collecting the third party’s data from you, you undertake to make the third party aware of all matters listed in this Policy preferably by distributing a copy of this Policy to them or by referring them to our website.

Use of Personal Data

We use personal data for the following purposes:

I. Vendors / Service Providers / Business Partners

  • to facilitate our business relationship with you;
  • for the purpose of the supply of services and support to UEMS;
  • to keep you updated on changes to UEMS policies;
  • to evaluate and to improve UEMS services;
  • security clearance/entry access into UEMS premises; and
  • for purposes that are ancillary to or in furtherance of the above purposes.

 

II. Customers

  • to facilitate our business relationship with you;
  • to provide products and services and to communicate with customers as part of providing products and services;
  • to evaluate UEMS’ services and how UEMS can improve its services;
  • to respond to queries or comments;
  • to communicate with you on developments on UEMS’ services, the business of UEMS and other updates; and
  • for purposes that are ancillary to or in furtherance of the above purposes.

 

III. Employees

In order to comply with its contractual, statutory and management obligation and responsibilities, UEMS is required to process personal data relating to its employees. All such data will be processed in accordance with the provisions of your employment contract, Applicable Law and the relevant UEMS rules and policies, including data protection, as may be amended from time to time. We will use your personal data:

  • for administering, maintaining and updating personnel records;
  • for processing and reviewing salary and other remuneration and benefits;
  • for processing performance appraisal and review;
  • for training and developmental records including internal publication of training matrices and reports;
  • to maintain sickness and other absence records, including reasons for absence;
  • to provide and administer medical and insurance benefits (including health records);
  • to process disciplinary policy/investigations and procedures including formal and informal warnings;
  • for internal publication i.e. newsletters, intranet etc (including but not limited to photo);
  • to monitor email/internet usage;
  • for providing references and information to the appropriate bodies/governmental bodies (including but not limited to the Central Provident Fund, Employees Provident Fund, and the relevant tax authorities) for social security, contributions, income tax, and other purposes;
  • for the purposes of third party employment references;
  • as may be required by law or regulation and for protecting the interests of UEMS; and
  • for purposes that are ancillary to or in furtherance of the above purposes.

 

IV. For the Public and Other Third Parties Generally

  • to evaluate applications for employment/job positions within UEMS;
  • to evaluate applications for internships and industrial attachments;
  • to conduct due diligence/background checks on job applicants;
  • to facilitate business relationships;
  • to organise and manage events for the community and charitable purposes;
  • to evaluate potential suppliers, vendors or business partners;
  • for security clearance/entry access into UEMS’ premises; and
  • for purposes that are ancillary to or in furtherance of the above purposes.

 

Disclosure of Personal Data to Third Parties

We do not disclose personal data to third parties except when required by law, when we have your consent or deemed consent or in cases where we have engaged the third party such as data intermediaries or subcontractors specifically to assist with UEMS’ activities.

We may disclose personal data to the related corporations and business units in the UEMS group, where it is necessary for the purposes set out above. We may also transfer all data in our possession to a successor-in-interest to our business or assets.

Access to and Correction of Personal Data

Upon request, we will provide you with access to their personal data or other appropriate information on their personal data in accordance with the requirements of the PDPA.

Upon request, we will correct an error or omission in the individual’s personal data that is in our possession or control in accordance with the requirements of the PDPA.

We may charge for a request for access in accordance with the requirements of the PDPA.

Withdrawal of Consent

Upon reasonable notice being given by an individual of his withdrawal of any consent given or deemed to have been given in respect of our collection, use or disclosure of his personal data, we will inform the individual of the likely consequences of withdrawing his consent. We will cease (and cause any of our data intermediaries and agents to cease) collecting, using or disclosing the personal data unless it is required or authorised under applicable laws.

Accuracy of Personal Data

We will make a reasonable effort to ensure that personal data collected by us or on our behalf is accurate and complete.

Security and Protection of Personal Data

We have implemented technological and operational security measures to protect the personal data in our possession or under our control and to prevent unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks. Only authorised UEMS personnel are provided access to personally identifiable information and these personnel are required to ensure confidentiality of this information.

Retention of Personal Data

We will cease to retain personal data, as soon as it is reasonable to assume that the purpose for collection of such personal data is no longer being served by such retention, and such retention is no longer necessary for legal or business purposes.

Transfer of Personal Data

We will ensure that any transfers of personal data to a territory outside of the country in which it is collected will be in accordance with Applicable Law so as to ensure a standard of protection to personal data so transferred that is comparable to the protection under the PDPA.

Privacy on our Web Sites

This Policy also applies to any personal data we collect via our websites. Cookies may be used on some pages of our websites. “Cookies” are small text files placed on your hard drive that assist us in providing a more customised website experience. Cookies are now used as a standard by many websites to improve users’ navigational experience. If you are concerned about cookies, most browsers permit individuals to decline cookies. In most cases, a visitor may refuse a cookie and still fully navigate our websites, however other functionality in the site may be impaired. After termination of the visit to our site, you can always delete the cookie from your system if you wish.

Because we want your website experience to be as informative and resourceful as possible, we may provide a number of links to third party websites. We assume no responsibility for the information practices of these third party websites that you are able to access through ours. When a visitor to our website links to these third party websites, our privacy practices no longer apply. We encourage you to review each website’s privacy policy before disclosing any data.

Data Protection Officer

If you believe that information we hold about you is incorrect or out of date, or if you have concerns or further queries about how we are handling your personal data, or any problem or complaint about such matters, please contact our Data Protection Officer at dpo.uems@uemsgroup.com.

Modifications

We reserve the right to modify or amend this Policy at any time. Subject to your rights at law, you agree to be bound by the prevailing terms of the Policy as updated from time to time on our website.