Introduction
We respect the privacy and confidentiality of the personal data of our beneficiaries, clients, donors, volunteers and staff whom we interact with in the course of providing our services. We are committed to implementing policies, practices and processes to safeguard the collection, use and disclosure of the personal data you provide us, in compliance with the Singapore Personal Data Protection Act (PDPA) 2012.
We have developed this Data Protection Notice to assist you in understanding how we collect, use, disclose, process, protect and retain your personal data that is in our possession.
Collection Of Personal Data
Personal data refers to any information that can uniquely identify an individual person (a) on its own, or (b) when combined with other information. Under the PDPA, business contact information (e.g. full name, business address, business telephone number) is not considered as personal data so long as it is used strictly for business-to-business (B2B) transactions.
We collect your personal data when you:
• Become our beneficiary
• Become our client
• Become our donor
• Become our volunteer
• Communicate with us via emails or written correspondences
• Submit your CV and job application form to us in response to our recruitment
advertisements
Types of Personal Data We Collect About You
The types of personal data we collect about you include:
• Your contact information
• Your personal details
Usage Of Personal Data
• Enrolling you onto our programmes and services
• Conduct workshop / events you have signed up for
• Process Donations
• Respond to your inquiries and feedback
• Process job applications, recruitment and selection
• Carry out our obligations arising from any contracts entered into between you and us
• Comply with or fulfil legal obligations and regulatory requirements
Withdrawal of Consent
If you wish to withdraw consent, you should give us reasonable advance notice. We will advise you of the likely consequences of your withdrawal of consent.
Retention Of Personal Data
We have a document retention policy that keeps track of the retention schedules of the personal data you provide us, in paper or electronic forms. We will not retain any of your personal data when it is no longer needed for any business or legal purposes. We will dispose of or destroy such documents containing your personal data in a proper and secure manner when the retention limit is reached.
Access and Make Correction to Your Personal Data
You may write in to us to find out how we have been using or disclosing your personal data over the past one year. We will respond to your request as soon as possible, or within 10 days from the date we receive your request. If we are unable to do so within the 10 days, we will let you know and give you an estimate of how much longer we require.
Transfer of Personal Data
Generally we do not transfer personal data out of Singapore. Where there is a need to transfer your personal data to another country outside Singapore, we will ensure that the standard of data protection in the recipient country is comparable to that of Singapore’s PDPA.
Contacting Us
If you have any query or feedback regarding this Notice, or any complaint you have relating to how we manage your personal data, you may contact our Data Protection Officer (DPO) at info@cornerstoneservices.org.sg.
Changes to this Data Protection Notice
We may update this Data Protection Notice from time to time. We will notify you of any changes by posting the latest Notice on our website. Please visit our website periodically to note any changes.
Changes to this Notice take effect when they are posted on our website.
Last updated: 08 February 2022