CW Business Solutions
Handling Compliance Services Like Never Before
Privacy and Data Protection Policy
1. INTRODUCTION
1.1 CW Business Solutions Pte. Ltd. (“CW,” “we,” “our,” or “us”) operates in accordance with Singapore’s Personal Data Protection Act 2012 (the “PDPA”). We recognize the importance of the personal data you have entrusted to us and understand our responsibility to manage, protect, and process this data properly. Please review this policy to understand the personal data we collect or process, and the purposes for which it is used.
1.2 “Personal data” refers to data, whether true or not, about an individual who can be identified either from that data alone or in conjunction with other information that we have access to or are likely to have access to.
1.3 This policy is intended to inform you of how we handle, collect, use, disclose, and process your personal data. Any changes to this Privacy Policy are effective after being posted on our website. We encourage you to check this page periodically to stay informed.
1.4 By providing your personal data to us, you acknowledge and agree that you have fully read and understood this policy, and you consent to the collection, use, processing, and disclosure of your personal data as described.
2. COLLECTION OF INFORMATION
2.1 To fulfill your requests, we collect the following personal information, which includes but is not limited to:
• Full name
• Copy of NRIC
• Copy of passport or other identification documents
• Telephone number(s)
• Residential address
• Email address
• Other personal information required by government agencies
• Signature
• Photo/video of yourself and your identification document
2.2 We collect most of the personal data for the purpose of delivering corporate services and for disclosure to government agencies.
2.3 The PDPA’s data protection provisions (parts III to VI) do not apply to:
2.3.1 Any public agency or an organization acting on behalf of a public agency in relation to the collection, use, or disclosure of personal data. You may refer to the Personal Data Protection (Statutory Bodies) Notification 2013 for the list of public agencies.
2.3.2 Business contact information. This refers to an individual’s name, position name or title, business telephone number, business address, business electronic mail address or business fax number, and any other similar information about the individual, not provided by the individual solely for his or her personal purposes. You may refer to page 17 under the Advisory Guidelines on Key Concepts in the Personal Data Protection Act (May 2022) for further details.
2.4 All information provided will be used for purposes such as sharing with the Accounting and Corporate Regulatory Authority (ACRA) and other relevant statutory bodies.
2.5 Our website and applications automatically collect anonymous information about visitors to help us understand traffic patterns, the devices used, and statistical information to improve our service.
2.6 We do not share information collected with unauthorized third parties.
2.7 We use email and social media platforms to communicate with clients regarding requests and services.
2.8 Occasionally, we may notify you about new services and corporate offers through social media platforms or email updates.
2.9 We will notify you in advance if we collect information for purposes not listed above.
3. DISCLOSURE
3.1 We disclose your personal and business information to government bodies only for corporate and legal purposes as part of acting on behalf of public agencies.
3.2 Other than those individuals and entities listed below, your personal information will not be disclosed to any external body unless we have your permission, or it is legally required or permitted by applicable law. The information you provide may be disclosed to:
• Regulatory authorities;
• Lawyers, accountants, auditors, or other advisors engaged by CW;
• Third-party service providers;
• Any agents acting on our behalf; and
• Business partners, including partner firms engaged to assist in service delivery, or credit information companies for credit evaluation or debt recovery purposes.
4. RETENTION LIMITATION
4.1 Section 25 of the PDPA requires us to retain your documents containing personal data for as long as:
• We have specific business requirements for the services provided to you; or
• We are legally obligated to retain the data, even after our business relationship ends.
5. PROTECTION OF PERSONAL DATA
5.1 We are committed to ensuring the security of your information. To prevent unauthorized access or disclosure, we have implemented physical, electronic, and managerial measures designed to safeguard your personal data.
6. ENHANCED CONSENT AND DATA BREACH NOTIFICATION
6.1 Enhanced Consent Framework: Under the updated PDPA, we follow enhanced consent requirements, including “deemed consent” for legitimate business purposes. This allows us to collect and use your data for such purposes without explicit consent, as permitted by law.
6.2 Data Breach Notification: In the event of a data breach that poses significant harm to individuals, we are required to notify the affected individuals and the Personal Data Protection Commission (PDPC) in compliance with PDPA requirements. We will do so without undue delay to minimize potential risks to individuals.
7. DATA PROTECTION OFFICER (DPO)
7.1 If you have any inquiries or feedback regarding our personal data protection policies or wish to make any requests regarding your personal data, please contact our Data Protection Officer at:
Data Protection Officer
Address : 1 Tampines North Dr. 1, #06-08 T-Space, Singapore 528559
Contact No. : +65 8899 6053
Email Address : info@sgcwbusinesssolutions.com