Data Protection and Privacy Policy

Your privacy is important to us. The purpose of this Privacy Policy is to inform you of how Tinkertanker Pte Ltd (“Tinkertanker”), the owner of the GuestDay service, manages personal data in accordance with the Personal Data Protection Act 2012 (“the Act”).

GuestDay is not available for use in the European Union.

The types of personal data we collect

We may collect and hold personal data of persons/entities including but not limited to:

Examples of such personal data include biodata, contact details, account information and your preferences, queries, requests and feedback.

How we collect personal data

The ways in which we may collect your personal data include (but are not limited to) collecting directly or indirectly from you or your authorized representatives in the course of:

Our purposes for collecting personal data

In general, we may use your personal data for the following purposes:

How we may use or disclose personal data

We will only use, disclose and/or transfer your personal data for the purposes you have been notified of and consented to or which are permitted under applicable laws and regulations.

We will not sell, rent or give away personal data to third parties for commercial purposes without your consent.

Who we share personal data with

Depending on the product or service concerned, personal data may be disclosed or transferred to:

Where personal data is disclosed or transferred to organizations outside of Tinkertanker who handle or obtain personal data as service providers to Tinkertanker, we require such organizations to acknowledge the confidentiality of such personal data, undertake to respect any individual's right to privacy and comply with the Act and this Policy and use such personal data only for our purposes and otherwise follow our reasonable directions with respect to this data.

In addition, where personal data is transferred overseas and we may need to process or deal with your personal data outside Singapore, we will ensure that such transfer is in compliance with the Act and this Policy or is permitted under applicable data protection and privacy laws and regulations.

How we manage, protect and store personal data

We have appointed a Data Protection Officer (“DPO”) to oversee our management of personal data in accordance with the Act.

We regard breaches of your privacy very seriously and we have implemented measures to secure and protect your information, such as training our employees who handle your personal data to respect the confidentiality of such personal data and your privacy, storing personal data in a combination of secure computer storage facilities and paper based files and other records, taking steps to protect the personal data we hold from misuse, loss, unauthorised access, modification or disclosure.

However, you will appreciate that it is not for us to perfectly secure your personal data from cyber attacks, such as hacking, spyware and viruses. Accordingly, you will not hold us liable for any unauthorized disclosure, loss or destruction of your personal data arising from such risks.

The Act also requires us not to store personal data longer than necessary. We will cease to retain your personal data when we no longer require such personal data for the purposes we originally notified you of or for any business or legal needs.

Correcting or updating your personal data

We endeavour to ensure that the personal data we hold about you is accurate and up-to-date. We realize that such personal data changes frequently with changes of address and other personal circumstances. We encourage you to contact us as soon as possible in order to update any personal data. Please contact us at [email protected]. We may require you to verify your identity.

Accessing your personal data that we may hold

To make a request to access the personal data we hold about you, please contact us at [email protected]. We will require you to verify your identity and to specify what data you require. We may charge a fee to cover the cost of verifying the application and locating, retrieving, reviewing and copying any material requested. If the data sought is extensive, we will advise the likely cost in advance and can help to refine your request if required.

Withdrawing consent for use or storage of your personal data

To make a request to withdraw your consent previously given, please contact us at [email protected].

Complaints

If you consider that any action of Tinkertanker breaches the Act or this Policy, you can make a complaint by writing to us at [email protected]. We will endeavour to act promptly in response to a complaint.

Contacting us

Please contact us at [email protected].

Updates to this Policy

This Policy will be reviewed from time to time to take account of new laws and technology, changes to our operations and practices and the changing business environment. This Policy was last updated on 1 September 2017. If you are unsure whether you are reading the most current version, please contact us.

Got all your questions answered?

×