Avensys Consulting Data Protection Policy
At Avensys, we take data protection very seriously.
We understand the importance of your privacy and personal data. Therefore, we process all your personal data in compliance with the relevant data protection regulations in each region, including the Personal Data Protection Act 2012 (“PDPA”) in Singapore, the General Data Protection Regulation (“GDPR”) for individuals in the European Economic Area (EEA), and other applicable laws where we operate. This Data Protection Policy provides clarification on how Avensys collects, uses, and discloses your personal data.
By interacting with us, submitting information to us, or signing up for any products and services offered by us, you agree and consent to Avensys, as well as our respective representatives and/or agents and relevant third parties, collecting, using, disclosing, and/or sharing your personal data in the manner set forth in this Data Protection Policy. In this Data Protection Policy, Avensys refers to Avensys Consulting Pte. Ltd., its subsidiaries, and any of their offices and business units, including Singapore (HQ) and our regional offices in Malaysia, Thailand, India, Australia, Philippines, United Kingdom (UK), the United Arab Emirates (UAE), and the Kingdom of Saudi Arabia (KSA).
1. PERSONAL DATA
1.1 In this Data Protection Policy, “Personal Data” refers to any data, whether true or not, about an individual who can be identified (a) from that data; or (b) from that data and other information to which we have or are likely to have access, including data in our records as may be updated from time to time.
1.2 The type and extent of personal data we generally collect depends on the method and purpose of communication between us. Typically, we collect the following types of personal data:
- (a) your name, gender, title/position, NRIC, passport or other identification numbers, date of birth, nationality, telephone number, mailing address, email address, and any other information relating to any individuals which you have provided us in any forms you may have submitted to us, or via other forms of interaction with you;
- (b) information about your use of our websites, apps, and services including cookies and IP addresses;
- (c) resume, educational qualifications, professional qualifications, employment references, and employment history; and
- (d) your bank account information and salary.
2. COLLECTION OF PERSONAL DATA
2.1 Personal data may be collected when you/we:
- (a) contact us with an enquiry or request for assistance;
- (b) communicate with our representative;
- (c) respond to your enquiries and requests;
- (d) purchase and use our solutions and services;
- (e) conduct our administrative and business functions;
- (f) access and use our website;
- (g) register for our events, workshops, seminars, or subscribe to our mailing lists/newsletters; and
- (h) market our solutions and services to you.
2.2 In addition to the above, we may also obtain your personal data through third parties from time to time. Where we do so, we will seek confirmation from such third parties that they have obtained your personal data legally and that we have the right to acquire it from them and use it.
3. PURPOSES OF COLLECTION, USE AND DISCLOSURE OF PERSONAL DATA
3.1 In general, we collect, use, disclose, and/or share your personal data for the following purposes:
- (a) responding to enquiries and requests;
- (b) sending communications;
- (c) informing you about our services and solutions;
- (d) better personalization of services and solutions;
- (e) establishing, managing, and maintaining business relationships;
- (f) conduct of administrative and business functions;
- (g) processing applications for a career at Avensys;
- (h) processing requests for subscriptions to website updates, newsletters, and mailing lists;
- (i) processing requests for registrations to Avensys events, seminars, and workshops;
- (j) monitoring the performance of website services and improving accessibility;
- (k) compliance with audit requirements; and
- (l) compliance with any rule, law, regulation, or lawful request or direction of any competent regulator/government authority, or as Avensys in good faith believes to be necessary and appropriate.
4. DISCLOSURE OF PERSONAL DATA
4.1 Primarily, Avensys may disclose your personal data to our employees and affiliates for business and administrative purposes mentioned in paragraph 3.1.
4.2 From time to time, Avensys may disclose or share your personal data with other parties subject to the purposes set out in paragraph 3.1. Where necessary and to the extent required, Avensys may from time to time disclose your personal data to:
- (a) contractors, suppliers, and other parties providing business, marketing, and other services to us;
- (b) third parties in the event of any reorganization, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock;
- (c) insurers and our professional advisors such as auditors and lawyers;
- (d) relevant government regulators or authority or law enforcement agency to comply with any laws or rules and regulations imposed by any governmental authority; and
- (e) banks and their respective service providers.
5. DATA SECURITY
5.1 We shall take reasonable efforts to protect personal data in our possession from unauthorized access, modification, disclosure, or similar risks.
5.2 In line with GDPR, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including but not limited to encryption, pseudonymization, and regular testing of security protocols.
5.3 While we strive to protect your personal data, we cannot ensure the security of information transmitted online. This is due to the inherently insecure nature of the internet as a medium of data transmission.
6. ACCESS, CORRECTION OF PERSONAL DATA AND WITHDRAWAL OF CONSENT
6.1 GDPR Rights: In compliance with the GDPR, individuals in the European Economic Area (EEA) have the following rights regarding their personal data:
- (a) Right to access – to request details of the personal data we hold;
- (b) Right to rectification – to have your personal data corrected if it is inaccurate or incomplete;
- (c) Right to erasure – to request the deletion of your personal data under certain circumstances;
- (d) Right to restrict processing – to request restriction of processing under certain conditions;
- (e) Right to data portability – to obtain your personal data in a structured, commonly used, and machine-readable format for transfer to another organization;
- (f) Right to object – to object to the processing of personal data for direct marketing or other legitimate interests.
6.2 For PDPA compliance, individuals in Singapore may request access, corrections, or withdrawal of consent as per the PDPA guidelines. We will respond within a reasonable timeframe, typically within 30 days.
7. USE OF COOKIES
7.1 Avensys website utilizes ‘cookies’ – a small file stored on a user’s computer designed to hold a modest amount of data specific to an incoming user and the website assessed. Using cookies allows Avensys to engage you in a more meaningful way by allowing us to recall information you have previously entered via our website without having you re-enter them and to tailor our website’s content to be more relevant to you.
7.2 While Avensys website does not utilize tracking cookies, we nonetheless recognize that you may not wish to receive cookies on your computer. If that is the case, you may wish to visit the options menu for your browser to prevent cookies from being accepted.
7.3 Kindly note that from time to time, we may monitor user activity or IP address on our website in order to administer the website, analyse demographic access trends and improve accessibility.
8. THIRD-PARTY WEBSITES
8.1 In using Avensys’ website, you may come across links to other websites whether of entities within Avensys or third parties. Please note that the contents of this Data Protection Policy do not extend to such third-party websites. Should you visit any third party websites through links made available on our website, kindly be reminded that Avensys makes no representations or warranties in relation to the privacy practices of any third party website and are not responsible for the privacy policies or content of any third party website.
9. DIRECT MARKETING
9.1 From time to time, we may send you communications and information about our services and solutions that we consider may be of interest to you. These communications may come in various forms, e.g. mail, SMS, fax or email. If you do not wish to receive such direct marketing communications from us, you can opt-out of receiving them by submitting your request using the contact details mentioned in paragraph 10.1 or using the opt-out mechanisms provided in the communications.
10. CONTACT US
If you have any enquiries regarding this Data Protection Policy or would like to contact us regarding how your personal data is being handled by Avensys, please contact our Singapore HQ via our contact details below:
Avensys Consulting Pte Ltd Vertex Tower B, #08-04 33 Ubi Avenue 3 Singapore 408868 Attn to: Data Protection Officer | Alternate Methods Email to: privacy@aven-sys.com Attn to: Data Protection Officer |
You may also contact the Data Protection Officer for Singapore (HQ) and our regional offices in Malaysia, Thailand, India, Australia, Philippines, United Kingdom (UK), the United Arab Emirates (UAE) and the Kingdom of Saudi Arabia (KSA) via email at: privacy@aven-sys.com.
11. GOVERNING LAW
11. GOVERNING LAW This Data Protection Policy shall be governed in all respects by the applicable laws in the respective countries where Avensys operates, including but not limited to the PDPA in Singapore and other relevant data protection laws in Singapore and our regional offices in Malaysia, Thailand, India, Australia, Philippines, United Kingdom (UK), the United Arab Emirates (UAE) and the Kingdom of Saudi Arabia (KSA).
12. CHANGES TO OUR DATA PROTECTION POLICY
12.1 Avensys may revise this Data Protection Policy from time to time and any such revisions will be notified in this website. Kindly take note to review this policy as well as any updates on a regular basis.