It applies to the personal data of all individuals (‘you’, ‘your’, etc.) who are our beneficiaries, members of the families of our beneficiaries, donors to us, participants in our public events (such as The Fighters’ Walk), our employees, including volunteers, and online users of our website at www.diabetes.org.sg and www.thefighterswalk.org. For our beneficiaries, ‘you’, ‘your’, etc. also includes a parent or parents, a guardian and another caregiver who takes responsibility for the beneficiary’s welfare.
We collect personal data from or about our beneficiaries and potential beneficiaries and, in each case, their families and from our donors, employees, including volunteers, and other individuals. We use and/or disclose that personal data so that we can provide our services (which are described on our websites) efficiently and effectively and so that we can comply with our legal obligations.
With one exception, we collect personal data directly from you in various ways, including in‑person meetings and by asking you to fill up various forms.
If at any time you would prefer not to provide some personal data that we request, please let us know. We will then explain our purpose for collecting that personal data. If you still do not wish to provide it, we will discuss with you whether we can proceed without it, which we may not be able to do so.
We collect, use, or disclose personal about you only if:
Where we ask you to consent to us collecting, using or disclosing personal data about you, we will first inform you of our purposes for doing so. We will not use or disclose personal data about you for any other purposes without first informing you of the additional purposes and getting your consent to us doing so for the additional purpose(s).
In some circumstances, you are deemed to have consented to us collecting, using or disclosing personal data about you for a purpose. For example, if you pose for a photograph by our photographer at one of our events or if you send us your CV when you apply for a job with us you are deemed to have consented to us collecting, using or disclosing the personal data about you that is in the photograph (that is, your image) or the CV.
We are permitted by the PDPA to collect, use or disclose personal data about you without your consent in various circumstances that include the following:
If you would like more information about the circumstances under which we may collect, use or disclose personal data without your consent, please contact our Data Protection Officer.
If you browse our website, we do not capture any data that allows us to identify you.
On giving us reasonable notice, you may at any time withdraw any consent you have given, or are deemed to have been given, to us collecting, using or disclosing personal data about you for any purpose. Any notice of withdrawal of consent should be given in writing (which includes email) sent to our Data Protection Officer.
The consequences of you withdrawing consent to us collecting, using or disclosing personal data about you for any purpose may be onerous for you. Therefore:
If you still wish to withdraw your consent, we will act on your request and cease collecting, using or disclosing the personal data, unless doing so without your consent is required or authorised under the PDPA or other written law. We will also cause any and all of our data intermediaries to cease collecting, using or disclosing the personal data.
In addition, we will cease to retain our documents containing that personal data, or remove the means by which it can be associated with you, as soon as it is reasonable for us to assume that retention is no longer necessary for our legal or business purposes.
On request by you, we will as soon as reasonably possible provide you with:
Your request to us should be made in writing (which includes email) sent to our Data Protection Officer. We may require you to provide proof of your identity.
There are some circumstances where we are not required to provide you with information, and others where we are not allowed by the PDPA to do so. In some circumstances we may be able to provide you with limited information. You may obtain information about all of these circumstances from our Data Protection Officer.
You may request us to correct an error or omission in the personal data about you that we hold or that is under our control. Your request to us should be made in writing (which includes email) sent to our data Protection Officer. We may require you to provide proof of your identity and/or documents or other evidence supporting your request.
There are some circumstances where we do not make a correction and other circumstances where we are not required to act on such a request. You may obtain information about these circumstances from our Data Protection Officer.
Unless we are satisfied on reasonable grounds that a correction should not be made, we will correct the personal data as soon as practicable. We will also send the corrected personal data to every other organisation to which we have disclosed it within a year before the date we made the correction (unless that other organisation does not need the corrected personal data for any legal or business purpose). Alternatively, with your consent, we will send the corrected personal data only to specific organisations as agreed with you.
We make reasonable efforts to ensure that personal data that we collect about you is accurate and complete if we are likely to use it to make a decision that affects you or we are likely to disclose it to another organisation.
We take reasonable steps to ensure the security of personal data about you that is in our possession or under our control and to protect it against risks such as loss or unauthorised access, destruction, use, modification or disclosure. Only authorised personnel are permitted to have access to personal data about you.
We cease to retain documents containing personal data about you as soon as it is reasonable to assume that the purpose for which we collected that personal data is no longer being served by its retention and retention is no longer necessary for legal or business purposes.
We strive for excellence in providing services to our beneficiaries and in all our interactions with donors, and with our employees (which includes our volunteers), as well as with the community generally. This includes our compliance with the PDPA.
Please direct any queries or feedbacks you have about the way in which we collect, use or disclose personal data about you to our Data Protection Officer. We will not deal with anonymous feedback because we are unable to investigate them. If you raise a feedback anonymously, we will nevertheless note the matter raised.
Whenever you make a feedback, our Data Protection Officer will seek to obtain sufficient information from you to enable us to investigate it. Please be prepared to provide our Data Protection Officer with information as to, for example:
Upon receiving a feedback, our Data Protection Officer will investigate it and within five business days advise you of:
If a complaint is settled to your complete satisfaction, our Data Protection Officer is not required to advise you in writing of the outcome of the complaint, unless you request a written response (which may be by email).
If a complaint is not settled to your complete satisfaction, our Data Protection Officer will advise you of the outcome of the complaint and the reason(s) for that outcome in writing (which may be by email).
We have appointed a Data Protection Officer who is contactable as follows. Please attention to “The Data Protection Officer” and,