Privacy policy.

Respecting your privacy and protecting your personal data.

DataSpark data protection policy. 

Respecting your privacy and protecting your personal data 

DS collects information to understand your needs better. This helps us to improve our services and the way we communicate with you. 

We know that privacy is important to you and we strive to be as open and transparent as possible in how we serve you. 

We conduct our business in compliance with the Personal Data Protection Act (PDPA) and have implemented additional measures to protect your personal data. 

DS’ Data Protection Policy aims to help you understand how we collect, use, share and protect your personal data. 

Ways we collect your personal data 

We may collect your personal data when you: 

  • Subscribe to our services
  • Use our network and other DS products or services
  • Register for a specific product or service 
  • Sign up for alerts or newsletters 
  • Contact us with a question or request for assistance
  • Participate in a competition, lucky draw or survey 
  • Visit our websites 

The information we collect 

The information we collect depends on the products and services you use and subscribe to. Here are key examples: 

  • Your identity – This includes NRIC, FIN or passport number, address, telephone number, e-mail address, date of birth, as well as service-related information such as bank and credit card details, device ID and IP address. 
  • Your interaction with us – For example, a note or recording of a call you make to one of our contact centres, an email or letter you send to us or other records of any contact you have with us. 
  • Your account information – For example, the subscription services you use or other details related to your account. 
  • Information on your use of our services – For example, the phone numbers you call or send text messages to and vice versa, as well as the date, time and duration of your calls through our network and the approximate location of your mobile device. 
  • Your preferences – This is based on what you share with us on how you would like to be contacted, and your preferred products, services and lifestyle activities for example. 
  • Information from other organisations – These organisations include fraud-prevention agencies, business directories, credit reference agencies or individuals we believe you have authorised to provide your personal details on your behalf. 
  • Site performance identifiers: these give us information about how our websites or apps are used. If you access DS services from a mobile or other device, this may include your device ID, device and software characteristics (such as type and configuration), geolocation data, and connection information.
  • Analytics cookies: we use these to gather statistics about our site and apps. For example, they help us monitor how many users are on the site or app, and what sections are most popular. 
  • Advertising cookies: we use these cookies to improve our understanding of the kind of advertising that may be relevant to your aggregated segment. 

We use cookies or digital identifiers for a number of purposes, including enabling targeted advertising. 

It's important to know you can clear cookies or digital identifiers from your device and also disable future use of them by changing the security settings on your web browser or in apps. However, doing this might mean that parts of DS’ websites and apps may not work as they should. 

We also use system information arising from your use of our services for de-identified statistical analysis. 

How we use your information 

We may use your information for: 

Provisioning & administration of services 

  • Process your orders and activate or deactivate services 
  • Enable us to process bills and payments 
  • Respond to enquiries and requests from you or people you have authorised 
  • Inform you about service upgrades and updates 
  • Facilitate interconnection and inter-operability with our service providers 

Market research, network & service enhancement 

  • ‍Conduct market research and customer satisfaction surveys to improve our customer service; develop new products, as well as personalise the services we offer you 
  • ‍Perform market analysis* 

(*Upon request from private and public organisations, we may provide information collected as described above for their planning purposes. The information included within any reports to these organisations is always aggregated and anonymised such that no particular individual is identifiable.) 

Security and risk management 

  • Inform you of service and security issues 
  • Prevent and detect fraud or other crimes and recover debts 
  • Conduct internal audits 
  • Ensure the safety and security of our properties and systems
  • Conduct checks against money laundering, terrorism financing and related risks 

Legal & regulatory requirements 

  • ‍Meet legal, regulatory and other requirements including providing assistance to law enforcement, judicial and other government agencies 

We will not use your personal data for purposes other than what we have informed you, or which are permitted under local laws and regulations. 

We will not offer, publish or share your personal data with third parties outside of the DS Group for commercial purposes, without seeking your explicit permission. 

We will retain your information for only as long as there is a business or legal need. 

Sharing your information 

We may share your information with: 

  • Companies in the DS Group
  • Business partners and vendors we work with to deliver services you have subscribed to 
  • Industry regulators and other government organisations, as required by local laws and regulations
  • Financial institutions for purposes such as facilitating GIRO and/or payments
  • Research institutions for market analysis purposes 

Your information is disclosed to the above only for relevant purposes (please refer to those mentioned in this Policy) or to protect the interests of our customers. 

In some cases, we encrypt, anonymise and aggregate the information before sharing it. Anonymising means stripping the information of personally identifiable features. Aggregating means presenting the information in groups or segments e.g. age groups. 

We will also ensure that overseas organisations we work with observe strict confidentiality and data protection obligations. 

Access to personal data from overseas 

Some of the parties mentioned above are located overseas, but again, we only give them secure access to the personal data they need to do their job. These overseas companies are involved in providing services like data storage, data analysis, targeted advertising and reporting, and customer and technical support, and they do it from countries like Australia, India and the Philippines. 

DS maintains effective control of your information at all times, including by ensuring that parties located overseas are subject to strict controls that limit access and subsequent handling of your information to the extent strictly necessary to perform the relevant function and protect your information from unauthorised use and disclosure. 

Protecting your information 

We have implemented stringent measures to secure and protect your information. These include: 

  • Safeguards to prevent security breaches in our network and database systems
  • Limits on access to information in our systems and the systems of our business partners and vendors
  • Strict verification processes to prevent unauthorised access to information 

Legal obligations and other privacy exceptions 

  • We give access to personal data where we are permitted or obliged to do so by Singapore law. For example, in some circumstances we will use or disclose personal data to react to unlawful activity, serious misconduct, or to reduce or prevent a serious threat to life, health or safety. We are obliged to cooperate with law enforcement bodies in some circumstances. We may disclose personal data, when we receive an access request or warrant that is authorised under Singapore law. 

Others 

  • Aside from the above, we will only disclose personal data to others if you've given us permission, or if the disclosure relates to the main reason we collected the information and you'd reasonably expect us to do so. 

How To Access Your Personal Data 

If you ask us, we will usually give you access to the personal data we hold about you. We will always confirm your identity before giving access to your personal data. 

You can ask for access by writing to us at info@datasparkanalytics.com. It will really help if you tell us what you're looking for. 

There are circumstances under Singapore privacy laws where we may not give you access to the personal data we hold about you. For example, we can't give you access if it would unreasonably affect someone else's privacy or if giving you access poses a serious threat to someone's life, health or safety. 

There is generally no cost for accessing the personal data we hold about you, unless the request is complex or resource intensive. If there is a charge, it will be reasonable and we will let you know what it is going to be so that you can agree to it before we go ahead. 

Quality Of Personal data 

We aim to keep the personal data we hold about you accurate, up-to-date and complete. If you think our records need to be corrected, please reach out to us at info@datasparkanalytics.com. 

We encourage you to update your details with us so we can deliver better service to you, and so the others we work with have access to the information they need to do their job. 

Questions? 

Feel free to contact our Data Protection Officer at info@datasparkanalytics.com. 

If you make a complaint about privacy, we will acknowledge receipt of your complaint, and try to investigate and respond to you within 30 days. If you are unhappy with the outcome, you can lodge a complaint with the Data Protection Commission. 

General Information 

We may amend or modify this Policy from time to time, such as in response to changes to legislation. We remain committed to safeguarding your information and being open about our data protection practices. 

This Policy is to be read together with our Terms and Conditions for respective services and applies to all products and services provided by any DS Group Corporation. 

Capitalised terms in this Policy have the meanings given to them in the Terms and Conditions of Services - General unless otherwise defined. “We”, “our” and “us” refer to all DS Group Corporations. 

Please note that different or separate data protection policies may apply to specific products and services provided by DS. Please refer to the terms of use for specific products and services for more information.