PRIVACY POLICY

Data Protection Notice for Donors, Service Users and Volunteers

This Data Protection Notice (“Notice”) sets out the basis which BW Monastery and its satellite centres (“BWM", “we”, “us” or “our”) may collect, use, disclose or otherwise process personal data of our prospective service users, service users, service users' authorised representative, donors, volunteers in accordance with the Personal Data Protection Act (“PDPA”). This Notice applies to personal data in our possession or under our control, including personal data in the possession of organisations which we have engaged to collect, use, disclose or process personal data for our purposes.

Collection, use, disclosure or otherwise processing of personal data of our service users on behalf of government ministries or statutory boards will be in accordance with guidelines set out in the government’s data management policy. BWM will comply with the relevant requirements under the government’s data management policy.

PERSONAL DATA

  1. As used in this Notice:

    “personal data” means data, whether true or not, about an individual (whether a prospective service users, service users, service users' authorised representative, donors, volunteers or otherwise) who can be identified: (a) from that data; or (b) from that data and other information to which we have or are likely to have access.

  2. Depending on the nature of your interaction with us, some examples of personal data which we may collect from you include name, identification numbers such as NRIC, FIN, work permit and birth certificate, contact information such as residential address, email address or telephone number, nationality, gender, date of birth, marital status, photographs and other audio-visual information, employment information, financial information such as credit card numbers, debit card numbers or bank account information, referral information, and any other information relating to individuals which you provide to us.

  3. Other terms used in this Notice shall have the meanings given to them in the PDPA (where the context so permits).

    COLLECTION, USE AND DISCLOSURE OF PERSONAL DATA 

  4. We generally do not collect your personal data unless (a) it is provided to us voluntarily by you directly or via a third party who has been duly authorised by you to disclose your personal data to us (your “authorised representative”) after (i) you (or your authorised representative) have been notified of the purposes for which the data is collected, and (ii) you (or your authorised representative) have provided written consent to the collection and usage of your personal data for those purposes, or (b) collection and use of personal data without consent is permitted or required by the PDPA or other laws. We shall seek your consent before collecting any additional personal data and before using your personal data for a purpose which has not been notified to you (except where permitted or authorised by law). 

  5. We may collect and use your personal data for any or all of the following purposes:

    •  establishing or managing your relationship with us. This includes:

      • Where you are a prospective service user,

        • processing and evaluating your application for our services

      • Where you are a service user,

        • providing the services requested by you;

        • monitoring, evaluating and/or auditing of services provided. This may include an assessment of the quality of the services provided and the effects of the services provided (both in the short and long term, and after you have stopped using the services); and

        • research related to your personal circumstances or services you used. We will notify you and obtain your written consent before using your personal data for any specific research project, unless otherwise permitted under the PDPA or other legislation.

      • Where you are a service user’s authorised representative,

        • processing and evaluating the service user’s application for our services.

      • Where you are a donor,

        • processing your donations

      • Where you are a volunteer,

        • processing and evaluating your suitability to volunteer; and

        • monitoring, evaluating and/or auditing of services you participated in.

    • providing you with information on our upcoming events or activities, where you have specifically requested to receive such information;

    • verifying your identity;

    • responding to, handling, and processing queries, requests, applications, complaints and feedback from you;

    • complying with any applicable laws, regulations, codes of practice, guidelines, or rules, or to assist in law enforcement and investigations conducted by any governmental and/or regulatory authority;

    • any other purposes for which you have provided the information;

    • transmitting to any unaffiliated third parties including our third party service providers and agents, and relevant governmental and/or regulatory authorities, whether in Singapore or abroad, for the aforementioned purposes; and

    • any other incidental purposes related to or in connection with the above.

  6. We may disclose your personal data:

    • where such disclosure is required for, or in connection with, the provision of the services requested by you;

    • to third party service providers, agents and other organisations we have engaged to perform any of the purposes listed in clause 5 above for us;

    • to comply with any applicable laws, regulations, codes of practice, guidelines, rules or requests by public agencies, or to assist in law enforcement and investigations; and

    • any other party to whom you authorised us to disclose your personal data to, or where necessary to undertake any action requested by you.

  7. The purposes listed in the above clauses may continue to apply even in situations where your relationship with us (for example, pursuant to a contract) has been terminated or altered in any way, for a reasonable period thereafter (including, where applicable, a period to enable us to enforce our rights under a contract with you).

    WITHDRAWING YOUR CONSENT

  8. The consent that you provide for the collection, use and disclosure of your personal data will remain valid until such time it is being withdrawn by you or your authorised representative in writing. You or your authorised representative may withdraw consent and request us to stop collecting, using and/or disclosing your personal data for any or all of the purposes listed above by submitting your request via email or otherwise in writing to our Data Protection Officers at the contact details provided below. If you are unable to submit your request in writing or if you require any assistance with the submission of your request, you can ask to speak to or meet with our Data Protection Officers.

  9. Upon receipt of your written request to withdraw your consent, we may require reasonable time (depending on the complexity of the request and its impact on our relationship with you) for your request to be processed and for us to notify you of the consequences of us acceding to the same, including any legal consequences which may affect your rights and liabilities to us. In general, we shall seek to process your request within ten (10) business days of receiving it.

  10. Whilst we respect your decision to withdraw your consent, please note that depending on the nature and scope of your request, we may not be in a position to continue providing our goods or services to you and we shall, in such circumstances, notify you before completing the processing of your request. Should you decide to cancel your withdrawal of consent, please inform us in the manner described in clause 8 above.

  11. Please note that withdrawing consent does not affect our right to continue to collect, use and disclose personal data where such collection, use and disclose without consent is permitted or required under applicable laws.

    ACCESS TO AND CORRECTION OF PERSONAL DATA

  12. If you wish to make (a) an access request for access to a copy of the personal data which we hold about you or information about the ways in which we use or disclose your personal data, or (b) a correction request to correct or update any of your personal data which we hold about you, you may submit your request via email or otherwise in writing, to our Data Protection Officers at the contact details provided below. If you require assistance with the submission of your request, you can ask to speak to or meet with our Data Protection Officers.

  13. Please note that a reasonable fee may be charged for an access request. If so, we will inform you of the fee before processing your request.

  14. We will respond to your request as soon as reasonably possible. In general, our response will be within ten (10) business days. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any personal data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA).  

    PROTECTION OF PERSONAL DATA

  15. To safeguard your personal data from unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks, we have introduced appropriate administrative, physical and technical measures such as up-to-date antivirus protection, encryption, use of privacy filters, disclosing personal data both internally and to our authorised third party service providers and agents only on a need-to-know basis, and implementing role-based access control.

  16. You should be aware, however, that no method of transmission over the Internet or method of electronic storage is completely secure. While security cannot be guaranteed, we strive to protect the security of your information and are constantly reviewing and enhancing our information security measures.

    ACCURACY OF PERSONAL DATA

  17. We generally rely on personal data provided by you (or your authorised representative). In order to ensure that your personal data is current, complete and accurate, please update us if there are changes to your personal data by informing our Data Protection Officers at the contact details provided below.

    RETENTION OF PERSONAL DATA

  18. We may retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws.

  19. We will cease to retain your personal data, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal data was collected, and is no longer necessary for legal or business purposes.

    TRANSFERS OF PERSONAL DATA OUTSIDE OF SINGAPORE

  20. We generally do not transfer your personal data to countries outside of Singapore. However, if we do so, we will obtain your consent for the transfer to be made and we will take steps to ensure that your personal data continues to receive a standard of protection that is at least comparable to that provided under the PDPA.

    DATA PROTECTION OFFICERS

  21. You may contact our Data Protection Officers if you have any enquiries or feedback on our personal data protection policies and procedures, or if you wish to make any request, in the following manner:

    Names of DPOs: Mr Freddrick Lee

    Contact No.: 6547 1580

    Email Address: info@bwm.org.sg

    Address: BW Monastery, 1 Woodlands Drive 16, Singapore 737764

    EFFECT OF NOTICE AND CHANGES TO NOTICE

  22. This Notice applies in conjunction with any other notices, contractual clauses and consent clauses that apply in relation to the collection, use and disclosure of your personal data by us.

  23. We may revise this Notice from time to time without any prior notice. You may determine if any such revision has taken place by referring to the date on which this Notice was last updated. Your continued use of our services constitutes your acknowledgement and acceptance of such changes.

Last updated: 13 November 2020

 

隐私政策

保护吉祥宝聚寺学员、捐助者、义工及会员们的隐私政策

这项隐私政策涵盖吉祥宝聚寺以及附属的中心(合称为“吉祥寺”或“我们”)如何收集、使用及披露(处理)您的个人资料。

隐私政策中所提到的个人资料包括可以用来识别特定人的资料,例如:您的姓名、公民身份证、护照或其他可代表身份的号码、电话号码、住址、邮址及任何您所提供给我们的相关个人资料。

处理您个人资料的目的

吉祥寺会在下列与您有直接或间接关系的情况下,处理您的个人资料:

  • 进行、管理、促进、维持和/或处理会员、义工、节目参与者、受益者、学员和/或捐助者;

    1. 提供您所需求的相关服务及维持我们与您的关系;

    2. 为了经营上的用途,包括评估您可享用的津贴、补助金、节目和服务,以及资料统计与分析;

    3. 提供吉祥寺活动、产品、节目及服务,和/或与我们有关联、合作的第三方的宣传材料;

    4. 向您征集和其他与通讯有关的需求和捐赠,以及提供您产品的销售与售后服务;

    5. 针对个人保健、医疗及福利有关的要求予以支援、处理和/或实施

    6. 在法律、条例或指令的要求下配合调查而提供您的资料进行身份辨认、制裁筛查及严密审查。

    7. 使用您的资料以进行市场的研究及调查,从而改进我们的产品、节目、服务及运作。

    8. 为了遵守法律或条规,包括任何本地或外地的监管机构、政府、税务或执法部门的请求而向相关单位提供您的资料;

    9. 为了预防及检测犯罪案(包括没有额度限制的交易、洗黑钱、恐怖主义及欺诈的预防、检测及起诉);

    10. 为了寻求专业建议,包括任何跟法律程序有关联 (含任何潜在的法律诉讼),以获得法律咨询或建立、实施和保护法律权利;

    11. 为了进行市场销售;

    12. 为了监控我们服务范围的质量。

个人资料的收集

一般上我们蒐集个人资料的方式有下列几种:

  • 当您填写任何表格,包括(但不限于)申请表格及申报表;

    1. 当您订立任何协议或通过与我们互动、享用我们提供的服务、捐赠或购买我们的任何产品时而提供文件或资料给我们;

    2. 当您通过电话、书信、传真、面议、电邮与我们的职员(包括客户服务员、销售代表和代理商);

    3. 当您通过互联网和其他科技的平台来使用我们的服务,例如:网站、内部网络和应用程序,包括当您与我们建立的任何互联网上的户口;

    4. 当您在我们的大楼范围内,影像被我们的闭路摄像机捕捉到,或在参加我们所举办的活动时,您的照片或视频由我们的摄影师纳入镜头;

    5. 当我们的销售代表和代理商,以及其他提供服务的商家与您取得联系后,而您也给予了回应;

    6. 当您呈报求职表格或与此相关的任何原因,而提供了文件或资料给我们,包括您的履历表和/或个人的背景资料;

    7. 当我们从合作单位、业务单位、公共机构、您的雇主和其他第三关联方收到您的个人资料;

    8. 当您采用我们的电子服务,或通过网站与我们交流,或采用我们网站所提供的服务;

    9. 当我们通过第三者寻求您与我们有关的信息,包括求职申请或申请为我们的代表,比如:从您的前雇主和其他相关部门取得此信息;

    10. 当您登记参与我们的活动或促销、购买产品或服务;和/或

    11. 当您由其他任何原因所呈报给我们的个人资料。

请注意以下几点:

  • 若您所提供的个人资料中含第三方的资料(例如:受赡养养者、配偶、孩子和/或父母),就表示您可代表他们及保证已经取得他们的同意让我们蒐集、使用及披露这些个人资料作为以上所列出的用途

  • 您必须确保所提供给我们的个人资料(无论是个人或第三方)是完整、准确、真实及正确的;否则将导致我们无法应您(或第三方)的需求为您提供产品和服务

  • 若您所提供给我们的信息有任何更改,您应该尽早联络我们以更新您的个人资料。

  • 若您在浏览我们的网站时不希望接收小型文字档案(cookies)(比如:储存您的喜好及记录您查看信息的状态)您可以调整浏览器的设置。如此一来每当您接收到cookie时就会获得通知。 若您希望禁止这些科技与cookie链接,你可更改浏览器的设置,然而,这样做之后您可能就无法看到我们网站上的某些功能或进入我们某些部分的网站。

我们会向谁披露您的个人资料

吉祥寺将采取合理的措施来保护您的个人资料在未经授权之前被披露。除非涉及任何法律,我们可能会为了上述任何指定的用途向下列的人披露您的个人资料:

  • 任何官员、雇员、吉祥寺的代理人或董事、专业顾问、合作机构、第三方的服务供应商、代理商或提供节目和服务以及业务运作给吉祥寺的承包商,吉祥寺都有义务保障个人资料的机密性是符合所制定的要求。

    1. 任何获得允许的人或应法律、法规的需求或任何其他适用的管道都可披露;

    2. 任何法院、法庭、监管机构(包括国家和/或国际监管机构)、执行机构、交易官方、税务或其他要求我们必须根据法律和/或法规这么做的机关;任何机关或监管机构;任何机构或监管机构的指令、命令或要求;或任何与监管机构或机关所达成的协议;

    3. 相关的政府当局、政府部门、法定机构及办事处;

    4. 任何其他您已授权我们向他透露您的个人资料的人。

若您有意取消之前所给予的同意权或撤回隐私政策所列出的全部规定,请您电邮到info@bwm.org.sg部规定,吉祥寺可能就无法很好地继续为您或您的家人提供服务。吉祥寺有权利考虑您撤回的同意权并决定是否会终止任何您之前与我们立下的合同,以及您是否由此违反了合同上您所应负起的义务或承诺。

安全措施

您的个人资料将可能被转移或储存在新加坡以外的地方。

确保您个人资料的安全对我们很重要,吉祥寺将根据法律的要求设立种种必要的技术,并实施组织内的安全措施来保护您的个人资料。

保留期

我们将按照法律、法规、业务和运作的义务来保留您的个人资料。

市场营销

作为吉祥寺的客户,您有机会选择适合您的市场营销方式。请电邮至info@bwm.org.sg通知我们您的选择。

当事人的权利

您有权利需求一份有关个人资料的副本,以及需求修改任何不正确的信息。若您希望执行这项权利,请播电至6547 1580与下列的人员联系或电邮至info@bwm.org.sg 提出您的请求。在法律上,吉祥寺可以向您收取提供个人资料副本的费用。

电话联系方式
您可拨电话至65471580与下列的职员联系。

资料保护负责人员

资料保护负责人员:李荣栋

邮寄方式

资料保护负责人员

吉祥宝聚寺

No. 1 Woodlands Drive 16, Singapore 737764

更新隐私政策

吉祥寺有权随时更新这项隐私政策,并且在我们的网页、分行内或以其他合适的方式通知大家修订之处。

若中文说明与英文版本有争议之处,请以英文版本为依据。

最后更新于2023年11月09日