PCF Personal Data Protection Policy (Privacy Policy)
Introduction
At PAP Community Foundation (“PCF”), we respect the privacy and confidentiality of personal data in our possession or under our control. We have implemented policies and practices to safeguard the collection, use, disclosure, storage and other processing of personal data provided to us.
How We Collect Your Personal Data
We collect personal data when we perform one or several of the following services for you:
Sparkletots:
- Registering your interest to enrol your child at one of our Centres
- Submitting your application to ECDA for subsidy approval
- Confirming your child’s enrolment at one of our Centres
- When referred by ECDA to contact you for student enrolment at one of our Centres
- Invoicing student fees monthly
- Administrating any student refund fees due to you
- Request us to manage any food and medication for your child
- When you, or any person authorised by you, take your child home at our Centres
- Participate in any commercial or external events or programs organised for your child
- Managing photos and videos for publicity purposes
Sparkle Care:
- Register your interest to enrol for services offered by our centres, including initial assessments and admission
- When we apply your application for eligible subsidies or financial assistance
- When administering medication or medical care, including necessary actions such as hospital transfers and instructions from hospital/ clinic or next of kin
- When making or receiving referrals to or from other service providers
- When processing registration fees, payments, donations or other billing purposes
- When participating in internal or external events and activities
- Through client satisfaction questionnaires to improve our services
- Through website interactions, as well as direct communication via various channels including walk-in enquiries
- To contact caregiver or next of kin for emergency situations
- Informing clients, caregivers and volunteers about new services, events or special activities
- Managing photos and videos for publicity purposes
- When engaging in community screening, outreach and research projects that involve interaction with clients, caregivers and volunteers
General:
- Responding to our events or campaigns
- Providing feedback to us on our quality of service or your user experience
- Visit our websites and leave behind your contact information
- Communicating with us via emails or written correspondence
- Register at any of our reception counters
- Submit your CV and job application form to us in response to our recruitment advertisements
- Receive your CV from recruitment firms or job portals, which are forwarded to or retrieved by us
Types of Personal Data that We Collect about you
The types of personal data we collect about you include:
- Child/Parents/Guardians personal details (Name, Address, NRIC No., Birth certificate, Contact No., Email Address, etc.
- Student’s preferences (Likes, Dislikes, Favourite food, Medication or Service Preference)
- Job Applicant’s personal details (Name, NRIC No. / FIN No. / Passport No., Gender, Date of Birth, Race, Citizenship, Nationality, Marital Status, Religion, Languages spoken or written, Household / Personal Income)
- Job Applicant’s educational and professional qualifications (Highest Education Level, Qualifications, Schools Attended, Academic Transcripts, Membership of Professional Bodies)
- Job applicant’s professional and work experience (Job title, Occupation, Employment history, Work experience, Curriculum Vitae)
How We Use your Personal Data
We use the personal data you provide us for one or more of the following purposes:
- Processing registration/enrolment
- Processing billing, payment refunds and other credit-related activities
- Processing payment for services, purchases and transactions
- Processing and administering student awards
- Processing job applications, recruitment and selection
- Conducting direct activities and joint programmes with other service providers
- Enhancing experience and improving our services
- Managing food and medication administration
- Managing student/clients care and account
- Communicating with students/parents/guardians/clients/ caregiver & website visitors
- Notifying parents/guardians/clients/caregiver about services, special events, and programmes
- Responding to inquiries and feedback to improve our quality of service
- Monitoring the movement of visitors to our physical premises
- Carrying out our obligations arising from any contracts entered into between you and us
- Complying with legal obligations and regulatory requirements
Who We Disclose Personal Data To
We disclose some of the personal data you provide us to the following parties or organisations outside PCF in order to fulfil our services to you:
- Regulatory Authorities e.g. ECDA (Early Childhood Development Agency)
- IT/Technical Support, IT Service Providers
- Banks, Payment card processing companies
- Government agencies
How We Manage the Collection, Use, Disclosure and Storage of Your Personal Data
Obtaining Consent
Before we collect, use or disclose your personal data, we will notify you of the purpose why we are doing so. We will obtain written confirmation from you on your expressed consent. We will not collect more personal data than is necessary for the stated purpose.
Under certain circumstances, we may assume deemed consent from you when you voluntarily provide your personal data for the stated purpose for e.g. when you register your child with us using our enrolment forms or apply for a job with us using our job application forms.
Under certain circumstances, we may collect, use and/or disclose personal data about you without your consent for example, so that we can comply with our statutory obligations or where personal data is publicly available.
How You Can Limit Processing of Personal Data
Withdrawal of Consent
If you have given us consent to collect, use, disclose and otherwise process personal data about you, you may withdraw that consent at any time. You should give us reasonable advance notice of your withdrawal of consent. We will notify you of the likely consequences of your withdrawal of consent.
Your request for withdrawal of consent can take the form of an email or letter to us, or through the “UNSUBSCRIBE” feature in an online service where applicable.
Accessing and Making Correction to Personal Data About You
You may ask us in writing to tell you what personal data we hold about you and how we have, or may have, used or disclosed it within a year before the date of your request. We will respond to your request as soon as reasonably possible and, in any event, we will respond to you within 30 days after receiving your request. We may charge a fee for processing your request, but we will let you know the amount of the fee before you incur it.
You may also ask us to correct an error or omission in the personal data we hold about you. Unless we are satisfied on reasonable grounds that a correction should not be made, we will correct the personal data as soon as practicable.
When you make any such request, we may need to verify your identity – for example, by checking your identity card number or other legal identification document.
Accuracy of Your Personal Data
We will take reasonable precautions and make reasonable verification checks to ensure that the personal data we hold is reasonably accurate, complete and up-to-date.
From time to time, we may do a verification exercise for you to update us on any changes to the personal data we hold about you. If we are in an ongoing relationship with you, it is important that you update us if there are any changes in the personal data we hold about you (such as a change in your home address).
Protection of Personal Data
We have an Information Security Policy that governs how we protect personal data. We make reasonable security arrangements to protect personal data about you that is in our possession or under our control to prevent unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks.
All our employees will take reasonable and appropriate measures to maintain the confidentiality and integrity of your personal data, and will only share your data with authorised persons on a ‘need to know’ basis.
Entities that provide services to us to process personal data on our behalf will be bound by contracts. The contracts will require them to provide sufficient technical and organisational security guarantees measures. They must also take reasonable steps to ensure compliance with those measures.
Retention of Personal Data
We will not retain any documents containing personal data about you as soon as it is reasonable to assume that the purpose for which we collected that personal data is no longer being served by retention of it and retention is no longer necessary for legal or business purposes.
We have a Document Retention Policy that spells out when we must cease to retain personal data and that requires documents and personal data to be destroyed (paper documents) or deleted (electronic documents and data stored in databases) securely.
Certain retention periods are based on statutory or regulatory requirements.
Compliance With Laws
Where required to do so by law, we will disclose personal data about you to the relevant authorities or to law enforcement agencies.
Links To Other Sites
Our website may contain links to other websites that are not operated by us. If you click on a third party link, you will be directed to that third party’s website.
It is important that you review the Privacy Policy of every site you visit. We have no control over, and are unable to assume any responsibility for, the content, privacy policies or practices of any third party sites or services.
Changes To This Data Protection Policy
We may update our Data Protection Policy from time to time. Please revisit this page periodically for any changes. Changes to this Policy are effective when they are posted on this page.
Contacting Us
If you have any questions about our collection, use, and/or disclosure of personal data about you; feedback regarding this Policy, or any complaint you have relating to how we collect, use, disclose and store personal data about you, you may contact our Data Protection Officer(s) at dpo@pcf.org.sg.
Any query or complaint should include, at least, the following details:
- Your full name and contact information
- A brief description of your query or complaint
We treat such queries and feedback seriously and will deal with them confidentially and within reasonable time.