This personal data protection policy (this “Policy”) outlines how Crossbridge Capital Asia Pte Ltd (“we”, “us”, or “our”) collects, uses, stores, and discloses any personal data and information you may provide to us when you access and use the website, CONNECT, and all its associated sub-pages (the “Site”). This Policy is an integral part of, and must be read with, our Website Terms and Conditions of Use. Unless otherwise stated herein, capitalised words, phrases or terms that appear hereinafter shall have the same meanings as they have been defined or described in the Website Terms and Conditions of Use as updated from time to time.
This Policy may be updated from time to time at our sole and absolute discretion. Changes to this Policy will be effective upon posting to our Site. We may, but are not obliged to, send you advanced notice of any changes. Your continued access to and use of this Site and any service we offer after such changes have been posted will constitute your acceptance of the amended Policy.
This Policy supplements, but does not supersede or replace, any other consent that you may have previously provided to us in relation to your personal data. It also does not affect any rights that we may have under relevant Singapore law, including the Personal Data Protection Act 2012 and its regulations (collectively, the “PDPA”), in connection with the collection, use, and/or disclosure of your personal data. We may from time to time update this Policy to ensure that this Policy is consistent with our future developments, industry trends and/or any changes in legal or regulatory requirements. Subject to your rights at law, the prevailing terms of this Policy shall apply.
We will take all reasonable measures to ensure that our collection, use, storage, and disclosure of your personal data comply with the PDPA and/or any applicable law.
What is Personal Data?
‘Personal data’ refers to any data or information about you that directly identifies you or is capable of identifying you when combined with other information about you that we have or are likely to have.
Collection of Personal Data
Depending on the nature of your relationship with us and the services you use, the personal data about you that we may collect, use, store, and disclose include, without limitation:
- Personal particulars (e.g. name, contact details, residential address, date of birth, identity card/passport details, and/or education details);
- Specimen signature(s);
- Financial status and details about your personal finances (e.g., expenses, and/or credit history), income;
- Images and voice recordings of our conversations with you;
- Employment details (e.g. occupation, directorships and other positions held, employment history, salary, and/or benefits);
- Tax and insurance information;
- Information about your risk profile, investments, investment objectives, knowledge and experience and/or business interests and assets; and/or
- Banking information (e.g. account numbers and banking transactions).
We may also collect other information about you. However, such information is regarded as non-personal information. Such information includes, without limitation, your browser information, internet protocol (IP) address, how you use the Site or any part of it, and aggregated information.
We will, as far as possible, inform you at each collection point as to what information is required and what information is optional. At each stage of data collection, use and disclosure, we implement physical, electronic, administrative and procedural safeguards to protect your personal data against loss, misuse, damage and unauthorized access, modifications or disclosures.
Purposes of Collection
We collect your personal data:
- For the specific purpose for which the personal data was provided;
- For purposes of evaluating your standing, resources, and capabilities to enter or maintain a relationship with you as a client, employee, business partner, or otherwise as appropriate;
- To verify your identity and ensure that you are eligible to access and use the services provided on the Site;
- To conduct due diligence checks on you in accordance with all applicable laws and our internal ‘know your client’ and Anti-Money Laundering/Countering the Financing of Terrorism policies and procedures;
- To enable us to comply with all of our legal and regulatory obligations, as well as requests and directions from governmental authorities;
- For the purposes of ensuring your access to and use of the services we provide;
- In order to analyse your financial situation and determine the suitability of certain financial strategies and products for you as our client;
- Assessing and processing any applications, requests and instructions for financial products and services offered by other financial institutions for you as our client;
- To process and, where necessary, respond to your application(s), enquiry(s), feedback, or request(s);
- For addressing or investigating any complaint(s), claim(s) or dispute(s);
- To inform or update you about products, or services that you request from us or that may interest you, where you have consented to be contacted for such purposes;
- To update you on changes to the Site;
- To monitor, improve, and administer the Site and the Services provided through it;
- To conduct statistical or other forms of analysis for purposes of maintaining or improving the Site and the Services in general;
- For purposes of financial reporting, regulatory reporting, management reporting, risk management, audit and record keeping purposes; or
- To comply with all proceedings or inquiries from any state, regulatory, or enforcement agency or any applicable law.
We may also use personal data for purposes set out in any other agreement governing our relationship with you.
If we wish to collect, use, retain, or disclose your personal data for any other purposes, we will adequately seek your consent.
Collection of Personal Data
Generally, we may collect your personal data ourselves or through third parties in various ways, including:
- During our preliminary discussions with you to enter into employment or for any other business relationship;
- When you interact with our employees, particularly with your relationship manager;
- When you communicate with us by email or telephone, as your emails will be retained and we may monitor and/or record your voice calls to us;
- Once you access our Site;
- When you respond to our requests for additional personal data; or
- When you submit your personal data to us for any other reason.
You are responsible for ensuring that the personal data you provide to us is accurate, complete, and not misleading and that such personal data is kept up to date. You acknowledge that failure on your part to do so may result in our inability to provide you with the products and services you have requested. To update your personal data, please contact your relationship manager or email our compliance officer at firstname.lastname@example.org.
Where you provide us personal data concerning individuals other than yourself, you are responsible for obtaining the consent of those individuals to the disclosure of their personal data to us. You must retain proof of such consent(s) and provide us with such proof when we request for it.
Disclosure of Personal Data
We will not sell or rent your personal data to third parties. However, there are some circumstances under which we will need to disclose your personal data to a third party. Such circumstances include cases where:
- You have expressly or implicitly consented to such disclosure, or may be deemed to have consented to such disclosure;
- Such disclosure is necessary to provide you with the products and/or services you have requested for, or to respond to your queries;
- Such disclosure is necessary for the operation of the Site or our internal processes;
- We are required to make such disclosure by any government, statutory, or regulatory authority, or comply with any applicable law, court order, directive, or proceeding of such authority requiring such disclosure;
- We believe, in good faith, that making such disclosure is appropriate or necessary for us to investigate and defend against any third party claims or allegations, or prevent or stop any illegal activity, security breaches, or harm to the Site, our interests, or any employee of ours;
- We become the target of a takeover and your personal information forms part of our assets to be transferred to the acquiring entity; or
- You disclose such information to third parties in the course of participating in any promotional programmes on the Site.
Third parties to whom such disclosure may be made include:
- Entities who are related to us as part of the Crossbridge Capital group;
- Regulated financial institutions and, through them, their third party service providers;
- Entities that provide to us insurance- related services, as well as insurance associations;
- Our outsourced service providers;
- Our professional adviser, including our compliance advisors, auditors and lawyers; and
- Regulators and other governmental authorities.
Should you wish to disable cookies or delete cookies, you may do so by deactivating the storing of cookies on your browser. Please note that doing so may prevent you from entering certain part(s) of our Site. In such situations, we will not be held liable for any loss or damage resulting from your inability to use those features.
We may also collect your Internet Protocol (“IP”) address. Your internet service provider allocates an IP address to your computer in order for it to access the Internet. The IP address is non-personal data. It may change each time you connect to the Internet or remain the same. We collect your IP address in order to facilitate our administration and improvement of the Site, and will use the information derived from your IP address to diagnose server problems, report aggregate information, and determine the fastest route from your computer to the Site.
Transfer, Storage, and Retention of Personal Data
We will take measures that are reasonably within our means to ensure that the recipient(s) of your personal data located outside Singapore will provide to your personal data a level of protection that is comparable to that required by the PDPA. However, if data needs to be transferred to, stored, or processed in countries that have less stringent personal data protection laws than Singapore in order to provide you with the services you request, you are deemed to consent to such transfer, storage, or processing in providing your personal data to us during your use of the Site. You may at any time inform us that you wish to withdraw your consent to such transfer, storage, or processing of your personal data. This may affect or remove our ability to provide you with certain or all the Services.
We shall store your personal data for as long as necessary to fulfil the purposes for which such data was collected, our business purposes, our internal and legal needs or as is otherwise legally required.
Communications and Notifications
We may send you email notifications from time to time. You may not opt out of receiving certain service-related notifications that are:
- Necessary elements of your activity on the Site and use of any Services;
- Are required for legal or security purposes; or
- Meant to inform you of changes to our policies, operations, products, or the Services.
You may, through written notice to us, opt out of other service-related notifications at any time, including:
- Information updates we issue from time to time;
- User surveys or other requests for user feedback; or
- Marketing offers from us.
- Have queries about our data protection processes and practices;
- Wish to request access to and/or make corrections to your personal data in our possession or under our control; or
- Wish to withdraw your consent to our collection, use or disclosure of your personal data for marketing or other purposes;
please submit a written request (with supporting documents, if any) to our Compliance Officer at:
One Wallich Street #24-05 Guoco Tower Singapore 078881
Our Compliance Officer will respond to you as soon as reasonably possible, and in any event within 30 days of your submission.
You have the right to ask us not to process your personal data for marketing purposes. Please note that if you withdraw your consent to any or all collection, use, or disclosure of your personal data, we may not, depending on the nature of your request, be in a position to continue to provide our services or products to you or administer any contractual relationship in place. Such withdrawal may also result in the termination of any agreement you may have with us. Our legal rights and remedies are expressly reserved in such event.
We are committed to protecting your personal data. If, however, you should be dissatisfied with our handling of your personal data, please submit a written complaint containing details of your dissatisfaction to our Compliance Officer.
Our Compliance Officer shall acknowledge in writing the receipt of your complaint within two business days. Within ten business days, our Compliance Officer shall contact you to provide you with an estimated timeframe for our investigations and resolution of your complaint. If your complaint requires more time beyond such estimation to resolve due to its complexity, our Compliance Officer shall inform you accordingly on or before the expiry of the original estimated timeframe.
In the event that the Compliance Officer’s investigations conclude with a solution that is dissatisfactory to you, you may wish to contact our Chief Executive Officer as follows:
CEO | Email: email@example.com
Our Chief Executive Officer will acknowledge your complaint within two business days and strive to provide a satisfactory solution to you within ten business days. In the unlikely event that we cannot reach an agreement with you, you may wish to refer your complaint to the Personal Data Protection Commission or consider resolving the complaint or any related disputes by way of mediation.
Get in Touch
Simply pick a time that is convenient for you and we will contact you.