1. Purpose
This Data Protection Policy outlines how Priority Consultants (the "Company") will manage and protect the documents and information (the "data") shared when entering into a contractual relationship with other organisations (the "Client / Partner"). It ensures that the data shared between the Company and all employees (the "Staff") other organisations is handled in compliance with applicable data protection laws and regulations.
2. Definition of Confidential Information
Confidential Information includes, but is not limited to:
- Financial and Business Information: Information regarding the financial and business operations of The Company and Client / Partner,
- Legal Confidentiality: Information protected under Singapore laws, including the Personal Data Protection Act 2012 and other relevant data privacy laws.
- Designated Confidentiality: Information marked as confidential or deemed confidential by The Company and Client / Partner, including all copies, reproductions, and extracts thereof.
3. Non-Disclosure of Proprietary/Confidential Information
3.1. All Staff agree not to disclose any confidential information concerning either parties or its clients to third parties without written authorization from either parties, both during and after the term of the contract.
3.2. All Staff acknowledge their obligation to comply with all Non-Disclosure and Confidentiality Agreements that have been entered into with clients and/or partners, even if not directly signed by them.
4. Protection of Information and Data Security
- 4.1. Platform Designation: All Staff must store, manage, share, and process all information related to their work on the platforms specified by The Company and this ensures centralized and controlled data handling. The Company uses a web-based online software to manage all of our business operations which includes on-line collaboration tools, project management, CRM and peer-to-peer communications; in addition to using OFFICE 365.
- 4.2. Third-Party Platform Usage: The Company does not allow the use of third-party platforms or services for data storage or processing without prior written consent from a Client / Partner.
- 4.3. Security of Appointed Platform: The Company provides designated platforms with strong access controls, encryption, and regular updates to ensure data security.
- 4.4. Training: Ensuring that all Staffs who have access to the appointed platform(s) are appropriately trained in data privacy and security practices to minimise the risk of data mishandling or unauthorised disclosures.
- 4.5. Survival of Terms: Data privacy, security, and platform usage terms will remain in effect even after the termination of the contract. Obligations to protect confidential information persist as long as such data is in possession or control.
- 4.6. Summary: These terms are crucial for safeguarding data privacy and security, ensuring responsible data handling, and protecting the Company’s and individuals’ interests.
5. Review and Updates
This policy is reviewed regularly to ensure it remains up-to-date with changes in laws, regulations, and business practices.
This Data Protection Policy ensures that data is managed securely and responsibly, maintaining high standards of privacy and compliance in all business interactions.