Overview of Our Privacy Practices
- General Principle
- Notice & Choice
- Disclosure
- Security
- Retention
- Data Integrity
- Access
What We Collect
We may collect personal data such as:
- Full name, NRIC/passport number, contact details
- Business and professional information
- Financial and transactional data
- Technical usage data (IP address, browser type, cookies)
- Communications and feedback records
Sensitive personal data (e.g. health, religious beliefs, criminal background) is only collected with explicit consent.
Why We Collect It
We process your data for:
- Service delivery and account management
- Payment processing and customer support
- Marketing (with your consent)
- Legal compliance and security
- Analytics and product improvement
We never sell your data. Any sharing is strictly limited to trusted service providers, legal authorities, or partners with appropriate safeguards
How We Protect It
GBTECH uses industry-standard security measures including:
- Encryption for data in transit and at rest
- Multi-factor authentication and access controls
- Regular audits and breach notification protocols
- Secure disposal of outdated records
We retain data only as long as necessary, with clear retention timelines (e.g. 7 years for financial records, 30 days for CCTV footage).
Your Rights
Under the PDPA, you have the right to:
- Access and correct your personal data
- Withdraw consent at any time
- Request deletion or restriction of processing
- Lodge complaints with our Data Protection Officer or JPDP
We respond to all requests within 30 days.