Privacy and Data Protection Policy
Last Updated: 01 September 2023
This Privacy and Data Protection Policy (“Policy”) outlines how Serenity Seekers Pte Ltd (“Serenity Seekers,” “we,” “our,” or “us”) collects, uses, discloses, and protects personal data in compliance with the Personal Data Protection Act 2012 (PDPA) and other applicable laws and regulations in Singapore. This Policy applies to all individuals who provide their personal data to Serenity Seekers, including but not limited to customers, employees, business partners, and website visitors.
1. Definitions
In this Policy:
- “Personal data” refers to any information that can identify an individual, either alone or in combination with other information.
- “Sensitive personal data” refers to personal data that requires more stringent protection due to its nature, such as medical records or health-related information.
2. Collection and Use of Personal Data
2.1 Types of Personal Data
We may collect and process the following types of personal data:
- Identification and contact information (e.g., name, address, email address, phone number).
- Demographic information (e.g., age, gender, nationality).
- Medical and health-related information (e.g., medical history, treatment records, allergies).
- Financial information (e.g., credit card details, billing information).
- Travel and accommodation information (e.g., passport details, hotel reservations).
- Feedback and communication data (e.g., inquiries, complaints, survey responses).
3. Purposes of Collection and Use
We collect and use personal data for the following purposes:
- Providing medical tourism services, including arranging medical treatments, travel arrangements, and accommodations.
- Verifying and confirming customer identities.
- Processing and managing bookings, payments, and refunds.
- Communicating with customers, responding to inquiries, and providing customer support.
- Conducting market research, surveys, and customer satisfaction evaluations.
- Complying with legal and regulatory requirements.
- Improving our services, website, and business operations.
- Sending marketing and promotional communications (with explicit consent where required).
- Any other purpose reasonably related to the above.
4. Disclosure of Personal Data
4.1 Third-Party Service Providers
We may engage third-party service providers to perform certain functions on our behalf, such as IT support, payment processing, and customer service. These service providers may have access to personal data to the extent necessary to fulfill their contractual obligations to us. We require these service providers to handle personal data securely and only process it in accordance with our instructions.
4.2 Compliance with Legal Requirements
We may disclose personal data if required by law, legal proceedings, or governmental requests, or to protect our rights, property, or safety or the rights, property, or safety of others.
4.3 Business Transfers
In the event of a merger, acquisition, or sale of all or a portion of our assets, personal data may be transferred as part of the transaction. We will take reasonable steps to ensure the confidentiality and integrity of personal data during such transfers.
5. Data Protection Measures
We employ industry-standard security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. These measures include physical, technical, and administrative safeguards.
6. Retention of Personal Data
We retain personal data for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. When personal data is no longer needed, we will take reasonable steps to securely destroy or de-identify it.
7. Individual Rights
7.1 Access and Correction
Individuals have the right to access and correct their personal data held by Serenity Seekers. Requests for access or correction should be submitted in writing to the contact information provided in Section 8.
7.2 Withdrawal of Consent
Individuals have the right to withdraw their consent for the collection, use, or disclosure of their personal data at any time, except where such data is necessary for legal or contractual obligations. Withdrawal of consent may affect the services we can provide. To withdraw consent, individuals should contact us using the information in Section 8.
7.3 Data Portability
Upon request, individuals may receive their personal data in a structured, commonly used, and machine-readable format, to the extent feasible.
7.4 Complaints
Individuals have the right to lodge a complaint with the Personal Data Protection Commission (PDPC) if they believe their personal data has been mishandled or if their rights under the PDPA have been violated.
8. International Data Transfers
Personal data may be transferred to and processed in countries outside Singapore for the purposes described in this Policy. We will ensure that any such transfers comply with applicable data protection laws and that appropriate safeguards are in place to protect personal data.
9. Contact Information
If you have any questions, concerns, requests, or complaints regarding this Policy or our data protection practices, please contact us using our contact us page.
10. Amendments to the Policy
We may update this Policy from time to time to reflect changes in our data protection practices or legal requirements. The revised Policy will be posted on our website, and the effective date will be updated accordingly.
By providing your personal data to Serenity Seekers, you consent to the collection, use, and disclosure of your personal data as described in this Policy.