Data Privacy Notice
Contfinity Pte. Ltd. (“Contfinity”) conducts our business in compliance with the Personal Data Protection Act (“PDPA”) and respects the privacy of users in accordance with our Data Privacy Notice (“DPN”). Our DPN applies solely to personal data collected by Contfinity. We are not and cannot be responsible for the personal data protection practices of third parties.
What Personal Data We Collect
We may collect the following types of personal data about you:
- Name and identity – This includes full name, NRIC, FIN or passport number, address, telephone number, e-mail address, date of birth, as well as service-related information such as bank and credit card details, device ID and IP address.
- Your interaction with us – This includes, for example, a note of a call you make to us, an email or letter you send to us, surveillance footage or other records of any contact you have with us.
- Provision of goods and services – This includes personal data that we have access to in the course of provision of goods and services to you.
- Information from other organisations – These organisations include fraud prevention agencies, business directories, credit reference agencies or individuals we believe you have authorised to provide your personal details on your behalf.
Where We Collect Personal Data
We may collect your personal data when you:
- Use our products or services
- Register for a specific product or service
- Sign up for alerts or information
- Contact us regarding enquiries or requests for assistance
- Participate in a competition, lucky draw or survey
- Visit our websites and applications (through the use of cookies and other technologies)
- Provide us with products and/or services
Where you give us personal data about other individuals, you confirm that you are authorized, on their behalf, to disclose and give consent to the processing of such personal data for the purposes described below, or other purposes for which your consent has been sought and obtained.
How We Use Your Personal Data
We may collect and use your personal data for the following purposes and other legitimate purposes to be notified to you:
If You Are a Customer :
Provisioning & administration of services
- Provide goods and/or services to you
- Enable us to process bills and payments
- Respond to enquiries and requests from you or people you have authorised
- Inform you about service upgrades and updates
Product & service enhancements
- Conduct customer satisfaction surveys to improve our customer service, improving your user experience, and development of new products, as well as personalising services that we offer you
- Perform market analysis
Provision of service benefits
- Provide updates, offers, promotions, invitations to events and deliver relevant advertising, with your prior consent or if otherwise permitted under local laws and regulations
Security and risk management
- Inform you of service and security issues
- Prevent and detect fraud or other crimes and recover debts
- Conduct internal audits and determine creditworthiness
- Ensure the safety and security of our properties and systems
- Conduct checks against money laundering, terrorism financing, corruption, compliance and related risks
Legal & regulatory requirements
- Meet legal, regulatory and other requirements including providing assistance to law enforcement, judicial and other government agencies
If You Are a Supplier / Subcontractor :
- To conduct due diligence / background checks that are mandated by legislation or by Contfinity’s clients’ internal policies and practices
- For the purposes relating to the supply of goods and services and support by supplier / subcontractor to Contfinity
- Security clearance / entry access into Contfinity’s and Contfinity’s clients’ premises
We will not use your personal data for purposes other than above, unless permitted under local laws and regulations. We shall seek your consent before collecting any additional personal data and before using your personal data for a purpose which has not been notified to you (except where permitted or authorised by law).
Who Do We Share Personal Data Collected
We may share your personal data with:
- Business partners and vendors we work with to deliver goods and/or services which you purchase or which we purchase
- Regulatory authorities, law enforcement agencies, government agencies and other government organisations, as required by local laws and regulations
- Financial institutions for purposes of our business relationship
- Credit reference bureaus for the purpose of preparing credit reports or evaluation of credit worthiness
Your personal data is disclosed to the above only for the relevant purposes stated above.
In the event we transfer your personal data overseas, we will ensure that any such transfer to a territory outside of Singapore is in accordance with the standard of protection of personal data stipulated under the PDPA.
How to Withdraw Your Consent
The consent that you provide for the collection, use and sharing of your personal data will remain valid until such time it is being withdrawn by you in writing. You may withdraw consent and request us to stop using and/or disclosing your personal data for any or all of the purposes listed above by submitting an email request to
Upon receipt of your email request to withdraw your consent, we shall seek to process your request within thirty (30) calendar days of receiving it.
Please do note that depending on the nature and scope of your withdrawal request, we may not be in a position to continue providing our goods and/or services to you and we shall, in such circumstances, notify you before completing the processing of your withdrawal request. Should you decide to cancel your withdrawal of consent, please inform us in writing in the manner described in this section above.
Please note that withdrawing consent does not affect our right to continue to collect, use and disclose personal data where such collection, use and disclose without consent is permitted or required under applicable laws.
How to Access and Correct Your Personal Data
If you wish to make (i) an access request for access to a copy of the personal data which we hold about you or information about the ways in which we use or disclose your personal data, or (ii) a correction request to correct or update any of your personal data which we hold about you, you may submit an email request to
Please note that a reasonable fee may be charged for an access request, which will be made known to you before processing your request.
We will respond to your request as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) calendar days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any personal data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA).
How Long We Retain Your Personal Data
We may retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws.
How We Protect Your Personal Data
We have implemented stringent measures to secure and protect your information. These include:
- Safeguards to prevent security breaches in our network and database systems
- Limits on access to information in our systems
- Strict verification processes to prevent unauthorised access to information
Who to Contact
We may revise this notice from time to time without any prior notice. You may determine if any such revision has taken place by referring to the date on which this Data Protection Notice was last updated. Your continued use of our Services constitutes your acknowledgement and acceptance of such changes.
Effective date: 10 March 2023
