Your privacy is of utmost importance to Travel Recommends Sdn Bhd.
For the purposes of this Policy:
“Personal Data” means any information relating to an identified or identifiable natural person, where an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person; and
“process”, “processed” and “processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- Scope of this Policy
This Policy applies to all Personal Data processed online by TR through all its websites, applications and domains, which include but are not limited to the following:
(collectively, the “Platforms”).
- Personal Data collected by TR
TR will only collect Personal Data about an individual which it reasonably considers necessary for the relevant purposes underlying such processing.
Examples of your Personal Data which may be collected by us include the following:
- your name, telephone number, mailing address, transaction details and any other information which you have provided to us in any forms you may have submitted to us or in other forms of interaction with you; and
- information about your usage of and interaction with the Platforms, including traffic data, location data, the originating domain name of your internet service provider, statistics on page views, cookies and IP addresses.
- How we collect your Personal Data
We use different methods to collect data about you, including the following:
- Direct interactions. You may give us your Personal Data by filling in forms or by corresponding with us by post, phone, email, chatbot or otherwise. We may also directly collect Personal Data in other ways, including when:
- you apply for our products or services;
- you create an account on our Platforms;
- you subscribe to our service or publications;
- you request marketing materials to be sent to you;
- you enter a competition, promotion or survey;
- you give us feedback;
- you logon to Wi-Fi at our premises;
- you use mobile or web applications developed by us;
- you submit your resume or an application, or participate in interviews or testing, for employment or contracting opportunities with TR; or
- your image is recorded through the use of close circuit television systems or other surveillance devices on our premises.
- Automated technologies or interactions. As you interact with our Platforms, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this data by using cookies, server logs and other similar technologies. Please see our ‘Cookies Policy’ at https://japan.travelrecommends.com/home/pages/japan-cookies-policy (“Cookies Policy”) for further details.
- Third parties or publicly available sources. We may receive Personal Data about you from various third parties and public sources, including financial and transaction data from providers of technical, payment and delivery services.
- How we use your Personal Data
Your Personal Data is generally processed by us as necessary for purposes directly related to our functions and activities. This includes but is not limited to any one or more of the following purposes:
- To identify you and any accounts you may hold with us.
- For fraud prevention and detection.
- For billing and fulfilment of orders.
- To notify you on any changes to our website or services.
- To provide you with our products and services, including products and services provided on and through our Platforms, hotel accommodation reservation services and Wi-Fi services, and to consider and execute your instructions.
- To help us develop, improve, manage and administer the products and services we provide to you, including products and services provided on and through our Platforms, hotel accommodation reservation services and Wi-Fi services.
- To help us verify your identity for the purposes of processing and administering any membership application or registration.
- To send you notifications and marketing messages in relation to our or any of our associates’ promotional events, offers, opportunities, products, benefits and programmes.
- To conduct marketing activities including market research, customer profiling, customer insights and targeted marketing activities.
- To carry out profiling and statistical analysis to improve the goods and services provided to you.
- To inform you of changes to our programmes, policies, terms and conditions, Platform updates and other administrative information.
- To develop, administer and conduct programmes, promotions, events and games;
- To prevent, detect and investigate crime, including fraud, and analysing and managing other risks.
- To customise the Platforms and their content to your particular preferences.
- To conduct surveys, questionnaires and requests for feedback.
- To respond to your queries, requests, feedback and complaints.
- To develop and identify products and services that may interest you.
- For performing our administrative operations, including but not limited to accounting, risk management, record keeping, archiving, systems development and testing, credit scoring and staff training.
- For managing our rights and obligations in relation to external payment systems e.g. credit card associations and debit payment schemes.
- For exchanging information with any credit reporting agency or financial institution and creating and maintaining any credit information file containing information about you.
- For promotional and publicity purposes, including to record or take photographs of participants at events or functions organised, hosted or participated in by TR.
- To meet or comply with the requirements of any applicable laws and regulations, any court order or any request from any regulatory bodies or agencies or governmental departments.
- For considering any application or request you may make to us.
- To detect, prevent or otherwise address security or technical issues in connection with services provided through the Platforms.
- To fulfil such other purpose as may be specified in a data protection or privacy notice given to you at the time your Personal Data is collected.
- For customers who purchase our various insurance services and products, your Personal Data collected is or will be used for the daily operational needs in providing the services to you including, but not limited to:
- Evaluating and processing your application;
- Providing and administering service(s) relating to various insurance products;
- Investigating and processing insurance claims;
- Invoicing and collecting premiums;
- Reaching out to you regarding any of the above matters;
- Ensuring your on-going credit worthiness;
- Researching, designing or launching banking, financial, insurance services or related products for your use, and monitoring the provision, operation and use of such products or services;
- The enforcement of your obligations, including without limitation, collection of amounts outstanding from you;
- To comply with any laws, rules, regulations, lawful and binding determinations, guidelines or guidances, decisions or directions of a regulator or in cooperation with any governmental authority of any country (or political sub-division of a country); and/or
- Complying with any applicable obligations, requirements and policies with regards to the prevention or detection of money laundering, terrorist financing or other unlawful activities.
- Disclosure of your Personal Data
In carrying out one or more of the purposes set out in section 5 above of this Policy, we may need to disclose your Personal Data to one or more of the following third parties:
- our agents, contractors, business partners and external advisers;
- your agents and contractors, including your referees and your legal or financial adviser;
- your executor, administrator, trustee, guardian or attorney if you authorise them in writing to seek disclosure of this information;
- any financial institution with whom you have an account;
- regulatory bodies, government agencies, multi-jurisdictional agencies, law enforcement bodies and courts;
- anyone supplying goods or services to you in connection a reward or incentive programs or other alliance associated with our goods or services;
- debt collection agencies or contractors;
- external payment systems operators and participants (e.g. credit card payment systems (e.g. Visa and MasterCard, UnionPay or JCB) or debit payment systems);
- your and our insurers or prospective insurers and their underwriters;
- any person to the extent necessary, in our view, in order to carry out any instruction you give to us;
- our service providers such as hospitality partners, marketing partners and web analysis companies, and their business partners;
- our solicitors, auditors and professional advisors;
- our business partners, associates and alliances, and any related or associate companies comprised in our group;
- any person to whom disclosure is permitted or required by any applicable laws/regulations, enforceable governmental request or court order; and/or
- (unless you tell us not to) other organisations including our related bodies corporate (and our agents and their agents) for the marketing of their and our products and services.
We impose strict obligations on the third parties mentioned above with which we share your Personal Data to maintain the integrity and security of that data.
We only allow the said third parties to use your Personal Data for specified purposes and in accordance with our instructions.
- Legal basis for processing your Personal Data
The legal basis for the processing of your Personal Data will generally fall under one or more of the following:
- it is necessary for the performance of TR’s contractual relationship with you, which is regulated by the applicable terms and conditions governing the use of the Platforms and by the specific forms collecting your data;
- it is necessary for our legitimate interests;
- it is necessary to comply with our legal obligations;
- it is authorised under any applicable law or regulations; and/or
- you are deemed to have consented to such processing under any applicable law or regulations.
Please note that we may process your Personal Data for more than one lawful ground depending on the specific purpose(s) for which we are using your data. Please contact us if you need details about the specific legal ground(s) we are relying on to process your Personal Data.
Where the processing of your Personal Data does not fall within the terms of this Policy, we will obtain express written consent from you for such processing by methods or means which include making you sign a form or check a box.
You can withdraw such express consent at any time by contacting our data protection officer at the contact details set out in section 15 of this Policy.
Depending on the extent to which you withdraw consent to the processing of your Personal Data by us, such withdrawal of consent may result in our inability to provide the relevant services to you and may be considered as a termination by you of any agreement between TR and you. TR’s legal rights and remedies are expressly reserved in such an event.
- Links to third-party websites
We may provide links to third-party websites on the Platforms. Your use of such third-party websites will be subject to their privacy policies and is not covered by this Policy. We encourage you to read the privacy policies on the other websites you visit. As we cannot control or be responsible for the policies of other websites we may link to, or the use of any data you may share with them, you access these third-party websites at your own risk.
- Keeping your Personal Data secure
We will use reasonable technical and procedural measures to safeguard your Personal Data, for example by:
- ensuring that access to any personal account you have with us is controlled by a password and username which are unique to you;
- storing your Personal Data on secured servers; and
- restricting access to Personal Data on a ‘need to know’ basis.
Whilst we will use all reasonable efforts to safeguard your Personal Data, please note that the use of the internet and/or our Platforms cannot be made entirely secure and we therefore are unable to warrant the security or integrity of any Personal Data which is transferred from you or to you via the Platforms.
- Access to Personal Data
Whilst we will take reasonable steps to accurately record your Personal Data, we require that you provide accurate and complete Personal Data, and update such Personal Data with us from time to time.
You may request access to, and correction of your Personal Data held by us by contacting us at the contact details set out in section 15 of this Policy. All requests for access and/or correction will be processed within a reasonable time except where we refuse such requests in accordance with any applicable laws or regulations. In some situations, you may be able to access and correct your personal information directly through our Platforms.
- Further rights of data subjects in the European Union (“EU”)
If you are a data subject in the EU, you may contact us to exercise the following further rights:
- request for the erasure of your Personal Data;
- request for the restriction of processing of your Personal Data;
- object to the processing of your Personal Data; and/or
- request to transfer your Personal Data to you or a third-party.
You also have the right to lodge a complaint with the relevant EU supervisory authority if we have contravened any applicable laws or regulations.
All requests made to us in exercising the rights above will be processed within a reasonable time except where we refuse such requests in accordance with any applicable laws or regulations.
- Data Retention
We will cease to retain your Personal Data when the purposes for which we collected your Personal Data have ceased and/or when we are no longer required to continue retaining your Personal Data for any legal or business purposes.
- Changes to this Policy
We may amend this Policy (including the Cookies Policy) from time to time. The updated versions will be posted on our Platforms and dated so that you are aware when the Policy was last updated. If we make significant amendments to the Policy, we will notify you in advance by posting such amendments on our Platforms and allow you the opportunity to review the revised Policy prior to such changes taking effect. We also recommend that you check the relevant websites or sections of the Platforms regularly for any updates.
- How to contact us
We welcome your feedback, comments and any questions that you may have.
Data Protection Officer
Changi Travel Services Pte Ltd
PO Box 321
Singapore Changi Airport