Privacy Policy

Personal Data Protection & Privacy policy

SGMA Privacy Policy

Last updated: October 2025

1. Applicability and Scope

This policy applies to all personal data collected by Singapore Marine Agency Pte Ltd (“SGMA”) from employees, contractors, customers, suppliers, agents, representatives, and business partners. All such parties must comply with this or an equivalent personal data protection policy when processing data on SGMA’s behalf, whether subject to Singapore PDPA or the EU’s General Data Protection Regulation (GDPR).

2. Purpose

SGMA is committed to protecting the personal data of its staff, partners, clients, suppliers, and website users. This policy describes how SGMA collects, uses, discloses, stores, and protects personal data in compliance with the Singapore Personal Data Protection Act (“PDPA”), the European Union General Data Protection Regulation (“GDPR”), and other applicable laws.

3. What is Personal Data?

Personal data refers to any information relating to an identified or identifiable natural person, including name, contact information, age, employment, or behavioral data. Special categories (“sensitive data” under GDPR) have stricter safeguards and include health, ethnicity, religion, genetics, political views, and criminal records.

4. Collection, Use, and Processing

  • Data is collected for specified and legitimate business, employment, compliance, and administrative purposes.
  • Data is processed only when there is a lawful basis (e.g., consent, contract, legal obligation, legitimate interests as defined under GDPR).
  • SGMA may use third-party processors and expects them to meet PDPA and GDPR standards when handling data.

5. Retention and Deletion

  • Personal data is retained only as long as necessary for business, contractual, or legal compliance needs.
  • Data is securely deleted or anonymized once no longer required. Individuals may request deletion or correction per PDPA and GDPR rights.

6. Your Rights

If you are in the EU or UK, or where applicable law grants such rights, you have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Erase your data (“right to be forgotten”)
  • Restrict or object to particular processing
  • Data portability (receive your data in a structured, digital format)
  • Withdraw consent (when processing is based solely on consent)

Requests can be submitted to the SGMA Data Protection Officer at security@sgmarineagency.com.

7. Data Quality and Security

  • SGMA uses adequate security, technical, and organizational measures to protect all personal data as required by both PDPA and GDPR.
  • Logs of data access and unauthorized attempts are maintained in accordance with our cybersecurity policy.

8. International Transfers

If personal data is transferred outside Singapore or the EU/UK, SGMA ensures an adequate level of protection, using legally recognized mechanisms (such as Standard Contractual Clauses, adequacy decisions, or explicit consent) as mandated by PDPA and GDPR.

9. Risk Assessment and Monitoring

SGMA regularly reviews and audits personal data processing, performs risk and impact assessments, and updates security policies in line with best practices and applicable law.

10. Data Breach and Enforcement

Data breaches will be promptly notified to relevant authorities and affected individuals as legally required. Breaches of this policy may result in penalties for SGMA and disciplinary action for staff.

11. Contact and Review

If you have questions about this policy, or if you wish to exercise your data protection rights, please contact our Data Protection Officer at security@sgmarineagency.com. SGMA may update this policy to reflect changes in law or company practices and encourages periodic review.

Trusted Marine Agency, Surveys & Cybersecurity Solutions

Scroll to Top