Privacy Policy

At Mind Transformations Pte Ltd, protecting your personal data is our priority. We are committed to handling your data responsibly and in compliance with the Personal Data Protection Act (PDPA) of Singapore. This Privacy Policy explains how we collect, use, disclose, protect, and manage your personal data.

1. Collection of Personal Data

We collect personal data only for legitimate and reasonable purposes. Personal data refers to any information that identifies you as an individual, such as your:

• Full name, contact details (e.g., phone number, email address).
• Employment details (e.g., job title, organization).
• National Registration Identity Card (NRIC) or equivalent, Date of Birth for participation in funded programs as required by Singapore Government.

How We Collect Your Data

• Directly from you during registration, enrollment, or consultation processes.
• Through your authorized representative, where applicable.
• From third-party sources (e.g., government agencies or publicly available sources) as permitted by law.

You will be informed of the purposes for data collection, and your consent will be sought unless otherwise permitted or required by law.

2. Use of Personal Data

We use your personal data to:

• Deliver the services you have enrolled in, including course registration and delivery.
• Manage payments, invoices, and refunds.
• Communicate with you about course updates, promotions, and follow-ups.
• Fulfill legal or regulatory obligations (e.g., reporting requirements for funded programs).
  

3. Disclosure of Personal Data

Your data may be shared with:

• Third-party service providers engaged to perform specific tasks on our behalf, such as IT support, marketing, and event management. These entities are contractually obligated to protect your data.
• Government agencies or regulators, where disclosure is required by law.

We do not sell, rent, or trade your personal data to any external parties for marketing purposes.

4. Retention and Disposal of Personal Data

We retain your personal data only for as long as it is necessary to:

• Fulfill the purposes for which it was collected.
• Comply with legal or regulatory obligations.

When your data is no longer needed, we will securely delete or anonymize it to ensure it cannot be linked back to you.

5. Withdrawal of Consent

You may withdraw your consent for us to use or disclose your data at any time by contacting our Data Protection Officer (DPO). Please note:

• Processing of withdrawal requests may take up to 20 business days.
• Withdrawal of consent may affect our ability to provide services (e.g., course participation or certification).

Contact Details for DPO:

• Name: Alfred Chung
• Email: alfred@nlpsgasia.com
• Phone: 8755 8113

6. Data Protection Measures

We employ industry-standard practices to safeguard your personal data, including:

• Administrative Controls: Access is granted only to authorized personnel on a need-to-know basis.
• Technical Measures: Encryption, strong password policies, and regular system audits.
• Physical Safeguards: Secure storage facilities and restricted access areas.
• Regular Training: Staff undergo periodic training to stay updated on data protection practices.

While we strive to protect your data, please note that no method of storage or transmission over the Internet is 100% secure.

7. Accuracy and Updates

To ensure your data remains accurate and current, we encourage you to notify us of any changes. You can request updates or corrections to your data by contacting our DPO.

8. Data Breach Management

In the unlikely event of a data breach, we are committed to taking prompt and transparent action:

• Contain the breach and mitigate further risks.
• Assess the potential impact on affected individuals.
• Notify the Personal Data Protection Commission (PDPC) and affected individuals within the required timeline if the breach is likely to result in significant harm.
• Review and strengthen our processes to prevent future incidents.

Affected individuals will be informed about the breach, including steps they can take to protect themselves and any corrective actions we are implementing.

9. Transfer of Data Outside Singapore

If your personal data needs to be transferred outside Singapore, we will:

• Obtain your consent for the transfer.
• Ensure the recipient provides a standard of protection comparable to the PDPA.

10. Access and Correction of Personal Data

You have the right to:

• Request access to your personal data held by us.
• Seek corrections to ensure your data is accurate and complete.

To exercise these rights, please submit your request to our DPO. We will respond within 30 business days.

11. Updates to This Privacy Policy

We may revise this Privacy Policy from time to time to reflect changes in regulations or practices. The latest version will always be available on our website, with the "Last Updated" date clearly indicated.

Your continued use of our services after any updates constitutes your acceptance of the revised policy.

12. Feedback and Complaints

If you have concerns about the handling of your personal data, please contact our DPO. We aim to address all feedback and complaints promptly and transparently.

Last Updated: 01 Nov 2024