Privacy Policy & Data Protection

Privacy Policy at a Glance

Last revised on 26 August 2025

  • What we collect: Name, contact details, employment info, billing, CCTV/video data, cookies.

  • Why we use it: To provide services, manage contracts, recruitment, marketing, events, legal compliance.

  • Who we share with: Staff, affiliates, service providers, regulators, partners.

  • Your rights: Access, correction, portability, erasure, restriction, objection, withdraw consent.

  • Retention: Kept only as long as needed, then deleted or anonymised.

  • Security: Encryption, restricted access, monitoring.

  • Cookies: See cookie table; manage via browser or Cookie Preferences.

  • Special notes: DNC Registry compliance, no under-18 data, CCTV covered by signage, limited AI only.

  • Contact: dpo@gabkotech.com

For full details, please read the complete Data Protection & Privacy Policy below:

1. Introduction & Scope

Gabkotech Innovations Pte Ltd (“Gabkotech”, “we”, “us” or “our”) is committed to safeguarding the privacy and personal data of our customers, clients, employees, partners, suppliers, contractors, and website visitors.

This policy explains how we collect, use, disclose, transfer, store and protect your personal data. It ensures compliance with:

  • The Personal Data Protection Act 2012 of Singapore (PDPA) and its amendments, including Data Breach Notification (2021), Data Portability, and Do Not Call (DNC) provisions.

  • International best practices, including the principles of the European Union’s General Data Protection Regulation (GDPR) and other comparable global frameworks.

This policy applies to all personal data provided to us through our websites (www.gabkotech.com), digital services, recruitment processes, marketing activities, and through any other business interactions with Gabkotech.

2. Definition of Personal Data

“Personal data” means data, whether true or not, about an individual who can be identified:

  • from that data; or

  • from that data and other information to which we have or are likely to have access.

This may include (but is not limited to):

  • Name, identification number, passport details, NRIC number

  • Contact information such as address, email, phone number

  • Employment details, resumes, references

  • Payment, billing and transaction records

  • CCTV/video analytics data, access control data, digital identifiers, and online tracking information (cookies, IP addresses)

3. Lawful Basis of Processing

We will only collect, use, and disclose personal data under one or more of the following legal bases:

  • With your consent (explicit or deemed, as allowed under PDPA).

  • Where necessary for the performance of a contract with you.

  • To comply with a legal obligation.

  • To protect your vital interests or those of another person.

  • Where it is necessary for our legitimate business interests, provided these do not override your fundamental rights.

4. Collection of Personal Data

We may collect personal data through:

  • Forms submitted (online or offline), applications, or service sign-ups.

  • Face-to-face meetings, phone calls, SMS/WhatsApp, and email correspondence.

  • Use of our websites, mobile apps, software platforms, visitor management kiosks, and smart facility management systems.

  • CCTV monitoring, video analytics, access control, and integrated security systems.

  • Third-party sources (e.g. references, government databases, business partners), where permitted.

If you provide us with personal data relating to another individual (e.g., employee, dependent, colleague), you represent and warrant that you have obtained that individual’s consent to disclose their data to us.

5. Use of Personal Data

We use personal data for purposes including:

  • Delivering and improving our products, software, and services.

  • Processing transactions, invoicing, and account management.

  • Responding to enquiries, support requests, and complaints.

  • Recruitment, onboarding, and HR management.

  • Managing contracts with partners, suppliers, and subcontractors.

  • Conducting marketing, communications, events, and client relationship management.

  • Sending updates, newsletters, promotional materials, or invitations to seminars/events.

  • Security, safety, and compliance monitoring via integrated systems.

  • Complying with applicable laws, regulations, or regulatory requirements.

6. Marketing & Do Not Call (DNC)

We may send you updates about our products, services, events and promotions via email, telephone, SMS or instant messaging.

  • We comply with Singapore’s Do Not Call (DNC) provisions and will not send you such messages if you have opted out or listed your number on the DNC Registry, unless an exemption applies.

  • You may withdraw consent or unsubscribe at any time by using the link in our emails or contacting dpo@gabkotech.com

7. Disclosure & Transfer of Personal Data

We may disclose your personal data:

  • To our employees, subsidiaries, affiliates, service providers, and contractors who require the data to provide services on our behalf.

  • To regulators, law enforcement agencies, or public authorities as required by law.

  • To business partners or successor entities in connection with mergers, acquisitions, or restructuring.

  • To overseas entities (including data hosting and cloud providers). Where transfers are made, we use safeguards such as contractual clauses to ensure protection comparable to the PDPA and aligned with GDPR cross-border transfer rules.

8. Rights of Individuals

Under Singapore PDPA and international principles (including GDPR), you have the following rights:

  • Access: Request a copy of your personal data held by us.

  • Correction: Request corrections of errors or omissions.

  • Withdrawal of Consent: Withdraw your consent for processing (note: this may affect our ability to provide services).

  • Data Portability: Request that your personal data be transmitted to another organisation, where technically feasible.

  • Erasure (“Right to be Forgotten”): Request deletion of your data where it is no longer necessary or lawful for us to retain it.

  • Restriction of Processing: Request suspension of processing under specific circumstances.

  • Objection to Processing: Object to certain types of processing, including direct marketing.

9. How to Make a Data Request (DSAR)

To exercise your rights, please:

  • Email dpo@gabkotech.com with subject “Data Request”.

  • Provide your full name, email used with us, request type (Access / Correction / Erasure / Portability / Objection / Consent Withdrawal).

  • Include any relevant order/account/reference numbers.

  • Provide proof of identity (details will be advised).

We will acknowledge within 5 business days and respond within 30 days, or notify you if more time is required. A nominal fee may apply for access/portability requests.

10. Accuracy of Personal Data

We will make reasonable efforts to ensure that personal data collected is accurate and complete. You are encouraged to update us if there are changes to your personal information.

11. Retention of Personal Data

We will not retain personal data longer than is necessary to fulfil the purpose for which it was collected, unless retention is required for legal, regulatory, or business purposes. Once no longer needed, personal data will be securely disposed of or anonymised.

12. Security & Protection

We adopt industry-standard security measures to safeguard personal data, including:

  • Encryption and SSL protocols.

  • Firewalls, intrusion detection, and regular system monitoring.

  • Restricted access to personal data by authorised personnel only.

  • Staff training and confidentiality agreements.

However, no method of transmission or storage is completely secure. We cannot guarantee absolute security but will act promptly in the event of a suspected or actual data breach.

13. Data Breach Notification

In line with Singapore’s PDPA amendments, we will notify the Personal Data Protection Commission (PDPC) and affected individuals if a data breach:

  • Results in significant harm to affected individuals; or

  • Involves a large-scale breach (typically 500 or more affected individuals).

14. Cookies & Online Tracking

Our websites and applications may use cookies and similar technologies to enhance user experience.

Cookie Table (example)

Category Example Purpose Retention
Essential __cf_bm Security & traffic management 30 min
Analytics _ga, _gid Understand site usage 13 months
Functional lang_pref Remember language settings 12 months
Marketing _fbp, _gcl_au Measure ad conversions 3 months

You can manage cookies via your browser settings or our Cookie Preferences link. Disabling some cookies may affect site functionality.

15. Children’s Privacy

Our services are primarily for business users. We do not knowingly collect data from children under 18. If you believe a minor has provided data to us, please contact dpo@gabkotech.com to request deletion.

16. CCTV & Video Analytics

Where Gabkotech provides or integrates CCTV or video analytics solutions on customer premises:

  • Signage will be displayed by the premises operator where required.

  • Processing follows PDPA and contract terms, either as a data intermediary or controller depending on the arrangement.

17. Automated Processing & AI

We may use analytics and limited automated processing to detect fraud, maintain service quality, or personalise content.

  • We do not use solely automated decision-making that produces legal or significant effects without human oversight.

  • You may object to certain profiling by contacting dpo@gabkotech.com.

18. Modifications

We may update this policy from time to time to reflect changes in law, technology, or business operations. The effective date will be stated at the top of this page. Significant changes will be highlighted on our website for at least 14 days.

19. Contact – Data Protection Officer (DPO)

For questions, concerns, or requests regarding your personal data, please contact:

Data Protection Officer (DPO)
Gabkotech Innovations Pte Ltd
📧 Email: dpo@gabkotech.com
📍 Address: 26 Sin Ming Lane, #05-127 Midview City, Singapore (573971)