Privacy Policy
General
This privacy policy statement (“Privacy Policy”) provides information on the obligations and policies of PH-derma Pte. Ltd., its subsidiaries and related companies in Singapore (collectively “PH-derma”, the “Company”, “Our”, “Us” or “We”, as applicable).
Our Corporate Privacy
The Company is committed to collecting, storing, transmitting, and using personal data responsibly, in compliance with the Personal Data Protection Act of Singapore (“the Act”), to effectively manage customer relationships and provide future offers. Upon receiving a legitimate request for access to or correction of personal data, the Company will take appropriate steps to provide or update the information in a timely manner.
Statement of Practices
Types of Personal Data Collected: For the purpose of carrying on the Company’s business, including registration and administration of the Company’s related products and services (including relevant online services), you may be requested to provide personal data (“Personal Data”) such as, but not limited to, the following, without which it may not be possible to satisfy your request:
1. Your name;
2. Correspondence address, and/or billing address;
3. Payment details, including credit card and banking information;
4. Contact details, including contact name and telephone number or email address
5. Account login information. Any information that is required to give you access to your specific account profile. Examples include your login ID/email address, screen name, password in unrecoverable form, and/or security question and answer.
6. Demographic information & interests. Any information that describes your demographic or behavioural characteristics. Examples include your date of birth, age or age range, gender, geographic location (e.g. postcode/zip code), favourite products, hobbies and interests, and household or lifestyle information.
7. Information from computer/mobile device. Any information about the computer system or other technological device that you use to access one of Our Websites or apps, such as the Internet protocol (IP) address used to connect your computer or device to the Internet, operating system type, and web browser type and version. If you access a PH-derma website or app via a mobile device such as a smartphone, the collected information will also include, where permitted, your phone’s unique device ID, advertising ID, geo-location, and other similar mobile device data.
8. Websites/communication usage information. As you navigate through and interact with Our websites or newsletters, we use automatic data collection technologies to collect certain information about your actions. This includes information such as which links you click on, which pages or content you view and for how long, and other similar information and statistics about your interactions, such as content response times, download errors and length of visits to certain pages. This information is captured using automated technologies such as cookies and web beacons, and is also collected through the use of third party tracking for analytics and advertising purposes. You have the right to object to the use of such technologies.
9. Market research & consumer feedback. Any information that you voluntarily share with Us about your experience of using Our products and services.
10. Consumer-Generated Content. Any content you create and share with us through third-party social networks or by uploading it to our websites or apps, including platforms like Instagram. This may include photos, videos, personal stories, or similar media. Where permitted, we may collect and publish such content for various purposes, such as contests, promotions, community engagement, and social networking initiatives.
11. Third party social network information. Any information that you share publicly on a third-party social network or information that is part of your profile on a third-party social network (such as Facebook) and that you allow the third-party social network to share with Us. Examples include your basic account information (e.g. name, email address, gender, birthday, current city, profile picture, user ID, list of friends, etc.) and any other additional information or activities that you permit the third party social network to share. We receive your third-party social network profile information (or parts of it) every time you download or interact with a PH-derma web application on a third-party social network such as Facebook, every time you use a social networking feature that is integrated within a PH-derma site (such as Facebook Connect) or every time you interact with Us through a third-party social network. To learn more about how your information from a third-party social network is obtained by PH-derma, or to opt-out of sharing such social network information, please visit the website of the relevant third-party social network.
12. Payment and Financial Information: We collect the necessary payment details to process orders and purchases, including debit or credit card information (such as cardholder name, card number, and expiration date) and other available payment methods. All payment and financial data are handled by us or our payment processing providers in compliance with applicable laws, regulations, and security standards, such as the Payment Card Industry Data Security Standard (PCI DSS).
13. Calls to Consumer Engagement Services. Calls with our Consumer Engagement Services (CES) team may be recorded or monitored, as permitted by law, for operational purposes such as quality control and staff training. However, payment card details are never recorded. You will be notified at the beginning of the call and given the choice to continue under these terms or to end the call if you do not consent to the recording.
14. Sensitive Personal Data. We do not intentionally collect or process sensitive personal data in our regular business operations. If we need to process such data, we will obtain your explicit consent, particularly for voluntary uses such as marketing. In cases where processing is necessary for legal reasons, we will rely on applicable legal grounds, including compliance with investigations, legal proceedings, or regulatory requirements (such as the Personal Data Protection Act and diversity reporting obligations).
The Company may engage other companies and/or individuals to help provide our services or perform specific tasks such as analyzing customer data, offering marketing support, or providing consulting services. These third parties may have access to necessary information to carry out their duties, but they are not permitted to use that information for any other purposes. Some of the Company’s Websites may place a “cookie” on your device, for example, to offer personalized services and/or maintain your identity across multiple pages or sessions. This information may include, but is not limited to, relevant login and authentication details, as well as data regarding your activities and preferences on our websites.
Sources of Personal Data
PH-Derma Websites: Consumer-focused websites managed by or on behalf of PH-Derma, including our main domains, URLs, and mini-sites hosted on third-party platforms like Facebook.
PH-Derma Mobile Apps: Mobile applications operated by or for PH-Derma, such as smartphone apps.
Electronic Communications: Any interactions through emails, text messages, or other digital messaging platforms between you and PH-Derma.
Consumer Engagement Services (CES): Communications with our CES team, including inquiries and support interactions.
Offline Registration Forms: Information collected via printed or digital registration forms through postal mail, in-store demos, contests, promotions, or events.
Advertising Interactions: Data received when you engage with our advertisements on third-party websites
Data We Generate: Personal data created through our interactions with you, such as purchase records from our websites.
Third-Party Sources: Information obtained from third-party social networks (e.g., Facebook, Google), market research (unless provided anonymously), data aggregators, promotional partners, public sources, and acquired businesses.
Children’s Personal Data
We do not intentionally collect or request personal data from children under the age of 13. If we discover such data has been collected inadvertently, we will promptly delete it. However, PH-Derma may collect data about children under 13 directly from a parent or legal guardian, provided explicit consent is given.
Uses of your Personal Data
Customer Support: We use your personal data to assist with customer service inquiries, such as responding to questions about orders, technical issues, product concerns, or general requests. This typically involves using your contact details and relevant information related to your inquiry.
Contests, Marketing, and Promotions: With your consent where required, we use your personal data to inform you about our products, services, promotions, and marketing campaigns. These communications may be delivered via email, ads, SMS, phone calls, or postal mail, as permitted by applicable laws. Some campaigns may be conducted on third-party websites or social networks. Participation is voluntary, and you can opt out at any time.
Third-Party Social Networks: When you engage with social networking features, such as liking or sharing content, we may use your personal data to show you relevant advertisements and interact with you on these platforms. For more details on how your data is used and how to opt out, please review the privacy policies of the respective social networks.
Personalization (Online & Offline): With your consent, we analyze your preferences and behavior to enhance your experience across our websites and apps. This includes optimizing content for your device, providing targeted ads and promotions, and allowing you to participate in interactive features. For example, we remember your login details and shopping cart items for convenience. You may opt out of this personalized experience at any time.
Order Processing: We use your personal data to process and fulfill your orders, verify your identity, update you on order status, correct address details, and conduct fraud prevention checks. This involves using necessary personal and payment information.
General Business Operations: In compliance with applicable laws, we may use your personal data for internal purposes such as maintaining accounts, conducting market research, evaluating advertising effectiveness, and managing IT and security systems. If you have multiple PH-Derma accounts, we may consolidate them into a single account.
Legal Compliance & Business Transfers: If PH-Derma undergoes a merger, acquisition, or sale, we may share your personal data with our legal successors. Additionally, we may disclose your data if required by law, in response to legal proceedings, at the request of law enforcement, or in compliance with regulatory obligations.
Accuracy of Personal Data
Whenever possible, we verify the accuracy of the personal data provided using established industry practices. This may include checksum verification for numerical fields like account or credit card numbers. In some cases, we may compare the provided data with existing records within the company. Additionally, we may require original documents, such as identification or proof of address, before processing certain personal data.
Storage and Retention of Personal Data
We take reasonable measures to ensure the security, accuracy, and timely updates of all stored personal data, in accordance with the Personal Data Protection Act (PDPA). Digital data is securely stored on protected servers, while physical records are kept in locked areas with restricted access. Some of these facilities may be located overseas. Authorized employees and third-party data processors handle personal data on a strictly need-to-know basis. However, while we implement security measures, the absolute security of internet communications cannot be guaranteed. We are not liable for unauthorized access to personal information. Users also play a crucial role in securing their data by setting strong passwords, keeping them confidential, and logging out of shared or public devices.
PH-Derma retains personal data only as long as necessary, based on:
(i) An ongoing relationship with you (e.g., active mailing list subscription).
(ii) The necessity of the data for outlined purposes and legal compliance.
(iii) The expiration of any applicable legal limitation period, plus an additional two months for administrative purposes.
(iv) In the event of legal claims, we may retain personal data for the duration required to resolve the claim.
During these retention periods, personal data will only be stored and secured, unless it needs to be accessed for legal or compliance purposes. Once the retention period ends, we will either delete or anonymize the data.
Disclosure of Personal Data
PH-Derma ensures that all personal data remains confidential, but disclosure may be required in the following cases:
1. Affiliated Entities: Subsidiaries, holding companies, or associated businesses working under PH-Derma’s control. Third-party service providers with authorized access can only use personal data for designated tasks under strict confidentiality obligations.
2. Business Operations: Entities acting on behalf of or in collaboration with PH-Derma for business purposes, legal compliance, acquisitions, or mergers.
3. Confidential Third Parties: Any organization bound by confidentiality agreements with PH-Derma, provided they have a legitimate right to access the data. Personal data will not be sold or licensed to third parties for marketing purposes without explicit consent.
4. Financial and Legal Entities: Banks, credit institutions, and collection agencies may receive personal data to facilitate payments, assess creditworthiness, or recover outstanding balances.
Additionally, personal data may be disclosed to any party legally authorized under Singaporean law, such as law enforcement agencies or courts, upon presenting valid documentation proving their authority.
Transfer of Personal Data Outside Singapore
In certain situations, it may be necessary or advisable for the Company to transfer Personal Data to locations outside Singapore in order to fulfill the purposes, or related purposes, for which the data was originally collected. Such transfers will comply with Company policies and local laws, including the Personal Data Protection Act 2012. We may also send your Personal Data to other countries. In these cases, we (i) implement contractual clauses to safeguard your data (which you may request a copy of by contacting us as outlined below) and/or (ii) rely on your consent where allowed by law.
Security of Personal Data
Physical records containing Personal Data are securely stored in locked areas or containers when not in use. Electronic data is kept on computer systems and storage media with controlled access, and/or stored in restricted areas.
Access and Correction of Personal Data
Individuals have the right to:
1. Confirm whether the Company holds any Personal Data about them, and if so, obtain copies of it;
2. Request the correction of any inaccurate Personal Data for its intended purpose;
3. Where applicable under the law, you can (i) request the deletion, portability, correction, or revision of your Personal Data; (ii) limit the use and disclosure of your Personal Data; and (iii) revoke consent for any of our data processing activities;
4. Object to the use of your Personal Data by us, or on our behalf, based on your specific situation;
5. Object to the processing of your Personal Data by us, or on our behalf, for direct marketing purposes.
To exercise these rights, please contact us or email us at sales@ph-derma.com, providing a copy of your ID or equivalent details (if requested and permitted by law). Requests made by someone other than you, without proof that the request is legitimate, will be rejected. Any identification details provided will only be processed in compliance with applicable laws.
Please note, in some cases, we may not be able to delete your Personal Data without also removing your user account. We may be required to retain some data to fulfill legal or contractual obligations, or it may be necessary for our business needs, as permitted by law.
Our websites provide a feature where you can review and update the Personal Data you’ve provided. To access or change your account information, registered users must verify their identity (e.g., login ID/email address, password) to prevent unauthorized access.
If you have concerns regarding how we handle your Personal Data, we hope to address them. However, you also have the right to file a complaint with the relevant data protection authorities if necessary.
Control of Your Personal Data
Cookies/Similar Technologies: You can manage your consent by using (i) our consent management solution or (ii) your browser settings to accept or refuse all or some cookies/technologies, or to be alerted when they are in use.
Advertising, Marketing, and Promotions: You can provide consent for PH-Derma to use your Personal Data to promote its products or services by checking the relevant box(es) on the registration forms or by responding to questions asked by our CES representatives. If you no longer wish to receive such communications, you can unsubscribe at any time by following the instructions in the communication. To stop receiving marketing messages via any medium, including third-party social networks, you can opt out by unsubscribing through the links in our communications, adjusting your preferences on our websites/apps or third-party social networks, or by contacting sales@ph-derma.com. Please note that even if you opt out of marketing communications, you will still receive administrative messages from us, such as order confirmations, account updates (e.g., password changes), and other essential non-marketing notifications.
Personalization (Offline and Online): Where required by law, if you would like PH-Derma to use your Personal Data for personalized experiences, targeted advertising, or content, you can indicate your consent through the appropriate box(es) on the registration form or by answering questions from our CES representatives. If you later decide that you no longer want to receive personalized experiences, you can opt out at any time by logging into the Websites/apps and adjusting your preferences in your account profile, or by contacting sales@ph-derma.com.
Direct Marketing
The Company will respect your request to refrain from using your Personal Data for direct marketing purposes. Such requests should clearly specify the Personal Data for which the request is made.
Links to Other Websites
The Company may provide links to external websites. These sites are not under the Company’s control, and we are not responsible for the actions or content of any third-party websites linked to ours.
Change Policy
The Company reserves the right to modify any clauses in this policy to comply with local laws, meet global policy requirements, or for any other reasons the Company deems necessary. Any inquiries regarding data protection should be directed to sales@ph-derma.com.