logo

Data Protection & Privacy Compliance Statement

Effective Date: 14 January 2025
Issued by: CLEARSTATE (PTE.) LTD. (200616549W)

Overview

At CLEARSTATE (PTE.) LTD., we are committed to protecting the personal data of our clients, partners, and end users in accordance with applicable data protection laws, including:

  • The EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679); and
  • The Singapore Personal Data Protection Act 2012 (PDPA).

This statement outlines our key responsibilities and operational safeguards to ensure compliance with these regulations.

GDPR Compliance

As a Data Controller or Data Processor (as applicable), CLEARSTATE (PTE.) LTD.:

  • Processes personal data lawfully, fairly, and transparently in accordance with Article 5 of the GDPR.
  • Maintains appropriate technical and organizational security measures to prevent unauthorized access, loss, or disclosure of personal data.
  • Assists clients with the exercise of data subject rights (e.g., access, rectification, erasure, and objection).
  • Ensures that personal data transferred outside of the EEA is protected using appropriate safeguards, such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.
  • Notifies clients without undue delay in the event of a personal data breach affecting their information.
  • Conducts due diligence on any subprocessors to ensure GDPR-compliant handling of personal data.

Singapore PDPA Compliance

As a Data Intermediary or Organization under the PDPA:

  • We obtain or rely on valid consent for the collection, use, and disclosure of personal data.
  • We provide clear notice of the purposes for data processing and ensure data is retained only for as long as necessary.
  • We implement reasonable security arrangements to protect personal data in our possession.
  • We transfer personal data outside Singapore only with appropriate safeguards, ensuring a standard of protection comparable to the PDPA.
  • We are prepared to assist clients with data access, correction, and withdrawal-of-consent requests under the PDPA.
  • We maintain accountability for personal data through internal policies, training, and access controls.

Contact

For any queries, data subject requests, or concerns related to data protection, please contact:

Name: Ivy Teh
Email: ivy.teh@clearstate.com

This statement is issued for informational purposes only and does not replace any legally binding agreement, including our Terms & Conditions or Data Processing Agreement.

© 2025 Clearstate © All rights reserved.