Skip to main content
Privacy Policy

Privacy Policy

This Privacy Policy is to inform you of how D’Crypt Pte Ltd (referred to herein as “D’Crypt”, “us”, “we” or “our”) manage Personal Data in accordance with the Personal Data Protection Act 2012 (“Act”).

By interacting with us, submitting information to us or entering into any agreements with us, you agree and consent to D’Crypt, as well as our respective representatives or agents, collecting, using, disclosing and sharing amongst themselves your Personal Data (as defined in the Act), and disclosing such Personal Data to D’Crypt’s authorised service providers and relevant third parties in the manner set forth in this Policy.

This Policy supplements but does not supersede nor replace any other consents which you may have previously provided to D’Crypt in respect to your Personal Data, and your consents herein are additional to any rights which D’Crypt may have at law to collect, use or disclose your Personal Data. For the avoidance of doubt, data that are excluded under the Act (e.g. business contact information) are not covered under this Policy.

D’Crypt may from time to time update this Policy to ensure that this Policy is consistent with our future developments, industry trends and/or any changes in legal or regulatory requirements.

Personal Data

“Personal Data” is data about an individual who can be identified:

  • From that data; or
  • From that data with other information the organisation has or is likely to have access.

Personal Data may include, but is not limited to, the following:

  • Full name;
  • NRIC number or Foreign Identification Number (FIN);
  • Passport number;
  • Photograph or video image of an individual;
  • Mobile and residential telephone number;
  • Personal email address;
  • Name and residential address;
  • Biometric information such as fingerprint, Iris image and DNA profile.

Collection of Personal Data

Generally, D’Crypt collects your Personal Data in the following ways:

  • When you submit forms or applications to us;
  • When you submit queries, requests, complaints or feedback to us;
  • When you interact with our staff, e.g. via telephone calls, letters, fax, face-to-face meetings and email;
  • When your images are captured by us in the form of photographs or videos, including via our CCTV cameras while you are within our premises or when you attend our events;
  • When you use any of our products and/or services;
  • When you are contacted by, and respond to, our marketing representatives and agents and other service providers;
  • When you respond to our request for additional Personal Data;
  • When you ask to be included in an email or other mailing list;
  • When we receive your Personal Data from business partners, public agencies, your employer and other third parties in connection with your relationship with us; and
  • When you browse our website, you generally do so anonymously but please see the sections below on IP Address and Cookies. We do not at our website automatically collect Personal Data, including your email address unless you provide such information.

If you provide us with any Personal Data relating to a third party (e.g. information concerning employees, directors, authorised persons and/or family members), by submitting such information to us, you represent to us that you have obtained the consent of that third party to you providing us with their Personal Data for the purposes stated in this Policy.

You should ensure that all Personal Data submitted to us is complete, accurate, true and correct. Failure on your part to do so may result in our inability to fulfil your requests and/or applications.

IP Address

  • An IP address is a number that is assigned by your Internet Service Provider to your device when you connect to the internet.
  • When you visit our website, your IP address is automatically logged in our server. We use your IP address to help diagnose problems with our server, and to administer our website. From your IP address, we may identify the general geographic area from which you are accessing our website. However, we will not be able to pinpoint the exact geographic location from which you are accessing our website. Generally, we do not link your IP address to anything that can enable us to identify you unless it is required by applicable laws and regulations.


  • A cookie is an element of data that a website can send to your browser, which may then store it on your system. We use cookies in some of our pages to store visitors’ preferences and record session information.
  • The information that we collect is then used to ensure a more personalised service level for our users. You can adjust settings on your browser so that you will be notified when you receive a cookie. Should you wish to disable the cookies associated with these technologies, you may do so by changing the setting on your browser. However, you may not be able to enter certain part(s) of our website, and some of the functions and services may not be able to function without cookies.
  • Please refer to your browser documentation to check if cookies have been enabled on your computer or to request not to receive cookies.

Purposes for the Collection, Use and Disclosure of Your Personal Data

Generally, D’Crypt collects, uses and discloses your Personal Data for the following purposes:

  • If you are a Vendor/Service Provider/Business Partner
    • To conduct due diligence/background checks that are mandated by legislation or D’Crypt’s internal policies and practices;
    • To evaluate the products and services provided by vendors/service providers/business partners to D’Crypt;
      For security clearance/entry access into D’Crypt’s premises;
    • To facilitate attendance at events/functions organised by D’Crypt or that D’Crypt is involved in; and
    • Any other purposes reasonably related to any of the above.
  • If you are a Customer
    • To conduct due diligence/background checks that are mandated by legislation or D’Crypt’s internal policies and practices;
    • To manage and evaluate project tenders;
    • To respond to queries regarding D’Crypt’s products and services;
    • For security clearance/entry access into D’Crypt’s premises;
    • To communicate with customers on D’Crypt’s products, services, corporate events/function and business of D’Crypt;
    • To facilitate attendance at events/functions organised by D’Crypt or that D’Crypt is involved in; and
    • Any other purposes reasonably related to any of the above.
  • Others
    • To respond to queries, requests, complaints and feedback;
    • To evaluate applications for employment/job positions within D’Crypt;
    • To conduct interviews and to evaluate and assess the suitability of the candidate for the position applied for;
    • To provide or obtain employee references and for background screening;
    • To process employment pass applications, visa applications and offer of employment;
    • To evaluate applications for scholarships and to award scholarships to eligible parties;
    • To evaluate applications for internships and industrial attachments;
    • To organise and manage events for community and charitable purposes;
    • To prevent, detect and investigate crime, including terrorist financing, fraud and money-laundering, and analyse and manage commercial risks;
    • To maintain the security of D’Crypt premises (including but not limited to CCTV surveillance);
    • Comply with any applicable rules, laws, regulations, codes of practice or guidelines issued by any legal or regulatory bodies which are binding on D’Crypt or to assist in law enforcement and investigations by relevant authorities (including but not limited to disclosures to regulatory bodies, conducting audit checks, surveillance and investigation);
    • Legal purposes (including but not limited to drafting and reviewing documents, obtaining legal advice and facilitating dispute resolution); and
    • Any other purposes reasonably related to any of the above.

Disclosure of Personal Data

Your Personal Data held by us shall be kept confidential. However, in order to provide you with effective and continuous products and services, and for the purposes listed above (where applicable), your Personal Data may be disclosed to the following:

  • To our customers/vendors/subcontractors/consultants/business partners for tender purposes;
  • To our agents and sub-contractors for the purposes of providing products and services to our customers on our behalf;
  • To our business partners for the purposes of providing products and services to our customers;
  • To government and non-government authorities, agencies and/or regulators as required under law or under directions or orders from the government and non-government authorities, agencies and/or regulators for security, regulatory approvals or permits;
  • To event organisers and service providers to facilitate the planning of events/functions that D’Crypt organises or is involved in;
  • To financial institutions for purposes of payments and transactions related to D’Crypt provision of products and services or related to products and services provided to D’Crypt by our vendors/service providers/consultants
  • To professional, financial and legal advisors and consultants, tax advisors, auditors, insurers and insurance brokers;
  • To conduct surveys, obtain feedback regarding our products and/or our services;
  • For internal management of the services provided to you;
  • To maintain the security of our premises;
  • To carry out analytics, research, planning and/or statistical assessment;
  • To develop new services and products.

Protection and Security of Personal Data

We take reasonable efforts to protect Personal Data in our possession or our control by employing a range of technological and physical security arrangements and maintaining safeguards to protect against the accidental or unauthorised access, collection, use, disclosure, copying, modification, disposal, deletion and other similar risks to Personal Data per the requirements under the Act. Personal Data will also be deleted when they are no longer required. While we strive to protect your Personal Data, we cannot ensure the security of the information you transmit to us via the Internet and we urge you to take every precaution to protect your Personal Data when you are on the Internet. We recommend that you use a secure browser and change your passwords often, use a combination of letters and numbers and keep your username and password secure and confidential.

Retention of Personal Data

We retain Personal Data for as long as the retention is required for the purposes for which we collected the Personal Data, the purposes described in this Policy and for our business and legal purposes.

Contacting Us – Withdrawal of Consent, Access and Correction of your Personal Data

If you:

  • Have any questions or feedback relating to your Personal Data or our Policy;
  • Would like to withdraw your consent to any use of your Personal Data as set out in this Policy; or
  • Would like to obtain access and make corrections to your Personal Data records,

please contact us as follows:

If you withdraw your consent to any or all use of your Personal Data, D’Crypt may not be in a position to continue to provide its products or services to you and your withdrawal of consent in such cases may carry legal or practical consequences to you.