Umbel BBIS is committed to compliance with the General Data Protection Regulation (GDPR) for users located in the European Economic Area (EEA). This page outlines your rights and our obligations under GDPR.
Data Controller
Umbel BBIS acts as the data controller for personal information collected through our website and services. Our contact details are:
Umbel BBIS
71 Robinson Road, #14-01 Oxley Tower
Singapore 068895
Email: [email protected]
Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Consent: When you have given clear consent for us to process your personal data for specific purposes
- Contract: When processing is necessary for the performance of a contract with you
- Legal Obligation: When processing is necessary for compliance with a legal obligation
- Legitimate Interests: When processing is necessary for our legitimate interests, provided your rights do not override those interests
Your Rights Under GDPR
If you are located in the EEA, you have the following rights regarding your personal data:
Right to Access
You have the right to request copies of your personal data. We may charge a small fee for this service.
Right to Rectification
You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
Right to Erasure
You have the right to request that we erase your personal data under certain conditions.
Right to Restrict Processing
You have the right to request that we restrict the processing of your personal data under certain conditions.
Right to Object
You have the right to object to our processing of your personal data under certain conditions.
Right to Data Portability
You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.
Exercising Your Rights
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month. If your request is complex, we may extend this period by two months, but we will inform you of any extension within the first month.
Data Transfers
Your personal data may be transferred to and processed in countries outside the EEA. When we transfer data outside the EEA, we ensure appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected. The retention period depends on the type of data and the purpose of processing.
Automated Decision-Making
We do not use automated decision-making, including profiling, that produces legal effects or similarly significantly affects you.
Data Protection Officer
For any questions regarding our GDPR compliance or data protection practices, please contact our Data Protection Officer at [email protected].
Complaints
If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority. For EEA residents, this would be the data protection authority in your country of residence.
Changes to This Notice
We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.