Privacy Policy

1. Introduction

This Privacy Policy describes how KPBGS – Global Trade & Business Consulting Singapore Pte. Ltd. (“KPBGS”, “we”, “us”, “our”) collects, uses, discloses, transfers, and protects personal data in accordance with:

• the Singapore Personal Data Protection Act (PDPA),
• the EU General Data Protection Regulation (GDPR),
• applicable U.S. privacy laws (including California Consumer Privacy Act, “CCPA”, where relevant).

This Policy applies to all visitors of our websites, clients, business partners, and any individuals whose personal data we process in the course of our business operations.

2. Data Controller

KPBGS – Global Trade & Business Consulting Singapore Pte. Ltd.
331 N Bridge Rd, Odeon Towers
Singapore 188720
Email: contact@kpbgs.com

EU Representative (if required)

Authorised representative is Mr. Eric Wong

3. Data Protection Officer (DPO)

In accordance with the Singapore PDPA, we have appointed a Data Protection Officer: Mr. Sundree Lieu

Email: dpo@kpbgs.com

4. Types of Personal Data We Collect

Depending on your interaction with us, we may collect the following categories of data:

• Identification details (name, role, organisation)
• Contact details (email address, phone number, business address)
• Business information (project details, inquiries, communication history)
• Website usage data (IP address, browser type, device identifiers, pages visited)
• Preferences and interactions (form submissions, email preferences)

5. Purposes of Processing

We process personal data for the following purposes:

• Responding to inquiries and providing consulting services
• Performing contracts and pre-contractual communication
• Maintaining business relationships with clients and partners
• Operating, maintaining and improving our website and services
• Ensuring IT security and preventing misuse
• Marketing and communication (with consent where required)

6. PDPA Requirements

Under the Singapore PDPA, we ensure that:

• personal data is collected with informed consent (unless an exemption applies)
• purposes are clearly communicated
• data is protected through reasonable security measures
• data is not retained longer than needed
• access and correction rights are respected
• transfers outside Singapore provide comparable protection

7. Legal Basis (GDPR)

Where we process personal data of individuals located in the EU, the legal bases are:

• Art. 6(1)(b) GDPR — Contract performance
• Art. 6(1)(a) GDPR — Consent (e.g. newsletter)
• Art. 6(1)(f) GDPR — Legitimate interests (business operations, security)

8. U.S. Privacy Requirements (including CCPA)

For U.S. residents (including California), we provide the following rights where applicable:

• Right to know what personal data we collect
• Right to request deletion of personal data (with exceptions)
• Right to correct personal information
• Right to opt out of the sale or sharing of data (we do not sell data)
• Right to non-discrimination for exercising privacy rights

9. Disclosure of Personal Data

We may share personal data with:

• Service providers (e.g. hosting, email, analytics)
• Professional advisors (e.g. legal, tax, compliance)
• Authorities when legally required

We do not sell personal data under any jurisdiction.

10. International Data Transfers

As a global company, we may transfer data internationally. When doing so, we ensure:

• EU Standard Contractual Clauses (SCCs) for GDPR transfers
• Comparable protection as required under PDPA
• U.S. state requirements where applicable

11. Data Retention

Personal data is kept only as long as necessary for the stated purposes, or as required by law. Afterwards, the data is securely deleted or anonymised.

12. Security Measures

We use reasonable administrative, technical and organisational measures to secure personal data against loss, misuse, unauthorised access, alteration or destruction.

13. Your Rights

Singapore PDPA

• Right to access your data
• Right to correct inaccurate data

EU / GDPR

• Right of access
• Right to rectification
• Right to erasure
• Right to restriction
• Right to portability
• Right to object

United States

• Right to know (CCPA)
• Right to correction / deletion
• Right to opt out (we do not sell data)

14. Contact for Rights Requests

Email: dpo@kpbgs.com

15. Changes to this Policy

We may update this Privacy Policy to reflect legal, technical or business developments. The current version is always available on this website.

16. Disclaimer

This English version is provided for international accessibility. For legal compliance in specific jurisdictions, we are happy to provide you with further professional legal review.