SGMarts Shop Privacy Policy

Effective Date: [2025-05-01]

At SGMarts Shop, we are committed to protecting your privacy and ensuring a safe online experience while using our website. This Privacy Policy outlines how we collect, use, protect, and disclose your personal information in compliance with Singapore’s Personal Data Protection Act (PDPA) 2012 and its accompanying regulations. Please read this policy carefully to understand how we handle your data.

By accessing or using our website, you agree to the collection and use of your information as outlined in this Privacy Policy. If you do not agree with this policy, please do not use our website.

1. Information We Collect

We may collect the following types of information, in line with the PDPA’s definition of personal data (information that can identify a specific individual, either alone or in combination with other data we hold or can access):

Personal Identifiable Information (PII):

  • Full name
  • Email address
  • Phone number
  • Shipping address (including postal code)
  • Billing information (e.g., credit/debit card details, payment method preferences) – note that we do not store full credit card details, only encrypted payment references

Non-Personal Information:

  • IP address
  • Browser type and version
  • Device type and operating system
  • Usage data (e.g., pages visited, links clicked, time spent on the website, order history)

Cookies and Tracking Technologies:

We use cookies and other tracking technologies (such as web beacons) to enhance the functionality and personalization of the website, help us analyze how the website is used, and improve your overall shopping experience. In compliance with PDPA requirements, we obtain your consent before placing non-essential cookies on your device.

2. How We Use Your Information

The information we collect is used for the following legitimate purposes, in accordance with the PDPA’s “purpose limitation” principle (we only use your data for purposes you have been informed of):

  • To process and complete your orders (including payment processing, order verification, and shipping arrangements)
  • To provide customer support and respond to your inquiries, feedback, or complaints
  • To improve and optimize the content, functionality, and performance of our website and services
  • To send you order updates, delivery notifications, and (if you opt in) promotional offers, discounts, and other information related to our products and services – you may unsubscribe from promotional communications at any time
  • To comply with legal and regulatory obligations in Singapore, such as tax requirements (GST), record-keeping obligations, and requests from relevant authorities
  • To detect and prevent fraudulent activities, protect our website and systems, and safeguard the security of your account

3. Cookies and Tracking Technologies

We use cookies and other tracking technologies to improve your experience on our website. Cookies are small files stored on your device that help us provide personalized content, remember your preferences, and analyze website traffic. We categorize cookies into two types:

  • Essential Cookies: These are necessary for the website to function properly (e.g., to remember your shopping cart or login status). They cannot be disabled without affecting your ability to use core features of the website.
  • Non-Essential Cookies: These are used for analytics, personalization, and marketing purposes (e.g., to track website usage or display relevant promotions). You can disable these cookies in your browser settings, but please note that this may affect your ability to use certain non-essential features of our website.

You can manage your cookie preferences at any time through your browser settings or by contacting our customer service team.

4. Sharing and Disclosure of Information

We are committed to not selling or renting your personal information to third parties, in compliance with the PDPA. However, we may share your information with the following parties for legitimate business purposes, ensuring that all third parties comply with PDPA requirements and provide a level of protection equivalent to that required by Singapore law:

Service Providers:

We may share your personal information with third-party service providers who help us operate our business, such as payment processors (e.g., PayPal, local payment gateways), logistics and delivery companies, email service providers, and website analytics providers. We only share the minimum amount of information necessary for these providers to perform their services, and we enter into data processing agreements with them to ensure your data is protected.

Legal Compliance and Safety:

We may disclose your information in response to legal requests, such as subpoenas, court orders, or inquiries from Singaporean authorities (e.g., the Personal Data Protection Commission (PDPC), Inland Revenue Authority of Singapore (IRAS)). We may also disclose your information to protect our rights, property, or safety, or the rights, property, or safety of other users or the public.

Cross-Border Data Transfer:

If we transfer your personal data to a country or region outside Singapore, we ensure that the recipient provides a level of protection equivalent to that required by the PDPA. This may be achieved through binding contractual arrangements, receiving certification from a recognized data protection framework (e.g., APEC Cross-Border Privacy Rules), or obtaining written approval from the PDPC where necessary. We will not transfer your data to recipients who cannot meet these protection standards, unless you have given your explicit consent or the transfer is exempt under the PDPA.

5. Data Security

We take reasonable security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction, in compliance with the PDPA’s data security obligations. These measures include:

  • Encryption of sensitive data (e.g., payment information) during transmission and storage
  • Secure access controls to our systems and databases
  • Regular security audits and updates to our website and systems
  • Staff training on data protection and privacy best practices

However, we cannot guarantee the absolute security of your data, as no online transmission or storage system is completely secure. Although we strive to protect your information, you acknowledge that any information transmitted over the internet is at your own risk.

6. Your Rights Under the PDPA

Under Singapore’s Personal Data Protection Act (PDPA) 2012, you have the following rights regarding your personal data:

Right of Access:

You have the right to request access to the personal data we hold about you, including details of how we collect, use, and disclose your data.

Right to Rectification:

You have the right to request correction of any inaccurate or incomplete personal information we hold about you.

Right to Erasure (Right to be Forgotten):

You have the right to request deletion of your personal data, except where retention is necessary for legal obligations, contractual requirements, or other legitimate purposes permitted by the PDPA.

Right to Withdraw Consent:

You may withdraw your consent for us to process your personal data at any time, but this will not affect processing based on consent before it was withdrawn. Withdrawing consent may affect our ability to provide certain services to you.

Right to Data Portability:

You have the right to request a copy of your personal data in a structured, machine-readable format, where technically feasible, to transfer to another data controller.

How to Exercise Your Rights:

To exercise any of these rights, please contact our customer service team at contact@sgmarts.com with your full name, contact details, and a clear description of your request. We will respond to your request within the timeframes required by the PDPA (typically 30 days, with possible extensions where necessary).

7. Children’s Privacy

Our services are not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13, in compliance with the PDPA and Singapore’s child protection guidelines. If you believe we have inadvertently collected personal data from a child under 13, please contact us immediately at contact@sgmarts.com, and we will take prompt steps to delete that information and notify the relevant authorities if required.

8. Third-Party Links

Our website may contain links to third-party websites (e.g., payment gateways, social media platforms). We are not responsible for the privacy practices or content of those websites and encourage you to review their privacy policies before submitting any personal information. We do not endorse or control these third-party websites, and their privacy practices are not governed by this Privacy Policy.

9. Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in Singapore’s privacy laws (e.g., PDPA amendments), our business practices, or technological developments. If we make changes, we will post the revised policy on our website with an updated effective date. Your continued use of the website after any changes are posted constitutes your acceptance of those changes. We encourage you to review this policy periodically to stay informed about how we protect your information.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise your rights regarding your personal data, report a data breach, or provide feedback on our privacy practices, please contact our customer service team at:

SGMarts Shop

Email: contact@sgmarts.com

Phone: +65 6688 7352

Address: 20 Tanjong Penjuru, Singapore 609026