GDPR Compliance
General Data Protection Regulation Information
Our Commitment to GDPR
Tenut Resilience is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy rights of individuals in the European Economic Area (EEA) and other jurisdictions where GDPR applies.
Legal Basis for Processing
We process personal data only when we have a legal basis to do so. Our legal bases include:
Consent
When you provide explicit consent for us to process your personal data for specific purposes, such as marketing communications or participation in programs.
Contractual Necessity
When processing is necessary to fulfill our contractual obligations to you, such as providing the services you've requested.
Legitimate Interests
When processing is necessary for our legitimate business interests, such as improving our services, fraud prevention, or network security, provided these interests don't override your rights.
Legal Obligation
When we must process your data to comply with legal requirements.
Your GDPR Rights
Under GDPR, you have the following rights regarding your personal data:
Right to Access
You have the right to request copies of your personal data. We may charge a reasonable fee if your request is clearly unfounded or excessive.
Right to Rectification
You have the right to request correction of any information you believe is inaccurate or completion of information you believe is incomplete.
Right to Erasure
You have the right to request deletion of your personal data under certain conditions, such as when the data is no longer necessary for the purposes it was collected.
Right to Restrict Processing
You have the right to request restriction of processing your personal data under certain conditions.
Right to Object
You have the right to object to our processing of your personal data under certain conditions.
Right to Data Portability
You have the right to request transfer of your data to another organization or directly to you under certain conditions.
Right to Withdraw Consent
If we're processing your data based on consent, you have the right to withdraw that consent at any time.
Exercising Your Rights
To exercise any of your GDPR rights, please contact us at:
Email: [email protected]
Subject: GDPR Rights Request
We will respond to your request within one month. If your request is complex or we receive multiple requests, we may extend this period by two additional months and will inform you accordingly.
Data Protection Officer
For questions specifically about data protection and GDPR compliance, you may contact our Data Protection Officer at [email protected] with "DPO" in the subject line.
International Data Transfers
When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions
- Binding Corporate Rules
- Your explicit consent
Data Breach Notification
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach, as required by GDPR.
Automated Decision-Making and Profiling
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you without human intervention.
Children's Data
We do not knowingly process personal data of children under 16 years of age without parental consent, in compliance with GDPR requirements.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
- Service delivery and client relationship management
- Legal and regulatory compliance
- Dispute resolution
- Enforcement of agreements
After the retention period expires, we will securely delete or anonymize your data.
Complaints
If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in the EU member state where you reside, work, or where the alleged infringement occurred.
Updates to This Policy
We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. The date at the top of this page indicates when it was last updated.
Contact Information
For questions about GDPR compliance or to exercise your rights:
Tenut Resilience
138 Cecil Street, #06-01
Singapore 069538
Email: [email protected]