Privacy Policy

Starr International Insurance (Singapore) Pte., Ltd. - Privacy Policy

(Last updated: 1st November 19)

Introduction

In order to provide insurance products and services, it may be necessary for an insurer to collect personal data about you from time to time. Starr International Insurance (Singapore) Pte. Ltd. ("SIIS") and its affiliated companies (hereinafter collectively called "Starr"), recognizes its responsibilities in relation to the collection, holding, processing, use and/or transfer of personal data under the Personal Data Protection Act (Act 26 of 2012) ("PDPA"). SIIS will only collect personal data for lawful and relevant purposes and will take all reasonable practicable steps to ensure that personal data which it holds is accurate and kept secure to avoid unauthorised or accidental access, processing, erasure or other use.

This Privacy Policy is designed to assist you in understanding why and how SIIS collects and uses your personal data, to whom your personal data may be transferred to, how to access, review and amend your personal data and SIIS’ policy on the use of website cookies.

By submitting your information to SIIS, or signing up for any products and/or services offered and/or distributed by SIIS, you agree and consent to SIIS, and where appropriate SIIS’ respective representatives, agents, third party service providers and/or appointed distributors/business partners, collecting, using and disclosing personal data in the manner set forth in the prevailing terms of this Privacy Policy, including any future amendments.

Please note that the purposes set forth in this Privacy Policy supplement but do not supersede any other consent(s) you may have previously provided to SIIS or which you may provide to SIIS in the future.

SIIS reserves the right, at any time, to add to, change, update or modify this Privacy Policy. Updates and the revised Privacy Policy will be placed on SIIS’ website. If the changes are material, SIIS will notify you on this website as well as through other means (e.g. email and/or letter).

Purposes for which personal data is collected, used or disclosed

Under the PDPA, personal data is defined as information about an individual who can be identified from that data, or from that data and other information to which the organisation has or is likely to have access.

It may be necessary for you to supply SIIS with personal data in connection with the provision of insurance or other products or services. Failure to provide such personal data may result in SIIS being unable to provide relevant products or services to you.

SIIS collects, uses and discloses personal data for the following purposes:

  1. offering and providing insurance or related products or services to you, and administering, maintaining, managing and operating such products or services;
  2. processing, evaluating and verifying any applications for insurance or related products or services, as well as any changes, cancellations, renewals, reinstatements and any other relevant matters;
  3. providing subsequent services to you, including but not limited to administering the policies issued and providing emergency assistance services;
  4. processing (including but not limited to investigating and analyzing) any claim under any insurance policy or products or services issued to you by SIIS;
  5. communicating with you via telephone, mail, e-mail, facsimile or any other electronic communications means;
  6. evaluating your needs;
  7. designing any insurance or related products or services;
  8. conducting market research for statistical or other purposes;
  9. matching any data held which relates to you from time to time for any of the purposes listed herein;
  10. providing customer services (including but not limited to processing enquiries and complaints);
  11. making disclosure as required by any applicable laws, rules, regulations, codes of practice or guidelines;
  12. conducting identity, eligibility and/or other checks;
  13. detecting and combating fraudulent insurance claims;
  14. complying with the laws of any applicable jurisdiction;
  15. carrying out other services in connection with the operation of the Starr's business;
  16. providing telecommunications, information technology, payment, processing and training;
  17. storing, hosting, backing up of your personal data (including via clouds storage), and for otherwise managing and ensuring the efficiency and security of Starr’s IT environment and business operations;
  18. other purposes as notified at the time of collection; and other purposes directly relating to any of the above.
How personal data (and other information) is collected

SIIS may collect your personal data in one or more of the following ways:

  1. when you submit an application or registration form, or any other forms relating to any products and services offered and/or distributed by SIIS;
  2. when a policyholder takes up an insurance policy for your benefit;
  3. when you enter into any agreement or provide other documentation or information in respect of your interactions and transactions with SIIS, or when you use SIIS’ services;
  4. when you interact with SIIS’ customer service officers, representatives, agents or appointed service providers (for example, via telephone calls, letters, face-to-face meetings and/or e-mails);
  5. when you use SIIS’ electronic services or any of SIIS’ websites or web services;
  6. when you request SIIS to contact you (whether pursuant to a request for more information, complaints, or any other purposes);
  7. when you respond to promotions, lucky draws, contests, events, initiatives, surveys organised by SIIS, its partners, representatives or service providers and/or any other request for personal data;
  8. when your images are captured by SIIS via CCTV cameras while you are within any of SIIS’ premises, or via photographs or videos taken by SIIS, its representatives or its agents when you attend SIIS’ events;
  9. when SIIS receives references from business partners or third parties (for example, where you have been referred by them);
  10. when SIIS receives information from third parties about you when you make payment through them;
  11. when SIIS seeks information from third parties about you in connection with the products and services you have applied for, including but not limited to from other insurers, insurance associations, healthcare institutions, clinics, investigators, ex employer and the relevant authorities; and/or
  12. when you submit your personal data to SIIS for any other reason.

As SIIS relies on your personal data to provide products and services to you, you shall ensure that the information provided by you to SIIS is at all times correct, accurate and complete, and shall update SIIS in a timely manner of all changes to the information provided to SIIS.

If you provide SIIS with any personal data relating to a third party, you represent and warrant to SIIS that you have obtained the consent of the third party to provide SIIS with their personal data for the relevant purposes.

When you access SIIS’ website, various types of technical information may also be collected about your activities on the website (e.g. your IP address, the date and time that you accessed the website, information relating to your browser and operating system, the pages visited etc.). This information does not allow you to be identified. SIIS may use this information for purposes such as calculating website usage levels, helping diagnose server problems, and administering the website.

SIIS may also collect aggregate data from its website. This information helps SIIS to better understand your needs and adapt its products and services accordingly. Similarly, this data does not allow you to be identified, and SIIS may use and disclose it for any purpose (save where otherwise required under applicable law).

SIIS’ website may also use "cookies" to gather statistical information concerning web traffic and usage patterns. Cookies will enable the website to remember you and your preferences when you visit the website and will enable SIIS to tailor the website to your needs and advertisements which are more likely to be relevant to you. SIIS may also share this information with third parties for this purpose. Cookies do not identify you personally; they do not track your name, email address or other similar personal information. However, if you do not want to receive cookies you can disable this function by changing your browser settings. In addition, SIIS may use "pixel tags", "web beacons" "clear CIFs" or other similar technologies in respect of the pages on its website. This assists SIIS, to among other things, track the actions of the users on the Website to enable it to compile statistical usage and response rates.

For US persons seeking instructions on how to enable the settings of your web browser to ensure that the Website does not track your visit, please see the Starr Insurance Companies Privacy Policy.

Changes to this Policy

SIIS takes appropriate technical, physical and administrative measures to handle personal data in a secure manner which is consistent with the PDPA. Unfortunately, no data transmission over the Internet or data storage system can be guaranteed to be 100% secure.

SIIS shall keep your personal data for as long as necessary to fulfill the original or directly related purpose for which such data was collected, unless the personal data is also retained to satisfy any applicable statutory or contractual obligations. If (i) the purpose for which that personal data was collected is no longer being served by the retention of such personal data; and (ii) retention is no longer necessary for any other legal or business purposes, SIIS will take reasonable steps to securely delete, destroy and/or anonymize your personal data.

If you have reason to believe that your interaction with SIIS is no longer secure (for example, if you feel that the security of any personal data you might have with SIIS has been compromised), please immediately notify SIIS by writing to SIIS's Data Privacy Officer at 138 Market Street, #16-04, Capitagreen, Singapore 048946.

Transfer of Personal Data

Personal data held by SIIS will be kept confidential but, subject to the provisions of any applicable law, SIIS may disclose or transfer such data to any of the following classes of persons to satisfy the purpose or a directly related purpose for which the personal data was collected:

  1. Any companies carrying on insurance and/or reinsurance related business.
  2. Any insurance intermediaries.
  3. Any insurance claims investigators.
  4. Any associations and federations of insurance companies that exist from time to time.
  5. Any insurance agents and professional advisers.
  6. Any other service providers providing assistance services, insurance and/or reinsurance related business.
  7. Any marketing companies authorized by SIIS for the purpose of conducting marketing activities in relation to the products of SIIS.
  8. Any person in connection with any claims made by or under or otherwise involving any products or services provided by SIIS.
  9. Any agent, contractor or third party service provider who provides administrative, telecommunications, computer, payment, data processing or storage, or other services to Starr in connection with the operation of the business of Starr.
  10. Any credit reference agencies or, in the event of default, any debt collection agencies.
  11. Any person under a duty of confidentiality to Starr which has undertaken to keep such data confidential.
  12. Any actual or proposed purchaser, assignee, transferee, participant or sub-participant of Starr's rights or business.
  13. Any person to whom Starr are under an obligation to make disclosure under the requirements of any law, rules, regulations, codes of practice or guidelines binding on Starr including, without limitation, any applicable regulators, governmental bodies, or industry recognised bodies, and where otherwise required by law.
  14. Any registers of claims which are shared with other insurers for the purpose of detecting, preventing or investigating fraudulent claims (and for these purposes, SIIS may search such registers); and
  15. any party to whom you have consented the disclosure of your personal data.

Where permitted by law, personal data collected in Singapore by SIIS may be transferred to places outside of Singapore (such as to Starr, Starr's service providers, and governmental and regulatory authorities) and stored in servers outside of Singapore for processing, storage, analysis, disaster recovery or emergency assistance services and such personal data may be required to be disclosed to those authorized under the applicable laws of that foreign country.

Service providers with whom SIIS have contractual relationships for the transfer of such personal data are required to provide a standard of protection to the transferred personal data that is comparable to the protection under the PDPA and consistent with SIIS’ personal data protection policies and practices.

By providing SIIS with your personal information or using SIIS’ services or SIIS’ website, you consent to the transfer of such information outside Singapore to Starr’s facilities or to those third parties with whom SIIS share it as described above.

Access, correction and withdrawal of your personal data

Under the PDPA, you have the right to request access to your personal data that SIIS has. However, you may be charged a reasonable fee for every request for such access.

You also have the right to request correction of your personal data.

You may withdraw your consent for the collection, use and disclosure of your personal data by giving SIIS reasonable notice.

If you withdraw your consent for SIIS to collect, use or disclose your personal data for non-marketing reasons, SIIS will be unable to process, administer and/or manage your policy, relationship and/or account with SIIS. In such event, you may be required to surrender or terminate all your policies or accounts with SIIS.

Requests for withdrawal of consent, access and correction should be addressed in writing to SIIS’ Data Privacy Officer at 138 Market Street, #16-04, Capitagreen, Singapore 048946.

Direct Marketing

If you have given SIIS consent to send you marketing and promotional information through electronic mail or postal mail, SIIS may from time to time contact you on such telephone number(s) via your designated mode of communication or through electronic mail or postal mail (as the case may be) to provide you with marketing, promotional information and updates in respect of services and products which SIIS offers; for direct marketing of services and products by its parent companies, related companies or group companies and their product distributors, authorised insurance agents and contractors; and for other financial and third party service providers of marketing and technology in Singapore or elsewhere.

Any consent that you have given for marketing purposes is not affected by termination of your insurance policy.

SIIS will not use or provide your personal data to third parties for direct marketing without your consent.

You may also at any time contact SIIS to withdraw your consent by writing to SIIS' Data Privacy Officer at 138 Market Street, #16-04, Capitagreen, Singapore 048946 or simply by clicking on the link "unsubscribe" provided in each direct marketing email. SIIS will act on your request at no cost to you as soon as practicable.

Links to Third Party Websites

SIIS’ website may contain links to third party websites. SIIS has no control over the content of such third party websites or the way that the operators of such websites deal with your personal data, and is not responsible for the privacy practices of such third parties that are linked to SIIS’ website. The inclusion of a link on SIIS’ website does not imply endorsement of the linked site by SIIS.

Use of this Website by Minors

We retain personal information for the period necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by applicable law. Please note that we often need to retain certain data for recordkeeping purposes, for purposes connected with the establishment, exercise or defense of legal claims and/or to complete any transactions that you began prior to requesting a change or deletion. In addition, there may be certain data (including personal information) that we may not allow you to review for legal, security or other reasons.