Confidentiality & Personal Data Protection Policy
Upholding Trust, Compliance, and Privacy in Every Interaction
At Communal Connections Pte. Ltd., we are committed to maintaining the highest standards of confidentiality, data integrity, and regulatory compliance in accordance with the Personal Data Protection Act 2012 (PDPA), Tripartite Alliance for Fair & Progressive Employment Practices (TAFEP) guidelines, and applicable Ministry of Manpower (MOM) regulations.
This policy outlines our principles in managing both business-sensitive and personal data entrusted to us in the course of our HR consultancy, recruitment, and outsourcing services.
Non-Disclosure & Confidentiality Policy
We recognise the highly sensitive nature of information exchanged during HR-related engagements. All commercially sensitive, client-specific, or employment-related information is treated as confidential and proprietary.
​
-
All information disclosed by clients, job candidates, or vendors—whether verbal, written, or digital—is protected under Mutual Non-Disclosure Agreements (NDAs), where appropriate.
-
Such data includes but is not limited to: salary structures, employment contracts, HR policies, applicant credentials, operational procedures, and proprietary business insights.
-
Disclosure of any such information to third parties is strictly prohibited without explicit, written consent from the rightful owner.
-
Our employees, consultants, and subcontractors are contractually bound by strict confidentiality clauses, in compliance with Singapore’s employment and commercial laws.
-
We are fully committed to fair and responsible employment practices and ensure that our internal and external engagements also align with TAFEP’s fair employment guidelines, including the responsible handling of interview data, assessment outcomes, and candidate references.
Personal Data Protection Policy (PDPA Compliance)
For any concerns, data access requests, or to report a potential breach, please contact:
Data Protection Officer
We manage personal data in full compliance with the PDPA (No. 26 of 2012), guided by the following legal principles:
-
Consent: Personal data is collected only with the individual’s knowledge and expressed or deemed consent, and solely for legitimate, specified purposes.
-
Purpose Limitation: Data collected is strictly limited to HR-related functions such as recruitment, placement, payroll advisory, and employment compliance.
-
Notification: Individuals are notified of the purpose and scope of data usage at the point of collection and through our engagement process.
-
Access and Correction Rights: Individuals may request access to, or correction of, their personal data at any time, by writing to our Data Protection Officer (DPO).
-
Protection: We implement robust technical, administrative, and physical security measures to prevent unauthorised access, alteration, or misuse of personal data.
-
Retention and Disposal: Personal data is retained only as long as necessary to fulfil its intended purpose or as required by applicable legal obligations (e.g., MOM recordkeeping requirements). Data that is no longer required is securely deleted or anonymised.
-
We also ensure that all service vendors and partners engaged in data processing on our behalf comply with these same standards.
