DATA PROCESSING ADDENDUM

This Data Processing Addendum (“Addendum”) is made as of 19th August 2024, by and between:
Controller: All Customer of Times Software Pte Ltd
Processor: Times Software Pte Ltd, No.10 Jalan Besar, #14-01, Sim Lim Tower. Singapore 208787

 

Background:

  1. The Controller and Processor have entered into an agreement (the “Agreement”) for the provision of corporate website publishing services (“Services”) that involve the processing of personal data.
  2. This Addendum is intended to ensure the Parties’ compliance with applicable data protection laws and the specific requirements related to the processing of personal data in the context of corporate website publishing.

 

  1. DEFINITIONS
    1.1. “Personal Data” means any information relating to an identified or identifiable natural person, as defined under applicable data protection laws.
    1.2. “Processing” means any operation or set of operations performed on Personal Data, whether or not by automated means, as defined under applicable data protection laws.
    1.3. “Data Subject” means an individual whose Personal Data is being processed.
    1.4. “Website Publishing” refers to the creation, editing, management, and hosting of digital content on the Controller’s corporate website.
  2. SCOPE OF PROCESSING
    2.1. Purpose: Times Software Pte Ltd shall process Personal Data solely for the purpose of providing website publishing Services as outlined in the Agreement.
    2.2. Instructions: Times Software Pte Ltd shall process Personal Data only in accordance with the documented instructions of the Controller, unless required by law.
    2.3. Nature of Processing: The nature of the processing activities will include data migration service, cloud hosting, project implementation, helpdesk & support and payroll outsourcing services.
    2.4. Duration: The duration of the processing shall be for the term of the Agreement or until all Personal Data is returned or deleted in accordance with Section 7 of this Addendum.
  3. COMPLIANCE WITH DATA PROTECTION LAWS
    3.1. Lawful Basis: Times Software Pte Ltd shall ensure that all processing of Personal Data is based on a lawful basis as required by applicable data protection laws, including but not limited to the Personal Data Protection Act (PDPA) as enforced by the Personal Data Protection Commission (PDPC) Singapore.
    3.2. Transparency: Times Software Pte Ltd shall assist the Controller in ensuring that Data Subjects are provided with clear and transparent information about how their Personal Data will be used in relation to the corporate website.
    3.3. Cookies and Tracking Technologies: Times Software Pte Ltd shall implement and maintain appropriate controls over the use of cookies and other tracking technologies on the corporate website in compliance with applicable laws and regulations.
    3.4. User Consent: Where required by law, Times Software Pte Ltd shall ensure that the necessary consents are obtained from Data Subjects before processing their Personal Data via the corporate website.
  4. DATA SUBJECT RIGHTS
    4.1. Assistance: Times Software Pte Ltd shall assist the Controller in responding to requests from Data Subjects to exercise their rights under applicable data protection laws, including the rights of access, correction, erasure, data portability, and objection to processing.
  5. SUB-PROCESSING
    5.1. Approval: Times Software Pte Ltd shall not engage any sub-processors without the prior written consent of the Controller.
    5.2. Liability: Times Software Pte Ltd shall remain fully liable for the performance of its sub-processors and ensure that sub-processors comply with the same data protection obligations as set out in this Addendum.
  6. DATA BREACH NOTIFICATION
    6.1. Notification: Times Software Pte Ltd shall notify the Controller without undue delay and, where feasible, not later than 48 hours after becoming aware of a data breach affecting Personal Data.
    6.2. Content: The notification shall include sufficient information to allow the Controller to meet any obligations to report or inform Data Subjects of the breach.
  7. RETURN OR DELETION OF PERSONAL DATA
    7.1. Obligation: Upon termination of the Agreement or upon the Controller’s request, Times Software Pte Ltd shall return all Personal Data to the Controller and delete all existing copies, unless applicable law requires storage of the Personal Data.
    7.2. Certification: Times Software Pte Ltd shall provide written certification to the Controller that it has complied with the obligations set forth in this section.
  8. SECURITY MEASURES
    8.1. Information Security: Times Software Pte Ltd shall implement appropriate technical and organizational measures to protect Personal Data against unauthorized or unlawful processing, accidental loss, destruction, or damage.
    8.2. Access Control: Times Software Pte Ltd shall ensure that access to Personal Data is limited to authorized personnel involved in the provision of website publishing Services.
  9. LIABILITY AND INDEMNIFICATION
    9.1. Indemnity: Times Software Pte Ltd shall indemnify and hold harmless the Controller against all claims, damages, losses, and expenses arising out of or in connection with any breach by Times Software Pte Ltd of this Addendum.
  10. GOVERNING LAW
    10.1. Law: This Addendum shall be governed by and construed in accordance with the laws of Singapore.
  11. MISCELLANEOUS
    11.1. Severability: If any provision of this Addendum is found to be invalid or unenforceable, the remaining provisions shall remain in full force and effect.
    11.2. Amendments: This Addendum may only be amended in writing and agreed upon by both the Controller and Times Software Pte Ltd.
  12. DATA PROTECTION OFFICER
    12.1. You may contact our Data Protection Officer if you have any enquiries or feedback on our personal data protection policies and procedures, or if you wish to make any request, in the following manner:
    Contact No.      : 62951998
    Email Address  : dpo@timesoftsg.com.sg

EFFECT OF ADDENDUM AND CHANGES TO ADDENDUM

  1. This Addendum applies in conjunction with any other notices, contractual clauses and consent clauses that apply in relation to the collection, use and disclosure of your personal data by us.
  2. We may revise this Addendum from time to time without any prior notice. You may determine if any such revision has taken place by referring to the date on which this Addendum was last updated. Your continued use of our services constitutes your acknowledgement and acceptance of such changes.

Effective date : 26 Aug 2024
Last updated : 26 Aug 2024