We understand the value and importance of your personal information. Our job is to protect and secure that information for you, and we take that very seriously.
Last update 1 November, 2021
Sherpa Technology Pte Ltd of 101B Telok Ayer Street #03-02 Singapore 068574 a limited liability company registered and incorporated under the laws of Singapore, is the controller of any personal data that we collect about you.
This statement is issued on behalf of Sherpa Technology Pte Ltd and all entities forming a part of the Sherpa Group whether as subsidiaries, affiliates or parents. When we refer to “we”, “us”, “our” or “Sherpa” in this Statement, we are referring to the relevant entity in the Sherpa Group responsible for processing your data. We will let you know which entity will be the controller for your data when you obtain any of our services.
“Protection Score” means any protection score we provide to you via the Site.
“Site” means www.sherpascore.com and any mobile applications or similar devices, channels or applications operated by or on behalf of us.
If you need to get in contact with us, please email us at email@example.com.
Purpose of this policy
The purpose of this policy is to:
We process your personal data in an appropriate and lawful manner, in accordance with applicable data protection regulations and the General Data Protection Regulation EU 2016/679 (“GDPR”) which is in force as of 25 May 2018.
This statement should be read in conjunction with any other Privacy Notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.
What data we collect and how we collect it
We may collect personal information by you:
That information may include details such as:
When you visit the Site, we may also collect information including:
Where we are collecting or processing further information we may provide you with separate Privacy Notices informing you about how and why we are using your personal data.
Personal information about other people
Sensitive personal data
Some of the information that we may ask you to provide to us could be a special category of personal data, as deﬁned in the GDPR, namely personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
We use any personal data about you or others for speciﬁc stated purposes including to comply with applicable laws and regulations and to provide you with services described on the Site. To the extent permitted, processing of that data will be based on applicable data protection legislation. Otherwise, we will request your explicit consent to do so.
How will we use your personal data?
To ensure that we provide the best experience for you that we are able to, we may use your information to:
We will also use your data for the following purposes:
We may also use your information in anonymised form, meaning it is not possible to identify who you are, to analyse the use of the Site, and consumer attitudes to our products, services and marketing.
We will never sell your personal information to third parties.
Legal basis for processing
We shall only process your personal data to the extent necessary for us to be able to provide the services we offer and / or for the purposes indicated in this statement.
We may also process your personal data on the basis of any legitimate interest or in order to comply with any legal obligations at law. This may include the exercise of defence of legal claims or in order to comply with an order of any court, tribunal or authority or police authority.
Generally, we do not rely on consent as a legal basis for processing your personal data other than in relation to sending marketing communications to you. For further information on how we provide you with choices around the use of your personal data for marketing and advertisement purposes, please see below.
Sharing of Data
We may disclose your personal data to any of our international offices / companies that form part of Sherpa, and which may act as joint data controllers or data processors to the company which will be the data controller for your data when you obtain our services and / or may provide administration, controls, information or reporting services. All Sherpa companies respect the security of your personal data and treat it in accordance with the applicable law (including the GDPR) and apply the security measures and safeguards described below.
We may need to share personal data with certain authorities and regulatory bodies.
We may also be under a duty to disclose or share your personal data to comply with any legal obligation, judgment or order from a court, tribunal or authority. We may also disclose your data to enforce any licence agreement we may enter with you, or to protect our rights, property or safety, or that of other users of the Site. This includes exchanging information with other companies and organizations for the purposes of fraud detection and prevention.
Overseas transfer of data
To ensure we can provide services to you, we may from time to time need to share your information with entities outside the European Economic Area. If we do, we will ensure that it is subject to the provisions of the GDPR and applicable data protection legislation, it is kept securely and is only used for the purposes for which it was provided. We will continue to comply with our obligation to adequately protect and secure your personal information.
For this purpose, we will transfer your personal data in accordance with the standard contractual clauses (European Commission: Model contracts for the transfer of personal data to third countries) to ensure it is transferred securely and in compliance with data protection legislation, including the GDPR.
We will ensure that appropriate security measures are taken against unlawful or unauthorized processing of personal data, and against the accidental loss of, or damage to, personal data.
The transfer of information between the Site and your device is protected with TLS1.2 end-to-end encryption protocol or newer technologies as they become available provided they are supported by your browser. All personal data is stored in a secure server environment that uses a firewall and other advanced technology to protect against interference or unauthorized access. Usernames and passwords are issued to persons authorized to access the personal data who are bound by confidentiality not to disclose any data.
No method of transmission of data is one hundred percent (100%) secure and absolute security cannot be guaranteed.
Storage of Your Data
We shall only store your data as long as is strictly necessary for the purposes for which it was collected e.g. to provide you our services or for the purposes of satisfying any legal, accounting or reporting requirements. In any case, retention of data shall not exceed 10 years from the date of termination or completion of the services. This period of retention enables us to use the data for defending potential legal claims, taking into account the applicable limitation periods under relevant laws, as well as, if applicable, to comply with anti-money laundering / know your client laws and regulations, anti-bribery / corruption laws and regulations, insurance laws, accounting and tax laws, applicable to certain jurisdictions in which we operate.
To the extent possible, we anonymize the data we hold about you when it is no longer necessary to identify you from that data.
You are entitled to exercise the following rights under the GDPR:
We may introduce you to other advisers or product providers via the Site, or you may be able to access other websites via links on the Site.
What Are Cookies
You can also find further information on cookies and local storage at the following websites.
Many browsers allow you to browse privately whereby cookies are automatically erased after you visit a site.
We also use analytics cookies. These cookies track information about how the Site is being used so that we can make improvements and report our performance. We might also use analytics cookies to test new ads, pages or features to see how users react to them. Analytics cookies may either be first party cookies or third party cookies.
Third Party Cookies
Changes To This Policy
By visiting the Site and providing your information to us, you consent to its use on the terms set out above.