Privacy Policy

Version 4.0
This policy is applicable on Compport Private Limited
Sr. No
Type of Information
Document Data
1
Title
Privacy Notice
2
Date of Release
1 October 2018
3
Document No.
COMPPORT/ISMS/POL-DPN
4
Document Version No.
V 7.0
5
Document Owner
CISO
6
Document Author(s)
CISO
7
Document Reviewer/Approver
Founder & CEO
Document Update Summary
Version No.
Revision Date
Nature of Change
Date Approved
V 1.0
1 October 2018
NA
1 October 2018
V 2.0
1 January 2020
Annual Policy Review
30 January 2020
V 3.0
1 January 2021
Annual Policy Review
10 January 2021
V 4.0
20 Sept 2022
Annual Policy Review
24 Sept 2022
V 5.0
15 Sept 2023
Annual Policy
Review
29 Sept 2023
V 5.1
10 Jan 2023
CCPA review
24 January 2024
V 6.0


V 7.0
13 Dec 2024


14th November 2025

Annual Review andTransition from ISO27001: 2013 to ISO27001: 2022

Annual Policy Review
31st Dec 2024


21st November 2025

This communication may contain privileged and/or confidential information. It is intended solely for the use of theaddressee. If you are not the intended recipient, you are strictly prohibited from disclosing, copying, distributing or using any of this information. If you received this communication in error, please contact the sender immediately anddestroy the material in its entirety, whether electronic or hard copy.

1. Privacy Notice

This is the privacy notice of Compport. In this document, "we", "our", or "us" refer to CIS. Compport Private Limited, a Singapore Company, duly established under the law of Singapore, UENNumber 202209810K, being registered and licensed in Singapore, having its legal domicile at 160 RobinsonRoad, #24-09, Singapore 068914, and represented herein by its authorized signatory or associated andpartnership companies of Compport, hereinafter referred to as “CPL”

2. Introduction

  • This is a notice to inform you of our policy about all personal information that we record about you. It sets out what information we collect from you and the conditions under which we may processany information that we collect from you, or that you provide to us. It covers information that couldidentify you (“personal information”) and information that could not. In the context of the law andthis notice, “process” means collect, store, transfer, use or otherwise act on information.

  • We regret that if there are one or more points below with which you are not happy, you can raise your concern and revert back to us at mail Dpo@compport.com (Data Protection officer)

  • We take seriously the protection of your privacy and confidentiality. We understand that all visitors to our website are entitled to know that their personal data will not be used for any purpose unintended by them, and will not accidentally fall into the hands of a third party.

  • We undertake to preserve the confidentiality of all information you provide to us, and hope that you reciprocate.

  • For the purposes of this policy references have been made to the General Data Protection Regulation (“EU GDPR”), 2016 and, the California Consumer Privacy Act, 2018 (“CCPA”), the California Privacy Rights Act, 2020 (together with the CCPA, “CPRA”), and all other applicable privacy laws.

  • The law requires us to tell you about your rights and our obligations to you in regards to the processing and control of your personal data. We do this now, through this privacy note and you can also visit knowyourprivacyrights.org for more information.

  • Except as set out below, we do not share, or sell, or disclose to a third party, any information collected through our website.

    8. This policy has duly considered the industry best practices along with the Data Privacy Regulationslisted above.

Scope
1. This Notice applies to Visitors, Employees, and Independent Contractors (“individuals” or “you”) ofCompport.
2. For the purposes of this notice, a "visitor" of Compport refers to an individual who accessesCompport’s website with or without registering for an account, or who provides personal data toCompport through other means, such as filling out a contact form or subscribing to a newsletter.
3. For such individuals or businesses with respect to the processing of their data, Compport acts as a‘Data Controller’ as per GDPR and ‘Business’ as per CPRA.
4. For any Business to Business engagement where an establishment is using Compport’s services asan HRMS platform, Compport will act as the ‘Data Processor’ as per GDPR and ‘Service Provider’ asper CCPA/CPRA. This notice does not apply in that case.

5. This Notice applies to Personal Data/Information, as defined below, that we collect to provide youwith certain products and services (collectively, “Services”). This Notice does not apply toanonymized, de-identified or aggregate information if it is not Personal Information.i. Personal Data:

a. As per GDPR this is information relating to an identified or identifiable naturalperson which by itself or when clubbed with other information available can beused to identify a natural person.

b. As per CPRA, personal information is any information that can be used toidentify or is associated with a consumer or household. The Company as a partof its business operations routinely handles various categories of personal dataof its employees, potential and existing customers, job applicants, third partystaff etc. Such information is processed on a regular basis either directly by theCompany or through third parties.

Sensitive personal data/information:

a. As per the GDPR this is personal data revealing racial or ethnic origin, politicalopinions, religious or philosophical beliefs, trade union membership, geneticdata, biometric data for the purpose of uniquely identifying a natural person,data concerning health or data concerning a natural person’s sex life or sexualorientation.

b. According to the CPRA, sensitive personal information includes any privateinformation that divulges any of the following:

• Personal identification numbers, including social security, driver's license,passport, or state ID card numbers
• Account or debit or credit card numbers combined with passwords orcodes that would enable access to the accounts
• A consumer's exact geolocation
• A consumer's racial origin, religious beliefs, or union membership
• A consumer's mail, email, or text message content unless the informationwas intentionally sent to the business
• A consumer's genetic data, such as DNA samplesCompport does not collect or process any sensitive personal data/information as acontroller.

Compport does not collect or process any sensitive personal data/information as acontroller.

6. Compport as a Processor (Service Provider)
i. As per GDPR ‘processor’ means a natural or legal person, public authority, agency or otherbody which processes personal data on behalf of the controller.
ii. As per the CCPA a "service provider" is a legal entity organized for profit that processespersonal information on behalf of a business to which the business discloses a consumer'spersonal information for a business purpose.

7. Compport as a Controller (Business)
i. As per the GDPR, a ‘controller’ refers to the entity that determines the purposes andmeans of the processing of personal data.
ii. As per the CPRA, a ‘business’ refers to entity that collects personal information.

3. The bases on which we process information about you

  • Information we process because we have a contractual obligation with you

    • When you are receiving service from us or have received some services earlier from us, orotherwise agree to our terms and conditions, a contract is formed between you and us.

    • In order to carry out our obligations under that contract we must process the informationyou give us. Some of this information may be personal information.

    • To deliver services to our customers, we time to time use services of third-party serviceproviders (cloud service provider) for hosting of our application and database. We have anagreement with them to appropriately protect & secure customer’s information stored ortransmitted to them.

  • We may use it in order to:

    • Verify your identity for security purposes

    • Provide you with our services

    • Provide you with suggestions and advice on services and how to obtain the most from using our website

    • We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract.

    • Additionally, we may aggregate this information in a general way and use it to provide class information, for example to monitor our performance with respect to a particular service we provide. If we use it for this purpose, you as an individual will not be personally identifiable.

    • We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract.

  • Information we process with your consent

    • Through certain actions when otherwise there is no contractual relationship between us,such as when you browse our website which uses cookies, or you have filled out contact usforms or signed up for e-mail alerts ask us to provide you more information about ourbusiness, and our services, you provide your consent to us to process information that maybe personal information. These include, but are not limited to:
      a. Name
      b. Designation
      c. Business Email
      d. Business Phone Number
      e. Company
      f. Geography

    • Wherever possible, we aim to obtain your explicit consent to process this information, forexample, by asking you to agree to our use of cookies.

    • Sometimes you might give your consent implicitly, such as when you send us a message bye-mail to which you would reasonably expect us to reply.

    • Except where you have consented to our use of your information, we do not use your information in any way that would identify you personally.

    • We continue to process your information until you withdraw your consent.

    • You may withdraw your consent at any time by instructing us mail Dpo@compport.com(Email address for DPO). However, if you do so, you may not be able to use our website orour services as normal. Compport will remove the personal data on receipt of specific requestfrom you at mail Dpo@compport.com.

  • Information we process for the purposes of legitimate interests

    • We may process information on the basis there is a legitimate interest, either to you or tous, of doing so.

      1. Where we process your information on this basis, we do after having given careful consideration to:

      2. Whether the same objective could be achieved through other means

      3. Whether processing (or not processing) might cause you harm

      4. Whether you would expect us to process your data, and whether you would, in the round, consider it reasonable to do so

    • For example, we may process your data on this basis for the purposes of:

      1. Record-keeping for the proper and necessary administration of our services

      2. Responding to unsolicited communication from you to which we believe you would expect a response

      3. Protecting and asserting the legal rights of any party

      4. Insuring against or obtaining professional advice that is required to manage business risk

      5. Protecting your interests where we believe we have a duty to do so

  • Information we process because we have a legal obligation

    1. We are subject to the law like everyone else. Sometimes, we must process your information in order to comply with a statutory obligation.

    2. For example, we may be required to give information to legal authorities if they so request or if they have the proper authorization.

    3. This may include your personal information.


      6. Third Party Processors for Information

      i. To deliver services to our customer, we time to time use services of third-party serviceproviders such as cloud service provider for hosting of our application and database.
      ii. Your information may be stored, transferred or used by a third party for providing ourservices to you as normal. Please note that this Privacy Statement does not extend to any third party or any third-party sites linked to this web site. However, we have agreements withall such parties to appropriately protect & secure customer’s information stored ortransmitted to them.
      iii. Third parties may advertise on our website. In doing so, those parties, their agents or othercompanies working for them may use technology that automatically collects informationabout you when their advertisement is displayed on our website.
      iv. They may also use other technology such as cookies or JavaScript to personalise the contentof, and to measure the performance of their adverts.
      v. We do not have control over these technologies or the data that these parties obtain.Accordingly, this privacy notice does not cover the information practices of these thirdparties.
      vi. Although we do not disclose your personal information to any third party (except as set outin this notice), we sometimes receive data that is indirectly made up from your personalinformation from third parties whose services we use. However, we use authorized sourcesto collect the information still we have no control on type and in manner the data is collectedby third party

4. Specific uses of information you provide to us

  • Information provided on the understanding that it will be shared with a third party

    1. In posting personal information, it is up to you to satisfy yourself about the privacy level of every person who might use it.

    2. Once your information enters the public domain, we have no control over what any individual third party may do with it. We accept no responsibility for their actions at any time.

  • Sending a message to our support team

    1. When you contact us, whether by telephone, through our website or by e-mail, we collect the data you have given to us in order to reply with the information you need.

    2. We record your request and our reply in order to increase the efficiency of our business processes-

  • Safeguarding the personal data

    1. We keep personally identifiable information associated with your message, such as your name and email address so as to be able to track our communications with you to provide a high-quality service. Compport will use this personal data in accordance with the purpose set forth in this Privacy Statement and is committed to safeguarding the personal data collected.

    Raising Complains

    i. We attempt to moderate content on our website
    ii. When we receive a complaint, we record all the information you have given to us.
    iii. We use that information to resolve your complaint.
    iv. If you complain about any of the content on our website, we shall investigate your complaint.
    v. If we feel it is justified or if we believe the law requires us to do so, we shall take appropriateactions while we investigate.
    vi. If your complaint reasonably requires us to contact some other person, we may decide togive to that other person some of the information contained in your complaint. We do thisas infrequently as possible, but it is a matter for our sole discretion as to whether we do giveinformation, and if we do, what that information is.
    vii. We may also compile statistics showing information obtained from this source to assessthe level of service we provide, but not in a way that could identify you or any other person.

  • Affiliate and business partner

    1. This is information given to us by you in your capacity as an affiliate of us or as a business partner. It allows us to recognize visitors that you have referred to us, and to credit to you commission due for such referrals. It also includes information that allows us to transfer commission to you.

    2. The information is not used for any other purpose.

    3. We undertake to preserve the confidentiality of the information and of the terms of our relationship.

    4. We expect any affiliate or partner to agree to reciprocate this policy.

Personal identifiers from your browsing activity
i. Requests by your web browser to our servers for web pages and other content on ourwebsite are recorded by using tools/technology and help from third party service providerssuch as Google Analytics.
ii. We record information such as your geographical location, your Internet service provider,and your IP address. We also record information about the software you are using to browseour website, such as the type of computer or device and the screen resolution.
iii. We use this information in aggregate to assess the popularity of the webpages on our websiteand how we perform in providing content to you.
iv. If combined with other information we know about you from previous visits, the datapossibly could be used to identify you personally, even if you are not signed in to our website.

Our use of re-marketing

i. Re-marketing involves placing a cookie on your computer when you browse our website inorder to be able to serve to you an advert for our services when you visit some other website.
ii. We may use a third party to provide us with re-marketing services from time to time. If so,then if you have consented to our use of cookies, you may see advertisements for ourservices on other websites.
iii. Disclosure and sharing of your information.


International data transfers

i. Our website is hosted in United States of America.
ii. We may also use outsourced services in countries outside the European Union from time totime in other aspects of our business.
iii. We use services of third-party including cloud service provider for our software hosting suchas GCP with data centers in Virginia, Unites States of America.
iv. Accordingly, data obtained could be processed outside the European Union.
v. We use the following safeguards with respect to data transferred Internationally:

a. Compport, while headquartered in Singapore, operates as a global business and maytransfer, store, or process your personal data in a country outside your localjurisdiction, including countries outside the European Economic Area (“EEA”) andSingapore.

b. The transmission of data from the United States to other countries occurs only afterCompport ensures that the personal data crossing borders is safeguarded withsuitable measures. This involves the implementation of contractual or alternativeprecautions to guarantee that the recipient maintains a level of data protectionequivalent to the safeguards provided by the CCPA.


Cookie Policy

Cookies are small text files that are placed on your computer’s hard drive by your web browserwhen you visit any website. They allow information gathered on one web page to be stored until itis needed for use on another, allowing a website to provide you with a personalized experience andthe website owner with statistics about how you use the website so that it can be improved.Compport uses certain cookies on their website for the same purpose. For a detailed outlook onwhat cookies are enabled and their purpose, please refer to the Compport Cookie Policy.

Your Rights

Depending on where you are located, you may have certain legal rights over the personal data we hold about you,subject to local privacy laws:

1. Your Rights as per CCPA/CPRA if you are a resident of California:

i. Right to Know: You have the right to know explicitly what data is being collected on you aswell as for what exact purpose.
ii. Right to Delete: You have the right to request any personal information collected on you bybusinesses be deleted.
iii. Right to Opt-out of Sale of personal Information: You can choose to not allow for the sale ofyour personal information. (Compport does not sell any data collected or processed)
iv. Right to Rectification: You have the right to request changes and alterations to the personalinformation collected by the business that has since become outdated/incorrect/obsolete.
v. Right to Access Personal Information: You have the right to request access to specific piecesof personal information or categories of personal information collected about you includingthe sources from where it was collected, the business or commercial purpose for which itwas collected, sold or shared and the categories of third parties with whom the personalinformation was disclosed to.
vi.Right to Limit Use and Disclosure of Sensitive Personal Information: You have the right torestrict the use and disclosure of information that has been defined as sensitive personalinformation. 
vii. Right of No Retaliation Following Opt-Out or Exercise of Other Right: You have the right tohave the right to exercise any of their data subject rights without having to endure any formof retaliation or loss in their user experience.


Your Rights as per GDPR if you are an EEA Resident

i. Right to be Informed: You can have clear and concise information about what is done withyour personal data and why.
ii. Right to Access: You can access the personal data we hold about you. 
iii. Right to Data Portability: You may receive the personal data provided to a controller, in astructured, commonly used and machine-readable format and may transmit those data toanother controller. 
iv. Right of Correction: You can have incorrect personal data updated or deleted.  
v. Right of Erasure: You can have your personal data deleted.
vi. Right to Restrict Processing: You may object to the processing of your personal data carriedout based on our legitimate interests or for direct marketing purposes.
vii. Right to Object: You have the right to have a mechanism to opt out of marketingcommunications at any time. 
viii. Right Not to be subject to automated decision making: You cannot be subject to a decisionbased solely on automated processing, including profiling, which produces legal effects orotherwise significantly affects you

Handling Customer Data Subject Requests

i. You, or an authorized individual that we can verify is acting on your behalf, can exercise theapplicable rights by contacting us using the contact details at the bottom of this PrivacyStatement or by submitting your request through dpo@compport.com.
ii. If your personal data has been submitted by or on behalf of an employer that usesCompport’s services, please inquire with your employer directly for any Data Subject Rightsrelated queries..
iii. If the local regulations require certain categories of personal data to be retained for legal andregulatory purposes, a data subject’s right to erasure will not be fulfilled. In such situations,Compport shall provide the data subject with a notification explaining the reasons forunfulfillment of the request.
iv. For DSRs received by Compport as a Processor (Service Provider):
a. The handling of Customer Data Subject Requests (DSRs) as received by Compportfrom the companies that use Compport Services, is a critical aspect of theorganization's data protection policy. As per the California Consumer Privacy Act(CCPA) and the General Data Protection Regulation (GDPR), individuals have certaindata subject rights related to their personal information that Compport as aprocessor is committed to uphold.
b. For the data entered into Compport servers by a customer company, the customerwill act as the data controller and provide Compport with the necessary informationto identify the requester and the personal information requested. Compport willthen act as the data processor and process the request in accordance with thecustomer's instructions.
v. For DSRs received by Compport as a Controller:In accordance with the Data Subject Rights provided in the relevant regulations, theorganization will take the following steps to handle Data Subject Requests, which will varybased on the type of data involved:
a. Website and Marketing Data: The organization will handle DSRs for website andmarketing data that it collects, uses, and stores. Compport will use reasonable meansto verify the identity of the requester and process the request in accordance with theinstructions provided by the customer.
b. Documentation: The organization will maintain records of all DSRs and the actionstaken in response to each request. This documentation will be kept for a period oftime specified by the applicable regulations.

    8. Other matters

    • Use of site by children

      • We do not provide services for purchase by children, nor do we market to children.

      • If you are under 18, you may use our website only with consent from a parent or guardian

      • We collect data about all users of and visitors to these areas regardless of age, and we anticipate that some of those users and visitors will be children.

      • Such child users and visitors will inevitably visit other parts of the site and will be subject to whatever on-site marketing they find, wherever they visit.

    • Encryption of data sent between us

      • We use Secure Sockets Layer (SSL) certificates to verify our identity to your browser and to encrypt any data you give us.

      • Whenever information is transferred between us, you can check that it is done so using SSL by looking for a closed padlock symbol or other trust mark in your browser’s URL bar or toolbar.

    • Retention period for personal data

      • Except as otherwise mentioned in this privacy notice, we keep your personal information only for as long as required by us:

        • To provide you with the services you have requested;

        • To comply with other law, including for the period demanded by our tax authorities;

        • To support a claim or defense in court.

    • Compliance with the law

      • Our privacy policy has been compiled so as to comply with the law of every country or legaljurisdiction in which we aim to do business. If you think it fails to satisfy the law of yourjurisdiction, we should like to hear from you.

      • However, ultimately it is your choice as to whether you wish to use our website.

    • Review of this privacy policy

      • We may update this privacy notice from time to time as necessary. The terms that apply to you are those posted here on our website on the day you use our website. We advise you to print a copy for your records.

      • If you have any question regarding our privacy policy, please contact us at Dpo@compport.com

    Close Cookie Popup
    Cookie Settings
    By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage and assist in our marketing efforts.
    Accept All Cookies
    Cookie Settings
    Made by Flinch 77
    cookie
    Close Cookie Preference Manager
    Cookie Settings
    By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage and assist in our marketing efforts.
    Strictly Necessary (Always Active)
    Cookies required to enable basic website functionality.
    Accept All Cookies
    Save Settings
    Made by Flinch 77
    Oops! Something went wrong while submitting the form.
    © 2024 Compport. All rights reserved.