Privacy Policy

Privacy Policy for T3 Trash To Treasure (t3r.sg)

T3 Trash To Treasure, operating secure shredding and hardware destruction services in Singapore, commits to protecting personal data under the Personal Data Protection Act (PDPA). This policy outlines data collection, use, disclosure, and security practices for clients using https://t3r.sg/ or our services. Compliance with PDPA obligations ensures transparency and trust.

Data Collection

T3 collects personal data voluntarily provided during service inquiries, quotes, scheduling, or website interactions. This includes names, contact details (phone, email, address), service needs (e.g., shredding volume, locations), and billing information. Data is gathered to deliver shredding and destruction services while minimizing collection to essential purposes only.

Use and Purpose

Personal data supports service provision, such as scheduling pickups, issuing invoices, and sending updates. It also enables compliance with certifications like ISO 27001:2022 for information security and ISO 14001:2015 for environmental management. Use aligns strictly with notified purposes at collection, avoiding unrelated activities.

T3 does not sell personal data. Sharing occurs only with contracted service providers (e.g., logistics for secure transport) bound by confidentiality agreements, or as required by Singapore law. Client consent is obtained for any other disclosures, upholding PDPA purpose limitation.

Security and Data Protection

Robust safeguards protect data during collection, storage, and destruction, leveraging bizSAFE Level 3 compliance and ISO standards. Shredding processes ensure irreversible destruction of client-submitted documents, with certificates of destruction provided. Electronic data uses encryption and access controls; no absolute security is guaranteed due to transmission risks.

Retention and Destruction

Data retains only as needed for services or legal requirements, then securely destroyed per company expertise. Clients may request access, correction, or deletion, subject to obligations. Upon request, data undergoes certified shredding or overwriting compliant with industry standards.

Your Rights and Contact

Under PDPA, individuals can withdraw consent, access data, or seek corrections by contacting the Data Protection Officer. For inquiries or complaints, email [insert DPO email] or call [insert DPO phone]; details available on t3r.sg. Data breach notifications follow PDPC guidelines if risks arise.