Privacy Policy

24.5.2021

Personal data protection is a matter of trust and your trust is important to us and we respect your sphere of privacy. Therefore, the protection and legally compliant collection, processing and use of your personal data is an important concern for us. To ensure your safety and wellbeing when visiting our websites and using our services, we strictly observe all legal regulations concerning data protection when collecting, processing and using your personal information. Furthermore, we would now like to inform you about our data collection and data use.

Index

  1. Responsible body
  2. Collection, processing, and use of personal data
  3. Disclosure of personal data to third parties
  4. Data security
  5. Data storage and deletion periods
  6. Rights of data subjects
  7. Use of social plugins
  8. Changes to this Privacy Statement
  9. Contact 

1. Responsible body

This Privacy Statement explains how Randstad Pte. Limited (UEN: 199304055W), trading as Randstad Sourceright (UEN: 53215394D) (RSR) collects personal data and how we maintain, use and disclose that information on this customer-branded RSR web-based software platform (Customer Talent Management System (TMS)) for our client, Johnson & Johnson Services Pte Ltd (J&J). It also provides details about your privacy rights, along with our general rights and obligations in relation to the personal data we keep on record. Our client, J&J has engaged RSR to act as managed service provider (MSP) to coordinate and administer J&J’s use of flexible labour.

There are regular open contract opportunities for roles at RSR which can be viewed on the Customer TMS platform. When you enter this Customer TMS, you will have the opportunity to browse the Contract Opportunities that are made available to you. You will then be able to apply for positions for which you have both interest and the required qualifications. RSR will perform vetting and allocation of all applications, and may decide to pass your application along to J&J.

2. Collection, processing, and use of personal data

2.1 Personal data and use

“Personal Data” means data, whether true or not, about an individual who can be identified: (a) from that data; or (b) from that data and other information to which we have or are likely to have access. The following are some examples of personal data: name, address, telephone number, and e-mail address.

RSR collects the following categories of data (individuals may also fall into several of these categories) as an organisation under the Personal Data Protection Act 2012 (PDPA).

Registered Users

If you are a candidate who registers on this J&J TMS as a user (Registered User) to browse contract opportunities that are available & apply for positions for which you are interested in, RSR will collect your personal data as reasonably necessary for us to determine your suitability for work for the position you applied for.

Personal data that RSR may collect about you may include: name, age, gender, email address, telephone number, address, emergency contact, photo, tax numbers, registration number, nationality, residence status, work permit, education, skills, CV, career, payment information (e.g. credit card number, PayPal ID), billing address, other contact information (e.g. Skype ID, LinkedIn ID), user name, password, communication data via the Platform and/or other data provided to us by the Registered User itself or by Service Recipients. The personal data provided for the creation and

completion of the user account and the public profile on J&J TMS is based on the concluded user contract and is used exclusively for contract processing. The user himself or herself decides to what extent he wants to provide data for publication. Excluded are the username, password, name, address, email address, telephone number, tax number and payment information, which are absolutely necessary for contract processing (e.g. making contact, invoicing) and therefore must be provided.

If separate consent has been given, the email address provided will also be used to inform the user by email about RSR or current promotions or participation in surveys for market research purposes or for quality assurance purposes.

Clients or Service Recipients

If you are a Client or a Service Recipient,   RSR collects personal data that is reasonably necessary for us to provide our solutions to you for your business needs.

Information that RSR may collect about you may include: name, gender, email address, telephone number, address, tax numbers, registration number, payment information (e.g. credit card number, PayPal ID), billing address, other contact information (e.g. Skype ID, LinkedIn ID, Fieldglass-ID), user name, password, data of communication via the platform and/or other data provided to us by the Service Recipient itself or by Service Providers as part of the execution of the contract (in particular evaluations).

The information of personal data for the creation and completion of the user account and the public contract opportunities on J&J TMS is based on the concluded user contract and is used exclusively for contract processing. The user decides the extent of the data they provide for publication. Excluded are the username, password, name, address, email address, telephone number, tax number, and payment information, which are absolutely necessary for contract processing (e.g. making contact, invoicing) and must be provided.

If separate consent has been given, the email address provided will also be used to inform the user by email about RSR or current promotions or participation in surveys for market research purposes or for quality assurance purposes.

Website Visitors

IP address of the requesting computer, date and time of access, name and URL of the file accessed, the website from which accessed, computer operating system, browser used and other technical data, name of the Internet access provider, language settings, and geographical origin.

These data are collected and processed for the purpose of enabling the use of the website (connection establishment), permanently guaranteeing system security and stability, enabling technical administration of the network infrastructure and optimization of the Internet offering (e.g. understanding user needs, personalization) and for internal statistical purposes. The IP address is only evaluated for attacks on RSRs network infrastructure and for statistical purposes.

3. Disclosure of personal data to third parties

Personal data will be passed on to third parties under the following conditions:

Affiliated companies of RSR

Data is passed on to companies affiliated with RSR within the Randstad Organisation in accordance with Randstad’s worldwide brand and marketing strategy and the End User Agreement of J&J TMS.

Disclosure to the Client

RSR may disclose your personal data to the Client (Johnson & Johnson Services Pte Ltd).

Collection companies, Credit agencies

Personal data will only be passed on to debt collection agencies or law firms if required by law, for credit or address checks, for the transmission of information to credit agencies (e.g. in the event of termination due to default in payment) and to the extent necessary to enforce our rights, in particular to enforce claims; arising from the contractual relationship.

Website visitors

You can visit our web site and browse without the need to disclose any personal data. When you visit the this web site, we record anonymous information such as the date and time of your visit, the server/IP address, which site was visited and the information viewed and/or downloaded. The information gathered cannot be directly matched to an individual and is only used for administration and statistical purposes such as error logging. The information cannot tell us anything about you; it can only tell us about how you used our web site. This information can help us determine what areas of our web site are most beneficial to our visitors. No attempt is made by RSR to identify users or their browsing activities.

As with most websites, when you visit our website, we may record anonymous information such as IP address (where not used to identify a specific individual), time, date, referring URL, pages accessed and documents downloaded, type of browser and operating system.

We also use “cookies” and other tracking tools. A cookie is a small file that stays on your computer until, depending on whether it is a sessional or persistent cookie, you turn your computer off or it expires. Cookies may collect and store your personal data. You may adjust your internet browser to disable cookies. If cookies are disabled you may still use our website, but may be limited in the use of some of the features. For more information about the cookies on our website, please check the cookie statement at www.randstad.com/cookies.

IT service provider, Web analysis tools, Storage services

RSR also uses third parties for IT services, web analytics, storage services, database and website management outside of Singapore. The respective service providers may have access to personal data, as far as this is necessary for the provision of the respective service to RSR.

Data is only passed on to third parties outside Singapore if this is permitted under data protection law and if measures to ensure an appropriate level of protection as required by the Personal Data Protection Act 2012 (PDPA) are in place.

Your personal data may be disclosed to the following IT service providers:

VMS Provider
SAP America, Inc., located in US

TMS Provider
Team2Venture GmbH, located in Germany

Disclosure required and/or authorised by law

RSR may also disclose your personal data (within and outside Singapore) in good faith, (i) to comply with requirements of the government, law enforcement agency, any authorities to whom RSR is subject to or any orders of court; (ii) as is necessary or relevant in relation to any legal process; or (iii) if required or authorised by law.

4. Data security

We use appropriate technical and organizational security measures to protect your personal data stored by us against manipulation, partial or complete loss and against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

5. Data storage and deletion periods

Deletion periods for data of registered users

Data of registered users, service recipients or clients will be stored for the duration of the existing contract with RSR (e.g. existing user account, supplier contract, etc.). After termination of the contract, the data will be deleted or made irretrievably anonymous within three months. Data from projects and submitted ratings on the website that are visible in the profiles of other users are anonymized.

This does not apply to data collected from website visitors. See deletion deadlines for website visitor data.

Data which is subject to retention obligations under tax or commercial law (invoices, commercial letters, etc.) are stored for the respective legal retention period. The legal retention period is currently 7 years for tax purposes and 7 years for commercial purposes.

Deletion periods for website visitor data

Data of website visitors will be made irretrievably anonymous after three months.

6. Rights of data subjects

Persons whose personal data are stored at J&J TMS have the following rights:

Right not to provide personal data

You can refuse to provide us with your personal data. However if you do not give us this information, we may not be able to provide our services to you. For example, if you are a candidate we may be limited in our ability to assess your application for a particular position you have applied for.

Right to information about stored personal data

Upon request, RSR will provide information on data processing and its purpose at appropriate intervals.

Right to make an access or correction request

If you wish to make (a) an access request for access to a copy of the personal data which we hold about you or information about the ways in which we use or disclose your personal data, or (b) a correction request to correct or update any of your personal data which we hold about you, you may submit your request in writing or via email to our Data Protection Officer at the contact details provided below.

Please note that a reasonable fee may be charged for an access request. If so, we will inform you of the fee before processing your request.

We will respond to your request as soon as reasonably possible. If we are unable to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any personal data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA.

Right to withdraw consent

You are entitled to withdraw your consent for the collection, use and disclosure of your personal data by giving RSR reasonable notice by sending a written request to our Data Protection Officer at the contact details provided below.

Upon receipt of your written request to withdraw your consent, we may require reasonable time (depending on the complexity of the request and its impact on our relationship with you) for your request to be processed and for us to notify you of the implications of such withdrawal.

We may also ask you to verify your identity and for more information about your request.

In general (and provided you have given us sufficient information for us to process your request), we shall seek to respond/process your request within ten (10) business days of receiving it.

Please note that withdrawing your consent does not affect our right to continue to collect, use and disclose personal data where such collection, use and disclose without consent is required/permitted under applicable laws.

In order to assert the rights, a message must be sent to RSR under the contact details stated under item 9. In order to prevent unauthorized persons from taking advantage of this, RSR can demand that the person invoking a right proves his identity.

7. Use of social plugins

Our website uses social plugins ("plugins") of the social network facebook.com, which is operated by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). The plugins can be recognized by one of the Facebook logos or they are marked with the addition "Facebook Social Plugin".

When you visit a website on our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted directly from Facebook to your browser and integrated into the website. We, therefore, have no influence on the extent of the data that Facebook collects with the help of this plugin and therefore inform you according to our level of knowledge:

By integrating the plugins, Facebook receives the information that you have called up the corresponding page of our website. If you are logged in to Facebook, Facebook can assign your visit to your Facebook account. If you interact with the plugins, for example by pressing the like button or making a comment, the corresponding information is transmitted directly from your browser to Facebook and stored there. If you are not a member of Facebook, it is still possible for Facebook to obtain and store your IP address.

For the purpose and scope of data collection and the further processing and use of the data by Facebook as well as your rights and setting options for the protection of your privacy, please refer to the Facebook data protection information: www.facebook.com/policy.php.

If you are a Facebook member and do not want Facebook to collect data about you via our website and link it to your membership data stored on Facebook, you must log out of Facebook before visiting our website.

8. Changes to this Privacy Statement

Our Privacy Statement is reviewed and updated regularly, and the updated details will always be available on our website. Please check our website regularly for the latest version.

9. Contact

If you wish to contact us about any concerns or queries in relation to your personal data or this Privacy Statement, please contact:

Randstad Singapore Data Privacy Officer email: privacy@randstad.com.sg

Address: Randstad Pte Ltd, 50 Raffles Place, #17-02 Singapore Land Tower, Singapore, 048623