MelliPeppe
  • Home
  • About
  • Services
  • Contact

GDPR Compliance

Last Updated: January 2024

Melli Peppe is committed to ensuring compliance with the General Data Protection Regulation (GDPR) for all individuals in the European Economic Area (EEA) who interact with our services. This page outlines your rights and our obligations under GDPR.

1. Data Controller

Melli Peppe acts as the data controller for personal information collected through our website and services. This means we determine the purposes and means of processing your personal data.

Contact Details:
Melli Peppe
71 Robinson Road, #14-01 Tower One
Singapore 068895
Email: [email protected]

2. Legal Basis for Processing

We process personal data based on one or more of the following legal grounds:

  • Consent: You have given clear consent for us to process your personal data for a specific purpose.
  • Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate Interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party, provided your interests and fundamental rights do not override those interests.

3. Your Rights Under GDPR

As a data subject, you have the following rights:

Right to Access

You have the right to request a copy of the personal data we hold about you and information about how we process it.

Right to Rectification

You have the right to request that we correct any inaccurate or incomplete personal data.

Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data when:

  • The data is no longer necessary for the purpose it was collected
  • You withdraw consent and there is no other legal basis for processing
  • You object to processing and there are no overriding legitimate grounds
  • The data has been unlawfully processed

Right to Restriction of Processing

You have the right to request that we restrict processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests or direct marketing.

Rights Related to Automated Decision-Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

4. Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month. If your request is complex or we receive numerous requests, we may extend this period by up to two additional months, but we will inform you of any extension within the first month.

We may need to verify your identity before processing your request. There is no fee for most requests, but we may charge a reasonable fee if your request is clearly unfounded or excessive.

5. Data Protection Officer

For any questions or concerns regarding data protection or GDPR compliance, please contact our designated data protection contact:

Email: [email protected]
Subject Line: GDPR Inquiry

6. International Transfers

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with adequate data protection laws
  • Binding Corporate Rules for intra-group transfers

7. Data Breach Notification

In the event of a personal data breach that poses a high risk to your rights and freedoms, we will notify you without undue delay. We will also notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where required.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Our retention periods are based on:

  • The nature of the data and sensitivity
  • Legal and regulatory requirements
  • Business operational needs
  • Your instructions and consent

9. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. For EEA residents, this is typically the data protection authority in your country of residence.

10. Updates to This Notice

We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated "Last Updated" date.

MelliPeppe

Enterprise IT solutions designed for Singapore businesses.

Services

  • Cloud Infrastructure
  • Cybersecurity
  • Custom Development

Company

  • About Us
  • Contact
  • Privacy Policy

Legal

  • GDPR
  • Cookies Policy
  • Terms of Use

© 2024 Melli Peppe. All rights reserved.

We use cookies to enhance your browsing experience. Learn more