GDPR Compliance
Last updated: May 2026
Assic Riele is committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines our approach to GDPR compliance and your rights as a data subject.
Our Commitment
Although based in Singapore, we recognise that some of our clients and website visitors may be located in the European Economic Area (EEA). We are committed to ensuring that any personal data we process from EEA residents is handled in compliance with GDPR requirements.
Legal Basis for Processing
We process personal data under the following legal bases:
- Consent: Where you have given clear consent for us to process your personal data for a specific purpose
- Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
- Legitimate Interests: Where processing is necessary for our legitimate interests and does not override your fundamental rights
- Legal Obligation: Where processing is necessary for compliance with a legal obligation
Your Rights Under GDPR
If you are located in the EEA, you have the following rights:
- Right to Access: You can request a copy of the personal data we hold about you
- Right to Rectification: You can request correction of inaccurate or incomplete personal data
- Right to Erasure: You can request deletion of your personal data in certain circumstances
- Right to Restrict Processing: You can request that we limit how we use your data
- Right to Data Portability: You can request to receive your data in a structured, commonly used format
- Right to Object: You can object to processing based on legitimate interests or for direct marketing
- Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time
Data Transfers
As a Singapore-based company, some of your data may be transferred to and stored in Singapore. We ensure that any such transfers are conducted in compliance with GDPR requirements, using appropriate safeguards such as Standard Contractual Clauses where necessary.
Data Protection Measures
We implement appropriate technical and organisational measures to protect personal data, including:
- Encryption of data in transit and at rest
- Access controls and authentication mechanisms
- Regular security assessments and audits
- Employee training on data protection
- Incident response procedures
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. Our retention periods are determined based on the nature of the data, the purposes for processing, and applicable legal requirements.
Third-Party Processors
We may engage third-party service providers to process personal data on our behalf. We ensure that these processors provide sufficient guarantees regarding their data protection measures and are bound by appropriate contractual obligations.
Exercising Your Rights
To exercise any of your rights under GDPR, please contact us using the details below. We will respond to your request within one month. If your request is complex, we may extend this period by up to two additional months, in which case we will inform you.
Complaints
If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority in your country of residence.
Contact Information
For any questions or requests regarding GDPR compliance, please contact us at:
Assic Riele
71 Robinson Road, #14-01 Tower One
Singapore 068895
Email: [email protected]