Privacy Policy

Effective as of 1 August 2023


Northeast Medical Group, its affiliates and partners (including suppliers or service providers) (collectively “we”, “us” or “our”) are committed to protecting and respecting your personal data.


This Privacy Policy informs you of our policies and practices regarding the collection, use, disclosure and processing of your personal data. By using our Services, you accept and agree to our policies and practices described in this Privacy Policy. If you do not agree to any provision in this Privacy Policy, you must not access or use any of the Services.


Unless otherwise defined herein or the context otherwise requires, terms used in this Privacy Policy have the same meaning as given in our Terms of Use, which are accessible at https://nemg.com.sg/Privacy-Policy.


  1. Collection and use of your personal data

When you use our Services, we may request you to provide certain personal data, including but not limited to your name, identification number such as NRIC or FIN, residential address, email address, phone number and (where applicable) personally identifiable health information. If you choose not to provide such information, it may not be possible for you to access or use the Services, or for us to respond to your request or enquiry. The information that we request will be retained and used as described in this Privacy Policy.


The App uses third party services to enhance its utility and functionality, and these services may collect information which may be used to identify you. The data protection policies and practices of such services may differ from ours and you are encouraged to refer to the privacy policies of the third party service providers currently used by the App at these links:

  1. Google Play Services
  2. Facebook


If you authorise another person (including your parent or caregiver) to access and use the Services on your behalf, you consent and agree to that person providing and accessing your personal data on or through the Services. If you provide us with another person’s personal data (including your child or dependent), you warrant and undertake that (i) you are authorised to act on their behalf; (ii) they have consented to your disclosure of their personal data to us for the purposes set out in this Privacy Policy and (iii) you will access and use such data only for authorised purposes.


  1. Purposes

The Northeast Group of clinics are medical clinics licensed under Singapore laws. This means that when you voluntarily provide your personal data to us, you are deemed to consent to our collection, use or disclosure of your personal data for purposes related to your patient care.


Without prejudice to the foregoing, you acknowledge that your personal data may be collected, stored and used by us (and may be combined with other information) for the following purposes:

  1. Verifying your identity
  2. Setting up your account and providing the Services
  3. Performing administrative matters following your request
  4. Improving our Services and content
  5. Designing and creating new services and programs
  6. Notifying you of updates, sending you health-related information, or contacting you to market or promote the Services
  7. Legal, compliance and risk management
  8. Accounting and record-keeping
  9. Seeking feedback and comments on our business and operational matters
  10. Responding to your enquiries, requests and complaints
  11. Managing your relationship with us
  12. Creating anonymised or de-identified data for the purpose of analytics and market research


  1. Disclosure of your personal data

You consent to us disclosing your personal data to:

  1. members of our group in connection with the delivery of the Services, who will use it according to this Privacy Policy;
  2. third parties such as our agents, advisers, service providers and data intermediaries (collectively “Service Providers”) that we engage to provide, support or facilitate our Services, your patient care and related services and assist us in analyzing how our Services are used. Our Service Providers will use your personal data to perform the tasks assigned to them by us and are obligated not to disclose or use the information for any other purpose;
  3. relevant parties who may process your claims for your medical care such as your employer or insurer; and
  4. computer systems operated or managed by us or third parties to provide the Services and/or update your medical records.


  1. Log Data

When you use our Services, we collect and store data (through third-party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol (“IP”) address, device name, operating system version, the configuration of the App when utilizing our Services, the time and date of your use of the Services, and other statistics. This data may possibly lead to your identification, but we, and our data intermediaries, do not use it to do so unless permitted by law.


  1. Cookies

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device's internal memory. The App may use third party code and libraries that use cookies to collect information and improve its services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse cookies, you may not be able to use some portions of our Services.


  1. Security

We value your trust in providing us your personal data, and we strive to use all reasonable commercial measures to protect your information. However there are inherent risks associated with electronic information (including use of mobile or web-based applications and transmission of data by internet or otherwise) and you understand and agree that we cannot guarantee or accept liability relating to the security, integrity or freedom from error or infection of the Services, any electronic communications or information sent or received by you.


  1. Accuracy of your personal data

You agree that the personal data provided by you to us is current, accurate and complete in all respects. If there is any change to your personal data provided to us, you agree to inform us promptly.

  1. Data retention

We retain your personal data for as long as necessary for the fulfilment of the purposes for which it was collected or to which you have given your consent, except where otherwise provided for by applicable laws, regulations or medical guidelines.


  1. Right to withdraw consent, request access to, and correction of personal data

Subject to applicable laws you have the right to withdraw consent for, or request access to or correction of, your personal data that we hold about you.All such requests should be made by contacting DPO@nemg.com.sg.​ We may charge you an administrative fee where applicable but if we do so we will inform you beforehand. Please note that we are not required to provide, correct or otherwise alter any opinion data including professional or expert opinion. We may also be required and/or entitled to retain your personal data under applicable laws or regulations notwithstanding the withdrawal of your consent.


  1. Links to other sites

The Services may contain links to other sites from time to time. If you click on a third party link, you will be directed to that site. Note that these external sites are not operated by us and you must review the privacy policies of those sites before submitting any information to such sites. We have no control over and assume no responsibility or liability for the content, privacy policies, or practices of any third party sites or services.


  1. Changes to this Privacy Policy

We may update our Privacy Policy from time to time. Please review this page periodically for the most current Privacy Policy.


  1. Contact us

If you have any questions or suggestions about our Privacy Policy, or any requests regarding your personal data, please contact us at DPO@nemg.com.sg.


  1. Complaints procedure

We are committed to managing personal data in compliance with the Personal Data Protection Act (“PDPA”). This section sets out how we manage complaints on personal data protection.

Complaints related to PDPA can include:

  1. Collection, use or disclosure of personal data without valid consent
  2. Misuse of personal data
  3. Failure to correct personal data on request
  4. Failure to provide access to personal data on request
  5. Loss or exposure of personal data

 

We will ensure that rights afforded to individuals under the PDPA are protected. If you have a complaint, please contact DPO@nemg.com.sg. To help us process your complaint, please provide us with: 

  1. Your full name
  2. Your contact details
  3. Name of the officer and corporation that collected, used or disclosed the relevant personal data
  4. Date and timing of the incident
  5. Details of the incident
  6. Any relevant supporting documentation

 

Once we receive your complaint, we will provide you with a written notification of acknowledgement, together with an estimate of our response time (which will depend on the nature of the investigation and the availability of information provided to us to adequately carry out such investigation). We will use reasonable endeavours to respond as promptly as possible. If we cannot respond within the estimated time initially informed to you, we will contact you to advise you on the additional time needed.

Upon conclusion of our investigation, you will be notified in writing on the outcome. If you are not satisfied with the outcome of your appeal, you may take the matter to the Personal Data Protection Commission.