Effective Skincare | IDS Skincare - Shop effective skincare products

COLLECTION OF PERSONAL DATA

JYX collects your personal data to provide and improve our services, such as processing transactions, responding to enquiries, and conducting research and analytics, including market research.

We may request information from you through our website, in-store, or other communication channels that may personally identify you (“Personal Data”). This includes, but is not limited to:

– Contact information such as your telephone number, mailing address, email address, and fax number
– Payment and billing details, including the cardholder’s name, card number, billing address, and expiry date
– Responses to market surveys and participation in contests conducted by us or on our behalf
– CCTV images captured for safety and security purposes

Please note that all CCTV footage is securely stored and access is strictly restricted to authorised personnel.

Certain Personal Data, particularly your personal and contact details, are required to deliver specific services. Failure to provide such information may result in our inability to fulfil your request or provide the service in full.

We may use the Personal Data you provide for one or more of the following purposes:

– To enable your use of our online services and other communication channels
– To fulfil orders and provide products or services requested by you, including sending service notifications and SMS alerts
– To manage marketing, promotional, and customer relationship activities, such as sending updates on offers and promotions related to our products and services, and conducting market research
– To verify your identity and process transactions
– To contact you in response to your enquiries or requests
– To administer contests and giveaways conducted by us or on our behalf
– To comply with any applicable laws, regulations, court orders, or requests from authorities, whether in Singapore or overseas
– To facilitate secure payment processing for products and services provided by us or our affiliates, including verification of payment details with authorised third parties
– To enhance transaction and data security by conducting fraud prevention and verification procedures against databases of known fraudulent activity maintained by us or authorised third parties

Except as provided above, we will not use or share your Personal Data for purposes unrelated to those stated without your prior consent.

We will always obtain your explicit consent before collecting your Personal Data and will not collect more information than is necessary for the stated purpose. If the purpose for which we collect, use, or disclose your Personal Data changes, we will seek your renewed consent.

CONTACTING US

If you have any queries, feedback, or complaints regarding this Notice or the way we manage your personal data, please contact our Data Protection Officer (DPO) at dpo@idsskincare.com.

When reaching out, kindly include the following details:
• Your full name and contact information
• A brief description of your query or complaint

We take all feedback and data-related matters seriously and will address your enquiry confidentially and within a reasonable timeframe.

DISCLOSURE OF COLLECTED PERSONAL DATA

JYX may disclose or transfer your Personal Data to, and jointly use it with, our subsidiaries, affiliated companies, business partners, service providers, and other authorised parties, whether within or outside your jurisdiction, for purposes related to the provision of our products and services or those requested by you.

Such disclosures may also be made to facilitate communications, share relevant updates, and support the purposes outlined under Section 3, “Purposes for which the Personal Data is Collected and Used.”

The parties with whom we may share your Personal Data include, but are not limited to:

– Agents, contractors, or third-party service providers who perform administrative, marketing, research, distribution, data processing, telecommunications, computer, or payment-related services on our behalf
– Business partners such as loyalty programme operators and companies involved in providing customer support or fulfilling customer requests
– Credit reference agencies
– Credit, debit, or charge card companies and/or banks
– Governmental or regulatory authorities, whether local or international
– Medical professionals, insurers, and healthcare institutions (where relevant)

In certain circumstances, we may transfer Personal Data as part of a merger, acquisition, sale, or corporate restructuring, including insolvency or bankruptcy proceedings, involving all or part of JYX.

Please note that Personal Data collected by JYX may be transferred to jurisdictions where the level of data protection may differ from that in your own jurisdictions. By submitting your Personal Data to JYX or using any of our websites, you acknowledge and consent to such transfers.

WITHDRAWAL OF CONSENT

If you wish to withdraw your consent for the collection, use, or disclosure of your Personal Data, please provide us with reasonable advance notice.

Upon receiving your request, we will inform you of the potential implications of your withdrawal — for example, without your contact information, we may be unable to notify you of product updates, promotions, or other services.

You may submit your request to withdraw consent via email or written notice, and we will respond within a reasonable timeframe.

USE OF COOKIES

We use cookies to enhance your browsing experience and collect information about how you interact with our website. A cookie is a small text file stored on your device by a website, allowing it to recognise you and remember your preferences during subsequent visits.

Cookies make your experience more convenient by saving you from having to re-enter the same information each time you visit or complete electronic forms.

Most of the cookies we use are session cookies, which are automatically deleted from your device once you close your browser.

You may disable cookies in your web browser settings. However, please note that doing so may affect the functionality of certain features or limit your ability to use some services on our website.

THIRD-PARTY CONSENT

We do not get consent on behalf of another individual. We only get consent from the individual who will be dealing directly with us.

HOW WE ENSURE THE ACCURACY OF YOUR PERSONAL DATA

We take reasonable steps to ensure that the personal data we collect and maintain is accurate, complete, not misleading, and kept up to date.

From time to time, we may conduct a data verification exercise to confirm and update the information we hold about you. If you have an ongoing relationship with us, it is important that you notify us of any changes to your personal data — for example, an update to your mailing address or contact number — so that we can ensure our records remain current and accurate.

HOW WE PROTECT YOUR PERSONAL DATA

We have implemented appropriate technical and organisational measures to safeguard the personal data we hold against loss, misuse, destruction, unauthorised alteration, access, or disclosure. These measures include data encryption, firewalls, secure network protocols, and controlled access systems.

We also maintain strict internal procedures to protect the confidentiality and integrity of your personal data, ensuring it is only accessible to authorised personnel on a need-to-know basis.

When we engage third-party data processors to handle personal data on our behalf, we ensure that they provide sufficient guarantees of having implemented the necessary technical and organisational safeguards. We also take reasonable steps to verify their ongoing compliance with these measures.

In the unlikely event of a data breach involving unauthorised access to or disclosure of personal data, we will act in accordance with the Personal Data Protection Act (PDPA). This includes meeting statutory breach notification timelines, notifying the relevant authorities and affected individuals, and taking all necessary steps to mitigate potential harm, in line with the PDPA's definitions of Significant Harm and Significant Scale.

HOW WE RETAIN YOUR PERSONAL DATA

We maintain a document retention policy that specifies the retention periods for personal data, whether stored electronically or in paper form. We will not retain your personal data longer than necessary for the business or legal purposes for which it was collected.

When the retention period expires, we will securely dispose of or destroy documents containing your personal data in accordance with established data protection and security standards.

HOW YOU CAN ACCESS AND CORRECT YOUR PERSONAL DATA

You may contact us in writing to request details on how your personal data has been used or disclosed within the past year. Before processing your request, we may need to verify your identity by checking your NRIC or another form of valid legal identification.

We will respond to your request as soon as possible, and in any case within 30 days of receiving it. If we are unable to do so within this period, we will inform you and provide an estimated completion timeframe. A reasonable administrative fee may be charged to cover the costs of processing your access request.

If you believe that the personal data we hold about you is inaccurate, incomplete, misleading, or outdated, you may request a correction. Where we are satisfied that the request is valid, we will amend the data promptly, and in any case, within 30 days of receiving your request.

TRANSFER OF PERSONAL DATA

If it becomes necessary to transfer your personal data to another country outside of Singapore, we will ensure that the receiving party provides a standard of data protection comparable to that required under Singapore’s PDPA.

Where the recipient country does not offer an equivalent level of protection, we will implement contractual safeguards to ensure that your data remains protected in accordance with Singapore’s data protection standards.

CHANGES TO THIS DATA PRIVACY NOTICE

We may update this Data Privacy Notice from time to time to reflect legal, operational, or business changes. The most recent version will always be available on our website.

Any updates or revisions will take effect upon posting, and we encourage you to review this Notice periodically to stay informed of how we protect your personal data.