Privacy Statement

Privacy Statement

This Privacy Statement (“Privacy Statement”) must be read in conjunction with the Terms of Use that accompany the applicable service you are requesting from us (the “Service”). Unless otherwise stated, all other capitalised terms contained in this Privacy Statement shall have the meaning given to it in the Terms of Use. In this Privacy Statement, “we”, “us” or “our” refers to the Government Technology Agency.

General
1.         This is a Government agency digital service.

2.         Please note that: 

2.1.     We may use “cookies”, where a small data file is sent to your browser to store and track information about you when you enter our digital services. The cookie is used to track information such as the number of users and their frequency of use, profiles of users and their preferred digital services. While this cookie can tell us when you enter our digital services and which pages you visit, it cannot read data off your hard disk.

2.2.     You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the Service.

3.       Please see the Annex for any additional terms or information. 

4.         Nothing in this Privacy Statement shall be construed as limiting or prejudicing our rights at law to collect, use or disclose any data without your consent or agreement.

Use of data

5.         We may request or collect certain types of data from you in connection with your access or use of the Service. The data that may be requested/collected include those identified in the Annex herein. Your data may be stored in our servers, systems or devices, in the servers, systems or devices of our third party service providers or collaborators, or on your device, and may be used by us or our third party service providers or collaborators to facilitate your access or use of the Service. We or our third party service providers or collaborators may collect system configuration information and/or traffic information (such as an IP address) and/or use information or statistical information to operate, maintain or improve the Services or the underlying service of the third party service provider or collaborator. For the avoidance of doubt, in this Privacy Statement, a reference to a third party service provider or collaborator includes other third parties who provide a service or collaborate with our third party service provider or collaborator.

6.         If you provide us with personal data, or where we collect personal data from you:


6.1.     We may use, disclose and process the data for any one or more of the following purposes:

6.1.1.      to assist, process and facilitate your access or use of the Service;

6.1.2.      to administer, process and facilitate any transactions or activities by you, whether with us or any other Public Agency or third party service provider or collaborator, and whether for your own benefit, or for the benefit of a third party on whose behalf you are duly authorised to act;

6.1.3.      to carry out your instructions or respond to any queries, feedback or complaints provided by (or purported to be provided by) you or on your behalf, or otherwise for the purposes of responding to or dealing with your interactions with us;

6.1.4.      to monitor and track your usage of the Service, to conduct research, data analytics, surveys, market studies and similar activities, in order to assist us in understanding your interests, concerns and preferences and improving the Service (including any service of a third party service provider or collaborator) and other services and products provided by Public Agencies. For the avoidance of doubt, we may also collect, use, disclose and process such information to create reports and produce statistics regarding your transactions with us and your usage of the Services and other services and products provided by Public Agencies for record-keeping and reporting or publication purposes (whether internally or externally);

6.1.5.      for the purposes of storing or creating backups of your data (whether for contingency or business continuity purposes or otherwise), whether within or outside Singapore;

6.1.6.      to enable us to contact you or communicate with you on any matters relating to your access or use of the Service, including but not limited to the purposes set out above, via email, push notifications or such other forms of communication that we may introduce from time to time depending on the functionality of the Service and/or your device.

6.2.     We may share necessary data with other Public Agencies, and third party service providers or collaborators in connection with the Service, so as to improve or facilitate the discharge of public functions and/or serve you in the most efficient and effective way, unless such sharing is prohibited by law.

6.3.     We may share your personal data with non-Public Agencies that have been authorised to carry out specific Public Agency services. We will NOT share your personal data with other non-Government Agencies without your consent, except where such sharing is necessary for fulfilling any of the purposes herein, or complies with the law.

6.4.     For your convenience, we may also display to you data you had previously supplied us or other Public Agencies.  This will speed up the transaction and save you the trouble of repeating previous submissions. Should the data be out-of-date, please supply us the latest data.

6A.   Please note that we may be required to disclose your data by law, including any law governing the use/provision of any service of a third party service provider or collaborator.

7.         You may withdraw your consent to the use and disclosure of your data by us with reasonable notice and subject to any prevailing legal or contractual restrictions; however, doing so may prevent the proper functioning of the Service and may also result in the cessation of the Service to you.

Protection of data

8.         To safeguard your personal data, all electronic storage and transmission of personal data is secured with appropriate security technologies.

9.         The Service may contain links to external sites or services whose data protection and privacy practices may differ from ours.  We are not responsible for the content and privacy practices of these other websites or services and encourage you to consult the privacy notices of those sites or services.

Changes to Privacy Statement

10.         We reserve the right to change, modify or supplement the Privacy Statement at our discretion and at any time, by posting the changed, modified or supplemented Privacy Statement on or through the Service or through such other means as we may deem appropriate. Your continued use of the Service following the posting of any change, modification or supplement will constitute your acceptance of such change, modification or supplement. If you do not agree to any change, modification or supplement to the Privacy Statement, please do not use the Service.

Contact information

11. Please contact feedback@scamshield.gov.sg if you:

11.1. have any enquires or feedback on our data protection policies and procedures; 

11.2. need more information on or access to data which you have provided to us directly in the past; or

11.3. wish to withdraw your consent to the use and disclosure of your data by us.

Definitions
12. In this Privacy Statement, 

12.1    “Public Agency” means any of the following entities/parties: 

(a) the Government of the Republic of Singapore; 
(b) any ministry or organ of state within the Republic of Singapore; 
(c) any department, commission, authority, agency or other body operated by or accountable to a ministry or organ of state within the Republic of Singapore;
(d) any organisation which was created, constituted or given rise to by a statute enacted by the Parliament of the Republic of Singapore, and “Public Agencies” means all of the aforementioned, but “Public Agency” and “Public Agencies” shall exclude GovTech, where it is acting in its capacity as the provider and operator of the Service; and

12.2  “personal data” shall have the same meaning as its definition in the Personal Data Protection Act 2012, provided our obligations in respect of personal data under this Privacy Statement do not apply to:

12.2.1.              business contact information; and

12.2.2.            personal data of a deceased individual. However, clauses relating to the disclosure of personal data and protection of personal data shall apply in respect of the personal data of an individual who has been dead for 10 or less years.

This version of the Privacy Statement is dated 13 October 2025.

ANNEX

1.          Name of Service: ScamShield Mobile Application 

2.          Types of data requested/collected

a.         Contents of messages that are analysed and/or read by ScamShield from unsaved contacts 

b.         The sender ID and/or contact number(s) of the person who sends such potential ‘scam’ messages

c.          Screenshots and Optical Character Recognition (OCR) extractions of the content that is submitted by users of the “Check for Scams” feature

 d.          Screenshots and Optical Character Recognition (OCR) extractions of the content that is submitted by users of the “Submit a Scam Report” feature

3.         Further acknowledgements on purpose of data requested/collected

a.         The types of data you may submit, such as screenshots or website URLs, may contain your personal data. You further acknowledge and agree that if such submitted data contains your personal data, (i) we may use and process such data (including your personal data), and disclose such data to third parties in connection with the Service; and (ii) our third party service providers may use and process the data, and may further disclose such data to other third parties, in connection with the Service and/or for the purpose of improving each third party’s scam improvement systems / products.