Stoa values your privacy and cares about the way in which your personal information is treated. This policy describes:
Stoa refers to Source & Company Pte. Ltd., a Singapore incorporated technology company, its subsidiaries and other partnerships, corporations, undertakings and entities which are authorised to practice using the name ‘Stoa’. See ‘Data controllers’ below for more information on the entities that control and process personal data in Stoa.
As a B2B platform, we collect very limited personal information. However, we may collect certain personal information from you in the course of our business, including through your use of our platform, when you contact or request information from us, when you engage our services or as a result of your relationship with one or more of our staff and brands and suppliers.
We use for session cookies on our platform. This is for performance (such as keeping a user logged in) or for anonymised analytics.
Session cookies enable the website you are visiting to keep track of your movement from page to page so you don't get asked for the same information you've already given to the site. Cookies allow you to proceed through many pages of a site quickly and easily without having to authenticate or reprocess each new area you visit.
Session cookies allow users to be recognised within a website so any page changes or item or data selection you do is remembered from page to page.
You can adjust your session cookies through the settings feature of your browser.
We use personal information to understand whether you read the emails and other materials, such as publications, that we send to you, click on the links to the information that we include in them and whether and how you visit our website after you click on that link (immediately and on future visits). We do this by using software that places a cookie on your device which tracks this activity and records it against your email address.
If you receive marketing communications from us and no longer wish to do so, you may unsubscribe at any time by sending an email to email@example.com
We collect, create, hold and use personal information in the course of and in connection with the services we provide to our brands and suppliers. We will also process personal information provided to us by or on behalf of our brands and suppliers for the purposes of the work we do for them. The information may be disclosed to third parties to the extent reasonably necessary in connection with that work. Please also see ‘Who we share your personal information with’ and ‘Which countries we transfer your personal information to’ below.
Your personal information will be retained in accordance with the requirements of applicable data protection laws and the purpose for which the information is collected and used, taking into account legal and regulatory requirements to retain the information for a minimum period, limitation periods for taking legal action, good practice and Stoa’s business purposes.
We may share your personal information with certain trusted third parties in accordance with contractual arrangements in place with them, including:
Where necessary, or for the reasons set out in this policy, personal information may also be shared with regulatory authorities, courts, tribunals, government agencies and law enforcement agencies. While it is unlikely, we may be required to disclose your information to comply with legal or regulatory requirements. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.
If in the future we re-organise or transfer all or part of our business, we may need to transfer your information to new Stoa entities or to third parties through which the business of Stoa will be carried out.
We do not sell, rent or otherwise make personal information commercially available to any third party, except with your prior permission.
We use a variety of technical and organisational measures to help protect your personal information from unauthorised access, use, disclosure, alteration or destruction consistent with applicable data protection laws.
The level of information protection in countries outside of Singapore may be less than that offered in Singapore. Where this is the case, we will implement appropriate measures to ensure that your personal information remains protected and secure in accordance with applicable data protection laws. Where our third party service providers process personal data outside of Singapore in the course of providing services to us, our written agreement with them will include appropriate measures, usually standard contractual clauses.
Singapore’s data protection legislation and other applicable data protection laws provide certain rights for data subjects.
You are entitled to request details of the information we hold about you and how we process it. You may also have a right in accordance with applicable data protection law to have it rectified or deleted, to restrict our processing of that information, to stop unauthorised transfers of your personal information to a third party and, in some circumstances, to have personal information relating to you transferred to another organisation. You may also have the right to lodge a complaint in relation to Stoa’s processing of your personal information with a local supervisory authority.
If you object to the processing of your personal information, or if you have provided your consent to processing and you later choose to withdraw it, we will respect that choice in accordance with our legal obligations.
Your objection (or withdrawal of any previously given consent) could mean that we are unable to perform the actions necessary to achieve the purposes set out above (see ‘How we use your personal information’) or that you may not be able to make use of the services offered by us. Please note that even after you have chosen to withdraw your consent we may be able to continue to process your personal information to the extent required or otherwise permitted by law, in particular in connection with exercising and defending our legal rights or meeting our legal and regulatory obligations.
We must ensure that your personal information is accurate and up to date. Therefore, please advise us of any changes to your information by email to firstname.lastname@example.org
There are a number of entities through which Stoa provides services. Most of Stoa’s main IT systems are located in Singapore and the United Kingdom and controlled by Stoa. Depending on the location where services are provided, another undertaking or entity in the Stoa group may be the data controller in relation to your personal data.