Privacy Policy

1. Introduction

Kinsfolk ("we", "us", or "our") is committed to protecting the personal data of our residents, their families, website visitors, and anyone who interacts with our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in accordance with the Personal Data Protection Act 2012 (PDPA) of Singapore.

If you have questions about this policy or your personal data, please contact us at [email protected].

2. Data We Collect

We may collect the following categories of personal data:

Contact information: Name, email address, phone number, and mailing address — collected through our website contact form, phone enquiries, and in-person visits.

Resident information: Health records, dietary requirements, medication details, emergency contacts, and next-of-kin details — collected during the intake process for care services.

Website usage data: Pages visited, time spent on site, browser type, and device information — collected through cookies and analytics tools.

Payment information: Billing details required to process service fees — handled through secure payment channels.

3. How We Use Your Data

We use personal data for the following purposes:

To provide and manage our care services, including residential care, respite stays, and day programmes. To communicate with families about their loved one's wellbeing, care plans, and any changes in condition. To respond to enquiries submitted through our website or by phone. To improve our website and services through anonymised analytics. To comply with legal and regulatory obligations under Singapore law. To send relevant updates about our services, where consent has been provided.

4. Legal Basis for Processing

Under the PDPA, we process personal data based on: consent provided by the individual or their authorised representative, contractual necessity for the delivery of care services, legitimate interest in improving service quality and safety, and legal obligation where required by healthcare regulations or government agencies.

5. Data Sharing

We do not sell personal data to third parties. We may share data with: healthcare professionals involved in a resident's medical care, government agencies where required by law (e.g., Ministry of Health), service providers who assist with website hosting, analytics, or payment processing — all bound by confidentiality agreements, and authorised family members or legal representatives of residents.

6. Data Protection Measures

We take the security of personal data seriously and employ measures including: encrypted storage for sensitive health and personal records, access controls limiting data visibility to authorised personnel, regular staff training on data handling and confidentiality, secure disposal of physical records when no longer required, and periodic review of our data protection practices.

7. Cookies

Our website uses cookies to improve your browsing experience and to understand how visitors interact with our site. For detailed information about the cookies we use and how to manage your preferences, please visit our Cookie Policy page.

8. Your Rights

Under the PDPA, you have the right to: request access to the personal data we hold about you, request correction of inaccurate or incomplete data, withdraw consent for the collection or use of your data (subject to legal and contractual obligations), request information about how your data has been used or disclosed in the past year.

To exercise any of these rights, please email us at [email protected]. We will respond within 30 business days.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Resident medical records are retained for a minimum of six years following the end of the care relationship, in accordance with healthcare regulations. Website analytics data is retained in anonymised form. Enquiry records are retained for up to two years.

10. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of these third-party sites and encourage you to review their privacy policies independently.

11. Children's Privacy

Our services are intended for individuals aged 18 and above. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from someone under 18, please contact us so we can take appropriate action.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any significant changes will be communicated through our website. The "Last Updated" date at the top of this page indicates when the most recent revision was made.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer:

Email: [email protected]

Address: 23 Clementi Avenue 1, Singapore 129956

Phone: +65 6473 8192

You may also lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore if you believe your data has been handled improperly.