Privacy Policy

1. Who We Are

Dr. Janet Ngai Man Hung maintains this personal professional website. This Website is not affiliated with, endorsed by, or an official publication of any hospital, healthcare institution, university, or employer — please see our Disclaimers.

If you are making an appointment or enquiring about clinical care, you will do so through the relevant hospital channels (for example, the National University Hospital or Alexandra Hospital). In those cases, the privacy policies of those institutions will govern any personal data collected by them.

2. Personal Data We Collect

We collect only the minimum personal data needed for the operation of the Website. The categories of data we may collect include:

Information you provide directly

• Your name, email address, and phone number, if you contact us using the contact information on the Website
• The content of any message, enquiry, or correspondence you send to us

Information collected automatically

• Your IP address
• Your browser type and version, operating system, device type, and screen size
• Pages you visit, time spent on pages, referring website, and exit pages
• The date and time of your access

3. How We Use Your Personal Data

We use personal data for the following purposes:

• To respond to your enquiries or correspondence
• To maintain, operate, and improve the Website
• To understand how visitors use the Website (through aggregate analytics)
• To protect the Website against unauthorised access, abuse, or misuse
• To comply with applicable laws and respond to lawful requests from authorities

We will not use your personal data for any other purpose without your consent, except where permitted or required by law.

4. Disclosure of Your Personal Data

We do not sell, rent, or trade your personal data. We may disclose your personal data only in the following circumstances:

• To third-party service providers who assist us in operating the Website — for example, web hosting, email, or analytics providers — subject to appropriate confidentiality and security obligations
• Where required by law, court order, or request from a lawful authority
• To protect our rights, property, or safety, or that of others, or to investigate fraud or security issues
• In connection with a merger, acquisition, or reorganisation, subject to the receiving party agreeing to treat your data in accordance with this policy

5. Cookies and Analytics

The Website may use cookies and similar technologies to remember preferences, measure Website traffic, and collect aggregate, anonymised information about Website usage. Cookies are small text files stored on your device by your browser.

You can configure your browser to refuse cookies, to alert you when cookies are being set, or to delete existing cookies. However, if you disable cookies, some features of the Website may not function properly.

Where we use third-party analytics services, those providers may collect information in accordance with their own privacy policies.

6. Retention of Your Personal Data

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required or permitted by law. When personal data is no longer needed, we will take reasonable steps to destroy or anonymise it.

7. Protection of Your Personal Data

We take reasonable and appropriate security measures to protect personal data against unauthorised access, collection, use, disclosure, copying, modification, disposal, or similar risks. These include:

• Secure, reputable web hosting
• Encrypted connections (HTTPS / TLS)
• Limited access to personal data on a need-to-know basis
• Regular review of security measures and practices

However, no method of transmission over the internet or method of electronic storage is entirely secure, and we cannot guarantee absolute security. You use the Website at your own risk.

8. Your Rights Under the PDPA

Under Singapore's PDPA, you have the right to:

• Request access to personal data we hold about you, and to information about how we have used or disclosed it
• Request correction of personal data we hold about you if it is inaccurate or incomplete
• Withdraw consent to the collection, use, or disclosure of your personal data at any time, subject to any legal or contractual restrictions and reasonable notice

To exercise any of these rights, please contact our Data Protection Officer (see Section 10). We will respond to your request within a reasonable time and in accordance with the PDPA.

Please note that withdrawing consent may affect our ability to respond to your enquiry or provide certain services. A reasonable administrative fee may be charged for access requests, as permitted under the PDPA.

9. International Transfers

The Website may be hosted or served from servers outside of Singapore, and our service providers may be located in other jurisdictions. Where personal data is transferred outside Singapore, we take reasonable steps to ensure that the receiving country provides a standard of data protection comparable to that under the PDPA, or we will obtain your consent for the transfer.

10. Data Protection Officer

If you have any questions, concerns, or complaints regarding the handling of your personal data, or wish to exercise any of your rights under the PDPA, please contact our Data Protection Officer:

We will endeavour to acknowledge your request within 5 working days and respond substantively within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore:

• Website: pdpc.gov.sg

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws. When we make material changes, we will update the "Effective" date at the top of this policy. We encourage you to review this policy periodically to stay informed about how we protect your personal data.

12. Contact

If you have any questions about this Privacy Policy, please contact us via the Data Protection Officer above, or via the contact section of the home page.