Personal Data Protection Statement
The Genting Singapore Group recognizes the importance of treating our guests’ Personal Data with respect and privacy. This Personal Data Protection Statement ("Statement") explains how we collect, use, disclose and/or process your Personal Data. It also explains how we safeguard your Personal Data and comply with Singapore Personal Data Protection Act 2012 (“PDPA”).
Please read this Statement carefully. By using any of our products or services, you consent to the collection, use, disclosure and/or processing of your Personal Data as set out in this Statement. You may manage your Personal Data by logging into our membership portals.
How we collect your Personal Data
We collect Personal Data in many ways. For example:
- When you provide feedback, make an enquiry, transact with us or use any of our services, products and facilities. This includes for example, making a room or dining reservation, and contacting our call centre;
- When you sign up for alerts or subscribe to our mailing lists, notification services or newsletter;
- When you visit our premises, such as casinos, attractions, hotels and restaurants;
- When you apply for relevant passes, credit facility or membership in our available programs;
- When an image or sound recording of you is made by a camera or other device installed in our premises;
- When you use our self-service kiosks, websites, mobile applications, or interact with our social media pages;
- When you participate in our surveys, interviews, contests or events;
- From third party sources which can legally disclose your Personal Data to us (such as background check providers, event organizers, partners, travel and ticketing agencies or booking platforms); and
- When the law requires us to collect your Personal Data.
Disclosure of third parties’ Personal Data to us
If you disclose any third parties’ Personal Data to us, please ensure that you have obtained consent or authorization from the third party for the disclosure, or you can legally provide the Personal Data to us.
How we use your Personal Data
We may use your Personal Data for various purposes including those described in this Statement upon consent. Alternatively, we may also use your Personal Data in accordance with PDPA when we have assessed that the use is necessary for us to pursue our legitimate interests such as for the purposes of ensuring security or enhancing your user experience with us. Where applicable, we may use your Personal Data for the following purposes (“Purposes”):
- Processing and managing your feedbacks, enquiry, transaction or use of any of our services, products and facilities;
- Inviting you to participate in our surveys, interviews, contests or to attend events;
- Managing and maintaining your guest profile or membership account across our various businesses;
- Providing assistance and cooperation with relevant stakeholders or third parties to identify and prevent illegal activities and other wrongdoing. This includes identity verification, financial and background screening, prevention of money laundering, anti-fraud, and managing admission or entry to our premises (such as attractions, hotels and casinos);
- Complying with and enforcing applicable legal and regulatory obligations and recommendations;
- Upholding gaming integrity (such as cheating at play);
- Facilitating enrolment, administration and issuance of relevant passes and rewards for our membership programs;
- Assessing and processing your credit facilities application and eligibility, and other financial dealings such as for debt recovery;
- Facilitating consolidated management and supervision within the Genting Singapore Group;
- Monitoring your activity when you use our services, products and facilities so that we can conduct research and data analytics to enhance and personalize your experience with us. For example, we may monitor individuals within our facilities - so that we can provide suitable facilities, deploy sufficient resources and provide appropriate products and services;
- Facilitating surveillance where applicable and other emergency response measures;
- Conducting our marketing activities and communications to ensure they are relevant to your interests. This includes customer profiling, targeted advertising, administering promotions, and informing you about important notices, events, promotions and discounts;
- Ensuring that our gaming products and services are used in a socially responsible way;
- Ensuring safety and security. For example, we may use cameras in conjunction with facial recognition technology for identification and access management;
- To detect, prevent or otherwise address security or technical issues related to the services provided to you through our platforms and systems;
- Other reasonable purposes related to the improvement and provision of our services, products and facilities to you.
How we share your Personal Data
We may provide your Personal Data to third parties. When we do so, we will ensure that these third parties protect your Personal Data and only use it for relevant Purposes. We may disclose your Personal Data:
- To our affiliates, subsidiaries and associated companies for the relevant Purposes;
- To our agents, partners, service providers, suppliers and their business partners who assist us in providing our products and services and to perform services (including maintenance and security of the services) on our behalf;
- To our professional advisors (such as consultants and auditors);
- To government agencies or authorities, operators or industry bodies to which we or our affiliates are required, permitted, advised, or expected to disclose your Personal Data;
- To other entities who are part of the Genting Singapore Group; and/or
- When disclosure is necessary as required or permitted by law i) to respond to an emergency that may threatens one’s life, health and safety, ii) to establish, exercise, or defend our legal rights; and/or iii) to identify or investigate suspected or actual illegal activities and wrongdoing.
International transfers of Personal Data
We may transfer your information to other countries. When we do so, we will require the recipient to protect your Personal Data to the standard required by the Personal Data Protection Act 2012
Securing your Personal Data
We have put in place technical and organisational measures to protect your Personal Data. These include without limitation, antivirus protection, encryption, and using and disclosing personal data only on a need-to-know basis.
However, please be aware that no method of transmission over the internet or method of storage is completely secure. While we cannot guarantee full security, we strive to protect the security of your information by constantly reviewing and enhancing our information security measures.
Third party websites
Our websites and mobile applications contain links to third parties' websites (e.g. Facebook, Twitter). As we do not operate these websites, we are unable to guarantee the security of such websites. We are not responsible for the collection, use or disclosure of Personal Data by such websites. You should examine the privacy statement of such websites before you use them.
Retaining your Personal Data
We may retain your Personal Data as needed to fulfil the Purposes stated in this Statement. We may also retain your Personal Data if we have a legal or business purpose to do so. For example, we may retain Personal Data for the period a casino exclusion order remains in effect.
Cookies and Advertising on Third Party Platforms
Various technologies are in use across our websites and mobile applications. You may opt out of our use of cookies. To find out more, please refer to our Cookies Notice.
Withdrawal of Consent
If you wish to withdraw consent for the use of Personal Data by us, please submit a request using our Withdrawal of Consent Form.
Enquiries
If you would like to access or correct Personal Data held by us, please submit a request using our Request for Information Form. We may impose a fee, depending on the data requested.
Please direct all enquiries relating to this Statement to:
Data Protection Office
Genting Centre
3 Lim Teck Kim Road
#12-01
Singapore 088934
Email: dpo@rwsentosa.com
Amendments to this Statement
This Statement applies in conjunction with any other notices, contractual clauses and consent clauses that apply in relation to the collection, use, disclosure and/or processing of your Personal Data by us. We may amend this Statement to reflect changes in the way in which we collect, use, disclose and/or process Personal Data without any prior notice. The latest version of this Statement is accessible on our website. Your continued use of our services constitute your acknowledgement and acceptance of such changes.
Glossary
"Genting Singapore Group" includes Genting Singapore Limited, Resorts World at Sentosa Pte. Ltd. and/or their subsidiaries, related, affiliated and associated companies, and all companies within the Genting Singapore Limited group, regardless of whether such companies are incorporated in Singapore (collectively referred to in this Statement as “Genting Singapore”, “we”, and “us” or “our”).
"Personal Data means data that can be used to identify a person. Depending on the nature of your interaction with us, examples of Personal Data we may collect includes name, age, gender, date of birth, address, email-address, telephone number, national identification document and/or number, credit application such as income and financial information, membership information and biometric information.
This Statement was updated on 1 August 2024.