ENQUIRY LIST
  • Product
  • Room
Open Workspace
Executive and Personal Offices
Meeting and Collaboration Spaces
Pantry and Breakout Areas
Reception and Waiting Areas
Outdoor Spaces
Storage and Utility Room

PRIVACY AND COOKIES POLICY

Effective Date: 01 May 2026

DVS Holdings Pte Ltd respects your privacy and is committed to protecting your personal data in accordance with the Singapore Personal Data Protection Act 2020 (PDPA) and related regulations.
This privacy and cookies policy sets out how we collect, use, disclose, protect, and manage personal data, and your rights under the PDPA and associated regulations.

Scope & Application

This Policy applies to all personal data collected by us via our website, showrooms, services, marketing campaigns, and other interactions in Singapore.

The Data Protection Provisions cover collection, use, disclosure, access, correction, retention, transfer, and breach notification obligations.

The DNC Provisions govern marketing messages to Singapore telephone numbers (voice, SMS, fax), including obligations under the Do-Not-Call registry.

Regulations under the PDPA include the Notification of Data Breaches Regulations 2021, the Personal Data Protection Regulations 2021, and the Do-Not-Call Registry Regulations.

What Data We Collect
Type
Examples
Identify & Contact Data
Name, email, phone, company, mailing address
Transaction / Enquiry Data
Quotation requests, order history and invoices. We do not collect or store payment details such as credit-card numbers or full banking information, which are processed by secure third-party payment providers.
Technical & Usage Data
IP address, browser type, device, pages visited on our websites, time spent on our website
Marketing & Preferences
Subscription status, consents given
Other Voluntary Data
Notes or feedback from you (via forms, surveys, etc.)
We do not intentionally collect NRIC or sensitive personal data unless necessary (or as required by law).
How and Why We Use Your Data
We collect, use, and disclose personal data for legitimate business purposes, always guided by PDPA principles:
  • To respond to enquiries, provide quotes, and fulfil orders
  • To manage after-sales services (repairs, warranty, returns)
  • To improve our products, services, and website experience
  • To send marketing communications (only if you have consented)
  • To comply with legal or regulatory obligations
  • To detect and prevent fraud or misuse
We will notify you at or before collection about the purposes for which your data is collected, used, or disclosed (the Notification Obligation).
Consent & Deemed Consent
  • We will obtain your express or deemed consent before collecting, using, or disclosing your personal data, unless an exception under PDPA applies.
  • You may withdraw consent in full or in part at any time by contacting our Data Protection Officer (DPO).
  • Upon withdrawal of consent, we will cease using or disclosing your personal data for future purposes unless retention or processing is required by law or contract.
Access, Correction & Portability Rights
Under PDPA:
  • Under Section 21 (Access), you may request access to your personal data, and information on how it has been or may be used/disclosed, unless an exception applies.
  • Under Section 22 (Correction), you may request corrections to inaccurate or incomplete data. We will also notify relevant third parties (if applicable) of the correction (within 1 year) unless they do not require the corrected data.
  • Data Portability: The Amendment Act introduced a Data Portability Obligation (Part 6B), which gives you the right, subject to exceptions and conditions, to request that we transmit data to another organisation.
Some access or correction requests may be refused under the PDPA’s exemptions (e.g., if providing access would reveal business secrets or personal data of another person).
Retention & Deletion
  • We retain personal data only as long as necessary to fulfil the stated purposes or to satisfy legal, regulatory, or business obligations.
  • Once personal data is no longer needed, or retention is no longer reasonable, we will securely delete, anonymise or destroy the data in accordance with the Retention Limitation Obligation under Section 25 of the PDPA.
Accuracy & Protection
  • We make reasonable efforts to ensure that personal data is accurate, complete, and up to date when it is likely to be used to make decisions about you or disclosed to other parties. (Accuracy Obligation — Section 23 of PDPA)
  • Under Section 24 (Protection Obligation) of PDPA, we implement appropriate administrative, physical, and technical security measures to safeguard personal data against unauthorised access, disclosure, modification, or loss.
Data Breach Notification
  • If we suspect a data breach, we assess whether it is a notifiable data breach (i.e., likely to cause significant harm or affecting 500 or more individuals)
  • If it is, we will notify the Personal Data Protection Commission (PDPC) and affected individuals as soon as practicable, but no later than 3 calendar days after our assessment.
  • Notifications will include details such as how the breach occurred, data types affected, mitigation measures, and contact information for inquiries.
Transfer of Personal Data
When personal data is transferred beyond the current site, we will ensure that the recipient provides a standard of protection comparable to the PDPA by using a legally enforceable obligation (e.g., contractual clauses) or recognised certification schemes.
Marketing & DNC Provisions
  • If you have consented to marketing, we may send you marketing messages (email, SMS, etc.), provided such consent was validly given.
  • For Singapore telephone numbers, we must also comply with the DNC Provisions:

    ○ Confirm the number is not listed on the Do-Not-Call registers before sending specified messages, unless valid consent is obtained.
    ○ Include sender identification and an opt-out option in all messages
    ○ Cease sending messages within 10 business days of receiving an unsubscribe request.
  • B2B marketing (to business contact information) is generally excluded from the DNC restrictions under the PDPA but still governed by other laws like the Spam Control Act.
Data Intermediaries (Processors)
  • We may engage data intermediaries (processors) to process personal data on our behalf (e.g. hosting, analytics, logistics).
  • Even when using data intermediaries, we remain responsible for PDPA compliance. We will enter into written contracts specifying their obligations, security standards, and audit rights.
Appointment of Data Protection Officer (DPO)
  • In line with the Accountability Obligation, we have appointed a Data Protection Officer (DPO) to oversee PDPA compliance.
  • The DPO’s contact (email or Singapore phone) will be publicly accessible (e.g., on our website)
Cookies, Tracking & Online Behaviour
  • We use cookies and similar technologies to:

    ○ Personalise your experience
    ○ Analyse site traffic & performance
    ○ Remember preferences
  • The PDPA applies to cookies when they collect personal data. In some instances, consent may be deemed (e.g. user voluntarily enters data) if the user is adequately informed.
  • You may disable cookies via browser settings, though some features of the site may not function properly as a result.
Links to Other Websites
If you follow links to third-party sites, those sites may have their own privacy practices. We are not responsible for third-party policies or actions once you leave our site.
Controlling & Correcting Your Information
  • We will not sell, rent, or lease your personal information to third parties except with your consent or as required by law.
  • If you previously consented to marketing but no longer wish to receive such communications, you may opt out any time by contacting us.
  • If you believe any personal data we hold is incorrect or incomplete, please contact us for correction.
Complaints & Enforcement
  • If you have concerns about how we handle your personal data, contact our DPO first. We will investigate and respond in a reasonable timeframe.
  • If unresolved, you may escalate the matter to the PDPC. The PDPC is empowered to investigate and enforce the PDPA.
Updates to This Policy
We may update this Policy periodically to reflect changes in laws, practices, or business needs. Any changes will be posted on our website, with an updated “Effective Date.”
Contact Our Data Protection Officer

For access, correction, withdrawal of consent, or privacy inquiries, please reach:

Data Protection Office (DPO)
Name: Jowy Seah Yi Hoong
Email: jowy.seah@dvs.sg
Phone: 9796 4352
Address: 81 Ubi Ave 4, #01-24/25/26 UB. One, Singapore 408830

Our Showrooms
Sitemap
SUPPORT
Our Socials
Facebook Instagram

Subscribe

Join our mailing list to get insider updates on new furniture collections, space planning tips, sustainable office solutions, and exclusive promotions from DVS.
Copyright © 2026 DVS Holdings Pte Ltd