Last Updated: May 26, 2026
Trasma Utop is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This page outlines how we comply with GDPR requirements and what rights you have regarding your personal data.
We process your personal data based on the following legal grounds:
As a data subject, you have the following rights:
You have the right to request a copy of the personal data we hold about you. We will provide this information in a commonly used electronic format within one month of your request.
If you believe any of your personal data is inaccurate or incomplete, you have the right to request that we correct or complete it.
You have the right to request deletion of your personal data in certain circumstances, including:
You have the right to request that we restrict processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.
Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before withdrawal.
To exercise any of these rights, please contact us at:
Email: [email protected]
Subject line: GDPR Data Subject Request
Please include the following information in your request:
We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you of the extension.
We have appointed a Data Protection Officer to oversee our GDPR compliance. You can contact our DPO at:
Email: [email protected]
Subject line: Attention Data Protection Officer
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay. We will also notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where required by law.
When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
Our services are not directed to children under 16 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.
If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority. In Singapore, you can contact:
Personal Data Protection Commission (PDPC)
Website: www.pdpc.gov.sg
We may update this GDPR compliance statement from time to time. Any changes will be posted on this page with an updated revision date.
For any questions about our GDPR compliance or to exercise your rights, please contact us:
Email: [email protected]
Address: Singapore