Privacy Policy

The Council for Board Diversity (“CBD”) is committed to protecting its stakeholders’ and customers’ personal data in accordance with the Singapore Personal Data Protection Act (“PDPA”) and other applicable data protection laws.

“Personal data” means any data about an individual who can be identified from that data, as more specifically defined under the PDPA and other applicable data protection laws.

The CBD Privacy Policy (“Privacy Policy”) describes how CBD collects, uses, stores and protects personal data. The Privacy Policy also describes how you can control the personal data that CBD holds on you, and your rights on your personal data, where applicable.

CBD may from time to time update this Privacy Policy to ensure that it is consistent with future developments, industry trends and/or any changes in legal or regulatory requirements. Please check regularly for updated information.

This Privacy Policy forms part of the General Terms of Use.

1. Information that CBD collects

CBD collects information about how to contact you and your interest and relationship with CBD, including the products and services which are relevant to you.

Personal data that CBD may collect (depending on the nature of your interaction with CBD) include:

  1. your name, job title, company, age, nationality, telephone number, mailing address, email address and any other information relating to you which you have provided CBD in your interaction with CBD;
  2. your employment history and education background;
  3. information about your use of CBD’s website and services, including cookies, IP address, but only to the extent that CBD may identify you from such information.

Such information is collected:

  1. from you or CBD’s related corporations, affiliates, partners and/or representatives with your permission and consent, or CBD may receive your personal information from third parties who you have given consent to pass this information on to CBD;
  2. through contracts or other legal arrangements you have with CBD or CBD’s related corporations, affiliates, partners and/or representatives on behalf of CBD, so that CBD may fulfil the contractual/legal obligations thereunder; or
  3. when you browse CBD’s websites (please see the Section “Cookies” below for more information),

for example:

  1. when you use some of CBD’s services;
  2. when you submit forms relating to any of CBD’s products or services;
  3. when you interact with CBD’s personnel such as CBD members or Secretariat;
  4. when you request that CBD contact you;
  5. when you ask to be included in an email or other mailing list;
  6. when you respond to CBD’s promotions and other initiatives;
  7. when you enter into agreements with CBD;
  8. when CBD receive references from business partners and third parties, for example, where you have been referred by them;
  9. when you submit a job application to CBD; and
  10. when you submit your personal data to CBD for any other reason.

2. Purposes for the Collection, Use and Disclosure of Personal Data

Generally, CBD collects, uses and discloses your personal data for the following purposes:

  1. to provide products and services to you;
  2. to communicate with you on matters relevant to your relationship with or interest in CBD;
  3. to assess and improve the products and services that you use or may use;
  4. to selectively send you information about our products, services, activities and/or events that may be relevant to you;
  5. to protect and enforce CBD’s contractual and legal rights and obligations;
  6. to verify your identity;
  7. to comply with any applicable rules, laws and regulations, codes of practice or guidelines or to assist in law;
  8. enforcement and investigations by relevant authorities; and/or
  9. any other purpose relating to any of the above.

CBD may share your personal data to third parties with your consent for the purpose for which the information was collected or to be used, and any other reasonable ancillary purposes, for legal reasons, or where permitted under the PDPA and other applicable laws, such as in response to law enforcement agencies.

If CBD transfers your personal data to countries outside Singapore, it will be done in accordance with the relevant provisions under Singapore laws and regulations.

3. Retention of your personal data

CBD shall retain your personal data for as long as is necessary for the purposes stated in Section 2 above, and take reasonable measures to destroy any personal data that is no longer necessary to meet those purposes.

4. CBD security measures

All your personal data is kept confidential and CBD takes all reasonable measures to protect it from unauthorized or accidental access, processing or loss, by implementing appropriate physical, electronic and supervisory controls.

5. How you can control your information

Please email CBD at for any of the following:

  • If you do not want CBD to contact you;
  • If you believe CBD has inaccurate data about you and you want to correct such data;
  • If you wish to know what personal data CBD have on you in connection with your relationship with CBD and how your personal data has been used;
  • If you wish to withdraw consent to CBD’s collection, use, disclosure, storage and/or processing of your personal data, please inform us at
    It is important to note that CBD uses your personal data to provide you with CBD’s products and/or services. Withdrawal of consent for CBD to collect, use or disclose personal data means that CBD will stop these activities. The absence of certain key personal data, including but not limited to your name, address, email and/or telephone contacts, may cause CBD to be unable to continue providing the relevant products and services to you; or
  • If you have any questions about this Privacy Policy, or CBD’s handling of your personal data.

If you no longer want to receive electronic communications from CBD, please select “unsubscribe” contained in the electronic communications.