Privacy Policy

 Last Updated: 25 February 2026 

1. Purpose and Scope 

This Global Privacy Policy (the “Policy”) applies to JESSON GLOBAL PTE. LTD. (UEN: 202602183), a company incorporated in Singapore with its registered address at 68 Circular Road, #02-01 Singapore 049422 (“Jesson Global”). Jesson Global is committed to safeguarding the privacy and security of personal data entrusted to us.   

This Policy sets out the manner in which we collect, use, disclose, process and protect your personal data, as well as the rights and choices available to you in relation to such data. This Policy should be read together with any additional privacy notices, fair processing statements or disclosures that we may provide at the point of data collection. Such supplemental notices are intended to complement this Policy and shall prevail to the extent of any inconsistency, unless expressly stated otherwise.  

References in this Policy to “we”, “us” or “our” shall mean Jesson Global. 

2. Our Services

Jesson Global adopts a full-stack, lifecycle-based approach to talent strategy, recognising that sustainable organisational performance depends on both effective hiring and long-term retention. We focus on addressing the two most material points of value erosion within growth-stage organisations:  

  1. deficiencies in recruitment strategy and execution, and  

  2. preventable attrition arising from structural, cultural or performance misalignment.

In delivering our services, Jesson Global acts as a strategic and operational partner to clients. Our scope of engagement may include:  

  • conducting structured diagnostics to identify the root causes of stagnation or inefficiencies within a client’s talent acquisition and workforce strategy;  

  • reviewing and evaluating candidate selection methodologies, assessment frameworks and decision-making criteria to ensure objectivity, consistency and alignment with organisational objectives; and  

  • designing and implementing governance frameworks, processes and systems intended to strengthen workforce stability, enhance performance outcomes and mitigate retention risks. Our approach integrates advisory insight, operational execution and systems design to support clients in building resilient, high-performing teams. 

3. Scope and Application of this Policy 

Jesson Global delivers integrated talent lifecycle solutions, including recruitment, retention strategy, workforce diagnostics, advisory, and related operational support. In the course of providing these services, we process personal data in different capacities depending on the nature of the engagement. This Policy applies to the processing of personal data by Jesson Global where we act as a data controller, meaning we determine the purposes and means of processing personal data for our own business operations and service delivery.  

3.1 Jesson Global as Data Controller 

Unless otherwise notified, Jesson Global acts as a data controller in the following circumstances:  

Recruitment and Talent Acquisition Services 

Where we identify, assess, shortlist and place candidates for our clients, including reviewing selection criteria and advising on hiring decisions.  

Talent Strategy, Diagnostic and Advisory Services

Where we conduct workforce audits, assess retention risks, review selection frameworks, design performance systems, or provide strategic consultancy relating to hiring and retention structures.  

Direct Engagements 

Where we engage individuals directly for temporary assignments, project-based work, or other forms of engagement managed by Jesson Global.  

In these contexts, we determine the purposes for which personal data is collected and processed, including candidate evaluation, workforce analytics, system design, performance optimisation and related legitimate business activities.  

Where personal data is shared with clients as part of our service delivery, those clients will typically process such personal data as independent data controllers. Clients may also collect additional personal data directly from you pursuant to their own recruitment or internal processes.  

3.2Jesson Global as Data Processor 

In certain engagements, particularly where we provide embedded or outsourced talent acquisition support, workforce administration, or related operational services, Jesson Global may act as a data processor on behalf of our client.  

In such circumstances:  

  • we process personal data strictly in accordance with the client’s documented instructions;  

  • the client determines the purposes and means of processing; and  

  • the client’s privacy policy will govern the processing of personal data.  

We encourage you to review the relevant client’s privacy policy for further information on how your personal data is handled in those contexts.  

3.3 Clarification of Roles 

If you are uncertain whether Jesson Global or a client acts as the data controller in relation to your personal data, you may contact us using the contact details set out in Section 12 of this Policy. 

4. What Personal Data Do We Collect?

Under the Personal Data Protection Act 2012 of the Republic of Singapore (“PDPA”), personal data refers to data, whether true or not, about an individual who can be identified (a) from that data; or (b) from that data and other information to which an organisation has or is likely to have access.  

In the context of Jesson Global’s headhunting and talent lifecycle services, the personal data we collect depends on the nature of your interaction with us, whether as a candidate, client representative, referee, contractor, or website user and the specific services being provided.  

We collect only personal data that is reasonably necessary for our business purposes and which we are permitted or required to collect under applicable law, including the PDPA. Where required, we obtain your consent or rely on other lawful bases recognised under the PDPA (including deemed consent, contractual necessity, legitimate interests exceptions, or legal obligations).  

The categories of personal data we may collect include, but are not limited to, the following:  

Identity Data

  • Full name, former or maiden name (where relevant)  

  • Date of birth  

  • Gender  

  • Photograph  

  • Nationality and residency status  

  • Passport/NRIC/FIN or other national identification number (collected only where permitted under Singapore law and in accordance with PDPA guidelines)  

  • Marital status and dependants (where relevant to relocation or employment requirements)  

Contact Data 

  • Residential or mailing address  

  • Email address  

  • Telephone numbers  

  • Emergency contact details (where applicable)  

Professional and Historical Data 

  • Curriculum vitae or resumé and employment history  

  • Educational history, academic and professional qualifications  

  • Professional memberships and certifications  

  • Skills, competencies and career preferences Publicly available professional information (e.g., LinkedIn profiles)  

  • Background screening results (including criminal record checks where permitted by law and conducted with appropriate consent)

Employment-Related Data 

  • Current and historical remuneration, benefits and incentive information  

  • Role preferences, geographic mobility and availability  

  • Interview notes, assessment outcomes and evaluation feedback prepared by Jesson Global or our clients  

  • Referee details and references (where provided or obtained with consent) 

Verification Data 

  • Identification documents (e.g., passport, identity card, driving licence) where required to verify identity or work eligibility  

  • Right-to-work documentation and immigration-related information where relevant 

Financial Data 

  • Bank account details (where required for payment of remuneration)  

  • Tax-related information where required by applicable laws  

Diversity and Equal Opportunity Data

Where required or permitted by law (including for fair employment monitoring or governmental reporting), we may collect diversity-related information such as:  

  • Racial or ethnic origin  

  • Religious or similar beliefs  

  • Disability or health-related information  

Such data will only be collected and processed in accordance with applicable legal requirements and with appropriate safeguards.  

Technical and Usage Data 

When you interact with our website or digital platforms, we may collect:  

  • IP address  

  • Device identifiers and browser type  

  • Operating system and platform information  

  • Log-in data  

  • Website usage patterns and navigation data  

Marketing and Communications

  • Data Your preferences in receiving marketing communications from us  

  • Records of correspondence and communication preferences  

Immigration and Mobility Data

Where relevant to cross-border placements or relocation support:  

  • Immigration history  

  • Visa status and supporting documentation  

  • Health or character declarations where required by immigration authorities  

Video and CCTV Data

If you attend our premises, CCTV footage may be captured for security, safety and operational purposes in accordance with applicable laws. We may also record video at events organised by Jesson Global where you have provided your consent.  

Sensitive Personal Data

While the PDPA does not use the term “special category data”, certain types of personal data (e.g., NRIC numbers, health data, criminal records) are subject to enhanced protection requirements under Singapore law and regulatory guidance.  

We will only collect and process such data:  

  • where required or authorised by law;  

  • where necessary for establishing, exercising or defending legal claims; or  

  • where you have provided explicit consent, and appropriate safeguards are in place.  

Aggregated and Anonymised Data

We may generate statistical, analytical or aggregated data for internal reporting, market insights and service improvement purposes. Such data does not identify any individual and is not considered personal data under the PDPA.  

Children’s Data

Our services are intended for professionals and corporate representatives. We do not knowingly collect personal data relating to individuals under the age of 18. If we become aware that personal data of a minor has been inadvertently collected, we will take reasonable steps to delete such data. 

5. How We Use Your Personal Data

Jesson Global collects, uses and discloses personal data only for purposes that a reasonable person would consider appropriate in the circumstances and which are notified to the individual at or before the time of collection, in accordance with the PDPA.  

The purposes for which we process personal data depend on the nature of the individual’s relationship with us.  

5.1 Candidates 

Where you are a candidate (including prospective candidates), we may collect, use and disclose your personal data for the following purposes:  

  • providing executive search, headhunting, recruitment and talent advisory services;  

  • assessing your suitability for specific roles, including conducting interviews, evaluations, reference checks and background screening (where permitted by law and with appropriate consent);  

  • creating, maintaining and updating your candidate profile within our internal databases;  

  • presenting your profile and relevant information to prospective employers in connection with recruitment mandates, subject to applicable consent requirements;  

  • communicating with you regarding current or future career opportunities; providing career-related advisory services, including interview preparation, remuneration benchmarking and market insights;  

  • conducting internal analytics, reporting and workforce insights in anonymised or aggregated form;  

  • monitoring diversity and fair employment practices where required or permitted by law;  

  • complying with legal, regulatory or professional obligations; and  

  • sending marketing communications relating to job opportunities, industry updates, events and related services, subject to your marketing preferences and applicable legal requirements. 

Where you interact with our website or digital platforms, we may use cookies and similar technologies (subject to applicable consent requirements) to enhance user experience, personalise job recommendations and evaluate the effectiveness of our communications.  

5.2 Prospective Candidates and Business Contacts 

Where we obtain your personal data from publicly available sources, professional networks, referrals or other lawful sources for business development or headhunting purposes, we may process your personal data to:  

  • assess your suitability for current or anticipated executive search assignments;  

  • determine whether your organisation may benefit from our services; and  

  • contact you to introduce our services or discuss potential career or commercial opportunities.  

Where applicable, we rely on the business contact information exception under the PDPA or other lawful bases for such processing.  

5.3 Website and Platform Users 

If you access or use our website or digital platforms, we may process your personal data to:  

  • administer, operate and improve our website and digital services; 

  • personalise content and job recommendations;  

  • analyse website usage and performance; and  

  • deliver relevant advertising and communications, subject to applicable consent requirements.  

5.4 Clients

Where you are a client or a representative of a client organisation, we may process your personal data to:  

  • provide executive search, recruitment and talent lifecycle advisory services;  

  • manage and administer recruitment mandates and related engagements;  

  • communicate in relation to ongoing or prospective assignments;  

  • respond to enquiries and provide client support;  

  • conduct client feedback and service improvement initiatives;  

  • manage contractual relationships and fulfil contractual obligations;  

  • establish, exercise or defend legal rights; and  

  • provide information regarding our services and business developments, subject to applicable marketing laws.  

5.5 Suppliers and Service Providers

Where you are a supplier, contractor or professional adviser, we may process your personal data to:  

  • manage procurement and service arrangements;  

  • administer contractual obligations;  

  • maintain business records; communicate in relation to service delivery;  

  • comply with legal and regulatory requirements; and  

  • establish, exercise or defend legal claims.  

5.6 Marketing Communications

Where required under applicable law, we will obtain your consent before sending you marketing communications. You may withdraw your consent at any time by using the unsubscribe mechanism in our communications or by contacting us directly.  

Withdrawal of consent will not affect the lawfulness of processing carried out prior to such withdrawal. 

6. Legal Bases for Processing Personal Data

Jesson Global processes personal data in accordance with the PDPA and, where applicable, other relevant data protection laws. We only collect, use or disclose personal data where permitted under the PDPA. Depending on the circumstances, we rely on one or more of the following legal bases.  

6.1 Consent 

We may process personal data where the individual has provided valid consent for one or more specified purposes. Consent may be obtained:  

  • expressly (whether in writing, electronically or verbally); or  

  • through clear affirmative action signifying agreement to the notified purposes.  

Where consent is relied upon:  

  • individuals will be notified of the purposes for which their personal data will be collected, used or disclosed;  

  • consent will not be obtained through deception or misleading practices; and 

  •  individuals may withdraw consent at any time upon reasonable notice, subject to legal or contractual restrictions.  

Upon withdrawal of consent, we will cease processing personal data for the relevant purpose unless an exception under the PDPA applies. Withdrawal of consent does not affect the lawfulness of processing carried out prior to such withdrawal.  

6.2 Deemed Consent

We may rely on deemed consent where:  

  • the individual voluntarily provides personal data for a purpose; and  

  • it is reasonable that the individual would voluntarily provide such data for that purpose.  

In the recruitment context, this may include circumstances where a candidate submits a curriculum vitae or professional information for the purpose of being considered for employment opportunities.  

We may also rely on deemed consent by contractual necessity where the processing of personal data is reasonably necessary to conclude or perform a contract with the individual.  

6.3 Legitimate Interests Exception

We may process personal data without consent where such processing is necessary for our legitimate interests or those of another person, provided that:  

  • the legitimate interests are assessed and documented;  

  • the processing is necessary to achieve those interests; and  

  • the legitimate interests outweigh any likely adverse effect on the individual.  

Such legitimate interests may include, without limitation:  

  • the provision of executive search, headhunting and talent advisory services;  

  • fraud detection and prevention; ensuring network and information security;  

  • business continuity and risk management;  

  • internal administrative purposes within our corporate group; and  

  • improving and enhancing our services.  

Where reliance is placed on the legitimate interests exception, we will conduct and document an assessment in accordance with PDPA requirements.  

6.4 Business Improvement Exception 

Where applicable, we may rely on the business improvement exception under the PDPA to process personal data for purposes such as:  

  • improving, enhancing or developing our services;  

  • conducting data analytics in support of service quality; or  

  • understanding and optimising operational performance.  

Such processing will be carried out in a manner that minimises risks to individuals and, where practicable, uses anonymised or aggregated data.  

6.5 Legal Obligation

We may process personal data where necessary to comply with legal or regulatory obligations, including but not limited to:  

  • responding to lawful requests, court orders or directions from regulatory authorities;  

  • complying with employment, taxation or corporate regulatory requirements;  

  • maintaining statutory registers or records; and  

  • establishing, exercising or defending legal rights and claims.  

6.6 Other PDPA Exceptions  

Where applicable, we may rely on other exceptions under the PDPA, including but not limited to situations involving:  

  • investigations and proceedings;  

  • emergencies affecting life, health or safety; or  

  • publicly available personal data.  

6.7 Limitation and Accountability

In all cases:  

  • we will limit the collection of personal data to what is reasonable and necessary for the identified purposes;  

  • we will not use or disclose personal data for new purposes without obtaining fresh consent unless an exception under the PDPA applies; and  

  • we maintain internal policies and governance measures to ensure compliance with the Consent, Purpose Limitation, Notification and Accountability Obligations under the PDPA. 

7. Automated Decision-Making and Profiling 

Jesson Global does not make decisions that produce legal or similarly significant effects solely by automated means. While we utilise technology-assisted tools and data analytics to enhance the efficiency and effectiveness of our recruitment and headhunting processes, all material decisions relating to candidate shortlisting, suitability assessment and placement are subject to meaningful human review and professional judgment. 

7.1Profiling Activities 

In the course of providing our services, we may conduct limited profiling activities based on personal data provided by candidates. These include: 

1.Candidate Matching Tools 

We may deploy automated matching functionalities within our website or internal systems that analyse information contained in a candidate’s curriculum vitae or profile in order to recommend potentially suitable roles. Such tools assess structured and unstructured data (e.g., skills, experience, industry background) against predefined criteria associated with active mandates.  

These tools are designed to facilitate candidate visibility and opportunity matching. They do not automatically exclude candidates from consideration for other roles, nor do they independently determine eligibility for any position.   

2.Database Search and Filtering Tools 

Where we receive a high volume of applications or conduct targeted executive searches, we may use search and filtering tools within our candidate database. These tools enable consultants to apply objective criteria (e.g., years of experience, technical competencies, industry sector) to identify a preliminary pool of potentially suitable candidates.  

The output generated by such tools constitutes a decision-support mechanism only. A recruiter or consultant will review, validate and exercise independent professional judgment before any decision is made to shortlist, present or reject a candidate.  

7.2 No Solely Automated Decisions

Jesson Global does not rely exclusively on automated processing to make decisions that materially affect candidates. All recruitment outcomes involve human assessment, contextual evaluation and discretion. If you require further information regarding our use of profiling tools, you may contact our Data Protection Officer. 

8. Disclosure of Personal Data

Jesson Global treats personal data as confidential and will only disclose personal data where such disclosure is reasonably necessary for the purposes set out in this Policy, or where required or permitted by law. We limit disclosures to personal data that is adequate, relevant and necessary for the specific purpose.  

8.1 Disclosure to Clients

Where you are a candidate, we may disclose your personal data to client organisations in connection with specific recruitment mandates, subject to appropriate notification and, where required, consent. Such disclosures may include professional history, qualifications, interview assessments and referee information.  

8.2 Disclosure to Third-Party Service Providers 

We may disclose personal data to third-party service providers engaged to support our operations, including but not limited to:  

  • background screening and reference check providers;  

  • qualification and credential verification providers;  

  • psychometric assessment providers;  

  • IT, cloud hosting and database management providers;  

  • data analytics service providers; professional advisers (including legal, accounting and audit advisers);  

  • marketing and communications service providers; and survey administrators.  

All third-party service providers are subject to contractual obligations requiring them to implement appropriate technical and organisational measures to safeguard personal data and to process such data solely in accordance with our instructions and applicable law.  

8.3 Legal and Regulatory Disclosures 

We may disclose personal data: where required by law, regulation or court order; in response to lawful requests from regulatory authorities or law enforcement agencies; where necessary to establish, exercise or defend legal rights; or in connection with investigations or proceedings.  

8.4 Corporate Transactions 

In the event of a reorganisation, merger, acquisition, financing, joint venture, or sale of all or part of our business or assets, personal data may be disclosed to prospective or actual transaction counterparties and their advisers, subject to appropriate confidentiality safeguards.  

8.5 Cross-Border Transfers 

Where personal data is transferred outside Singapore, Jesson Global will comply with the Transfer Limitation Obligation under the PDPA and take appropriate steps to ensure that the recipient provides a standard of protection comparable to that under the PDPA. 

9. Data Security 

Jesson Global implements and maintains reasonable security arrangements, consistent with the Protection Obligation under the Personal Data Protection Act 2012 of Singapore (“PDPA”), to safeguard personal data in our possession or under our control against unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks. Such safeguards comprise a combination of administrative, physical and technical measures, including but not limited to role-based access controls aligned with the principle of least privilege, secure authentication protocols, encryption of data where appropriate, network and system monitoring, secure data storage environments, and documented incident response procedures. We also impose contractual confidentiality and data protection obligations on employees, consultants and third-party service providers who process personal data on our behalf and provide regular data protection training to relevant personnel. Access to personal data is strictly limited to authorised individuals on a need-to-know basis and subject to internal governance and oversight mechanisms designed to ensure ongoing compliance with applicable data protection laws. 

10. Retention of Personal Data

Jesson Global retains personal data in accordance with the Retention Limitation Obligation under the PDPA and will not retain personal data for longer than is reasonably necessary to fulfil the purposes for which it was collected, or as otherwise required or permitted by applicable laws.  

In determining the appropriate retention period, we undertake a contextual assessment taking into account, among other factors, the nature and duration of our relationship with the individual; the operational and business purposes for which the personal data was collected; ongoing recruitment or advisory engagements; applicable legal, regulatory, tax, accounting and reporting obligations; relevant statutory limitation periods; the sensitivity of the personal data; and the potential risk of harm arising from unauthorised access, use or disclosure.  

Given the nature of executive search, headhunting and talent lifecycle advisory services, which often involve long-term candidate engagement and repeat placements, candidate personal data may be retained for an extended period where reasonably necessary to facilitate future employment opportunities, maintain historical placement records, or manage professional relationships, unless consent is withdrawn and no other lawful basis for continued retention applies.  

Where personal data is no longer required for legal or business purposes, we will take reasonable and appropriate steps to securely delete, anonymise or otherwise dispose of such data in a manner that prevents unauthorised access or reconstruction.  

For direct marketing purposes, personal data will be processed until the individual withdraws consent or opts out of receiving such communications. Thereafter, we may retain limited suppression information (such as name and contact details) solely for the purpose of ensuring that the individual’s marketing preferences are respected and to maintain compliance with applicable legal obligations. 

11. Your Rights Under the PDPA 

Subject to the PDPA, you are entitled to exercise certain rights in relation to personal data that is in our possession or under our control. These rights include the right to:  

  • request access to personal data held by us and information about the ways in which such personal data has been used or disclosed within the preceding year, as required under the PDPA;  

  • request correction of personal data that is inaccurate or incomplete, and to have such corrected data provided to other organisations to which we have disclosed the personal data, where required by law; and  

  • withdraw your consent to the collection, use or disclosure of your personal data for specified purposes, subject to legal or contractual restrictions and reasonable notice.  

Upon receipt of a valid request, we will respond within a reasonable timeframe in accordance with the PDPA. 

Where permitted under the PDPA, we may decline to provide access to or correct personal data in certain prescribed circumstances. In such cases, we will provide written reasons for the refusal, except where we are not required to do so under applicable law. We reserve the right to charge a reasonable administrative fee for processing access requests, as permitted under the PDPA, and will inform you of the applicable fee before processing your request. 

12. Contacting Us 

If you wish to exercise your rights under the PDPA, including requesting access to or correction of your personal data, withdrawing your consent, making a complaint regarding our data handling practices, or seeking clarification on any aspect of this Privacy Policy, you may contact our Data Protection Officer at the details set out below.  

Data Protection Officer  

JESSON GLOBAL PTE. LTD. 68 Circular Road, #02-01 Singapore 049422  

Email: jafritson@jessonglobal.com

We will respond to your request or enquiry within a reasonable timeframe in accordance with the PDPA and may request sufficient information to verify your identity before processing your request. 

13. Changes to Privacy Policy

Jesson Global reserves the right to amend, modify or update this Privacy Policy from time to time to reflect changes in applicable laws, regulatory guidance, industry practices or our operational requirements. Any revised version will be published on our website and shall take effect upon publication unless otherwise expressly stated.  

This Privacy Policy should be read together with, and forms part of, our Terms of Service and any other applicable contractual terms governing your relationship with us. In the event of any inconsistency between this Privacy Policy and our Terms of Service, the relevant contractual provisions shall prevail to the extent of such inconsistency, unless otherwise required by applicable law.  

Your continued access to or engagement with our services following the publication of any amendments constitutes your acknowledgement of the updated Privacy Policy.