Privacy Policy

We use your personal data for the following purposes:

• Platform Operation: To provide access to our SaaS platform, maintain user accounts, and enable software functionality
• Service Delivery: To deliver corporate service management tools, document management, compliance tracking, and workflow automation
• Customer Support: To respond to support requests, provide technical assistance, and troubleshoot platform issues
• Platform Improvement: To analyze usage patterns, develop new features, and enhance user experience
• Data Processing: To process, store, and organize your business data within our secure cloud infrastructure
• Communication: To send platform notifications, feature updates, security alerts, and service-related communications
• Billing and Payments: To process subscriptions, manage billing cycles, and handle payment transactions
• Legal Compliance: To comply with applicable laws, regulations, and legal obligations
• Security: To protect platform security, prevent fraud, detect abuse, and ensure data integrity
• Marketing: To send promotional materials about platform features and services (with your consent and opt-out options)

We may share your personal data with:

• Cloud Service Providers: Trusted infrastructure partners who host our SaaS platform and provide secure data storage
• Technology Partners: Third-party service providers for payment processing, analytics, security monitoring, and platform integrations
• Professional Advisors: Lawyers, auditors, and consultants bound by confidentiality obligations
• Government Authorities: Regulatory bodies as required by law or legal process
• Business Partners: Authorized integration partners who help extend platform functionality under strict data protection agreements
• Legal Requirements: When required by court orders, legal proceedings, or other legal obligations
• Platform Users: Other users within your organization's account (according to your configured access permissions)

We do not sell, trade, or rent your personal data to third parties for marketing purposes. All data sharing is conducted under strict confidentiality and data protection agreements.

We implement comprehensive security measures to protect your personal data on our SaaS platform:

• Cloud Security: Enterprise-grade cloud infrastructure with industry-standard encryption, secure data centers, and redundant backup systems
• Data Encryption: End-to-end encryption for data in transit and at rest, including TLS/SSL protocols and AES-256 encryption
• Access Controls: Multi-factor authentication, role-based permissions, and session management to control platform access
• Security Monitoring: Real-time threat detection, intrusion prevention systems, and continuous security monitoring
• Data Backup: Automated daily backups, disaster recovery procedures, and business continuity planning
• Compliance: Regular security audits, penetration testing, and compliance with industry security standards
• Incident Response: Procedures for detecting, responding to, and reporting security incidents and data breaches
• Employee Training: Security awareness training and strict access controls for our team members

We are committed to protecting the sovereignty and confidentiality of your client data with the highest standards:

• Exclusive Ownership: Your client data remains exclusively yours. We never claim ownership, rights, or interests in your client information beyond providing our platform services
• No Competitive Use: We strictly prohibit using your client data for business development, lead generation, competitive intelligence, or any form of business solicitation
• Legal Compliance Only: Your client data will only be accessed, processed, or disclosed when specifically required by law, court order, or regulatory authority
• Data Isolation: Client data from different organizations is completely isolated and segregated within our platform infrastructure
• Access Restrictions: Only authorized personnel with legitimate business needs (technical support, security, legal compliance) can access client data under strict protocols
• Audit Trails: All access to client data is logged and monitored, with comprehensive audit trails maintained for accountability
• Data Anonymization: Any platform analytics or performance monitoring uses only anonymized, aggregated data that cannot identify specific clients or organizations
• No Third-Party Sharing: Client data is never shared with marketing agencies, business partners, or other third parties for commercial purposes
• Employee Agreements: All our employees sign strict confidentiality and non-disclosure agreements specifically protecting client data sovereignty
• Regional Compliance: Client data processing complies with local data protection laws and sovereignty requirements in your jurisdiction

Your Trust is Our Foundation: We understand that your clients' trust in you depends on absolute confidentiality. Our entire business model is built on being your technology partner, never your competitor. Violating client data sovereignty would fundamentally undermine our relationship and business model.

We retain your personal data only as long as necessary for:

• Providing our SaaS platform services and maintaining your account
• Fulfilling the purposes for which the data was collected
• Complying with legal and regulatory requirements (minimum retention periods as required by law)
• Resolving disputes, enforcing our agreements, and protecting our legal rights
• Maintaining platform functionality and providing customer support
• Backup and disaster recovery purposes (with automatic deletion schedules)

When you cancel your subscription or delete your account, we will delete your personal data according to our data retention schedule, typically within 90 days, unless longer retention is required by law. Backup data may persist for up to one year for disaster recovery purposes.

Our website and SaaS platform use cookies and similar technologies to enhance your experience:

• Essential Cookies: Required for platform functionality, user authentication, and security
• Analytics Cookies: Help us understand platform usage patterns to improve features and performance
• Functional Cookies: Remember your preferences, settings, and platform customizations
• Session Cookies: Maintain your login session and platform state during use
• Performance Cookies: Monitor platform performance and identify optimization opportunities
• Marketing Cookies: Used to deliver relevant advertisements and track marketing campaign effectiveness (with your consent)

You can manage your cookie preferences through your browser settings. However, disabling certain cookies may affect platform functionality and your ability to use specific features.

Under Singapore's PDPA, you have the following rights:

• Right to Access: Request information about personal data we hold about you
• Right to Correction: Request correction of inaccurate or incomplete personal data
• Right to Withdraw Consent: Withdraw consent for data processing where consent is the legal basis
• Right to Data Portability: Request transfer of your data in a structured format
• Right to Object: Object to data processing for direct marketing purposes

To exercise these rights, please contact us using the details provided below. We will respond to your request within 30 days as required by PDPA.

Our SaaS platform may integrate with third-party services to enhance functionality. This Privacy Policy does not apply to:

• Third-party business software and applications integrated with our platform
• External payment processors and billing systems
• Business intelligence and analytics tools connected to your account
• Cloud storage services and file sharing platforms
• Social media platforms and their embedded content
• Third-party websites linked from our platform or documentation

We carefully vet our integration partners and require them to maintain appropriate data protection standards. However, we encourage you to review the privacy policies of any third-party services you connect to our platform.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Providing notice through our service communications

Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.