Legal

Privacy Policy

Last updated: 2 June 2025

This Privacy Policy explains how AIQuest Pte. Ltd. (UEN 201847291B) (“AIQuest”, “we”, “us”) collects, uses, discloses, and protects personal data in accordance with the Personal Data Protection Act 2012 of Singapore (PDPA) and applicable laws.

1. Data controller

AIQuest Pte. Ltd.
391 Orchard Road, #12-08, Singapore 238872
Email: [email protected]
Phone: +65 6734 2918
Data Protection Officer: [email protected]

2. Personal data we collect

We may collect the following categories of personal data:

  • Identity and contact data: name, job title, company, email, phone number, billing address.
  • Enquiry and project data: solution interest, team size, budget range, consultation date preference, messages submitted via our contact form.
  • Technical data: IP address, browser type, device identifiers, cookies, and analytics events when you use our website.
  • Communications: records of email, phone, or meeting correspondence when you engage with our team.
  • Payment data: transaction references processed by third-party payment providers (we do not store full card numbers).

3. Purposes of collection, use, and disclosure

We collect and use personal data for purposes including:

  • Providing and administering AIQuest services, quest packages, and collection solutions;
  • Responding to enquiries and fulfilling contracts;
  • Improving our website, services, and security;
  • Sending service notices, programme updates, and marketing (where permitted);
  • Complying with legal obligations, audits, and dispute resolution;
  • Recruitment and employment (where applicable).

We may disclose personal data to service providers (hosting, analytics, payment, email), professional advisers, and authorities where required by law. We require processors to protect data under contractual safeguards.

4. Consent and withdrawal

Where consent is the legal basis, we seek clear consent before collection. You may withdraw consent for marketing at any time by contacting [email protected] or using unsubscribe links. Withdrawal does not affect processing already lawfully performed or processing based on other legal bases.

5. Cookies and tracking

Our website uses essential cookies for security and session management. With your consent, we may use analytics cookies to understand traffic patterns. You may manage preferences via our cookie banner or browser settings.

6. Retention

We retain personal data only as long as necessary for the purposes collected, including contractual, legal, and accounting requirements. Typical retention: enquiry records for up to twenty-four months unless a longer period is required for active projects; marketing contacts until withdrawal of consent plus 30 days; website logs up to 24 months unless a longer period is required for security investigations.

7. Cross-border transfers

Data may be processed in Singapore and other countries where our cloud providers operate. Where personal data is transferred outside Singapore, we implement appropriate safeguards such as standard contractual clauses or provider certifications consistent with PDPA requirements.

8. Your rights under the PDPA

Subject to exceptions in the PDPA, you have the right to:

  • Access personal data about you that we hold;
  • Request correction of inaccurate or incomplete data;
  • Withdraw consent where processing is consent-based;
  • Request information about how your data has been used or disclosed in the past year.

Submit requests to [email protected]. We respond within 30 days where practicable and may charge a reasonable fee for manifestly unfounded or excessive access requests as permitted by law.

9. Security

We implement administrative, technical, and physical safeguards including encryption in transit, access controls, logging, and staff training. No method of transmission over the Internet is fully secure; we encourage strong passwords and timely reporting of suspected incidents.

10. Data breach notification

If a data breach is likely to result in significant harm or affect a significant number of individuals, we will notify the Personal Data Protection Commission of Singapore and affected individuals as required by the PDPA.

11. Children

Our services are directed at business clients. We do not knowingly collect personal data from individuals under 18 without parental consent.

12. Third-party links

Our website may link to external sites. We are not responsible for their privacy practices. Review their policies before providing personal data.

13. Updates

We may update this policy to reflect legal or operational changes. Material changes will be posted on this page with a revised date. Continued use after changes constitutes acknowledgement where permitted.

14. Contact and complaints

For privacy questions or complaints, contact our DPO at [email protected]. If unresolved, you may lodge a complaint with the Personal Data Protection Commission of Singapore at www.pdpc.gov.sg.