Privacy Policy
SafeSync Pte Ltd
Effective Date: June 13, 2025
1. Introduction
SafeSync Pte Ltd ("SafeSync," "we," "us," or "our") is committed to protecting the privacy and security of personal data. As a Singapore-based cybersecurity company, we understand the critical importance of data protection and maintaining the highest standards of security practices.
This Privacy Policy explains how we collect, use, disclose, and protect personal data in compliance with the Personal Data Protection Act 2012 (PDPA) of Singapore and other applicable data protection laws.
2. Information We Collect
2.1 Personal Data
We may collect the following types of personal data:
Client and Business Contact Information:
- Names, job titles, and contact details (email addresses, phone numbers)
- Company information and business addresses
- Professional credentials and certifications
Service-Related Data:
- Technical information about systems, networks, and security infrastructure
- Security incident reports and vulnerability assessments
- Audit logs and security monitoring data
- Communication records related to our services
Website and Communication Data:
- IP addresses, browser information, and device identifiers
- Website usage patterns and preferences
- Email communications and support requests
2.2 Sensitive Personal Data
In the course of providing cybersecurity services, we may encounter sensitive personal data belonging to our clients' systems. We handle such data with the utmost care and in accordance with strict security protocols.
3. How We Use Personal Data
We use personal data for the following purposes:
3.1 Service Delivery
- Providing cybersecurity consulting, assessment, and monitoring services
- Conducting security audits and vulnerability assessments
- Incident response and forensic analysis
- Risk management and compliance consulting
3.2 Business Operations
- Client relationship management and communication
- Contract administration and billing
- Legal compliance and regulatory reporting
- Business development and marketing (with appropriate consent)
3.3 Security and Legal Requirements
- Protecting our systems and clients' data from security threats
- Complying with legal obligations and regulatory requirements
- Preventing fraud and unauthorized access
- Maintaining audit trails and security logs
4. Data Sharing and Disclosure
4.1 Limited Disclosure
We do not sell, rent, or trade personal data. We may share personal data only in the following circumstances:
Service Providers:
- Trusted third-party vendors who assist in delivering our services under strict confidentiality agreements
- Cloud service providers and technology partners with appropriate security measures
Legal Requirements:
- When required by law, court order, or regulatory authorities
- To protect our legal rights or respond to legal claims
- In cases of suspected criminal activity or security breaches
Business Transfers:
- In connection with mergers, acquisitions, or asset sales, subject to continued privacy protection
4.2 International Transfers
When transferring personal data outside Singapore, we ensure adequate protection through:
- Adequacy decisions by the Personal Data Protection Commission
- Standard contractual clauses or binding corporate rules
- Explicit consent where required
5. Data Security Measures
As a cybersecurity company, we implement industry-leading security measures:
5.1 Technical Safeguards
- Advanced encryption for data at rest and in transit
- Multi-factor authentication and access controls
- Regular security assessments and penetration testing
- Secure development practices and code reviews
- Network segmentation and monitoring systems
5.2 Organizational Measures
- Strict access controls based on need-to-know principles
- Regular security training for all employees
- Incident response procedures and breach notification protocols
- Vendor security assessments and contract requirements
- Regular policy reviews and updates
5.3 Physical Security
- Secure facilities with controlled access
- Surveillance systems and environmental controls
- Secure disposal of physical media and documents
6. Data Retention
We retain personal data only as long as necessary for:
- Fulfilling the purposes for which it was collected
- Meeting legal and regulatory requirements
- Maintaining security and audit records
- Resolving disputes and enforcing agreements
Specific retention periods vary based on data type and applicable legal requirements, typically ranging from 3 to 7 years for business records and security logs.
7. Your Rights
Under the PDPA and other applicable laws, you have the right to:
7.1 Access and Correction
- Request access to your personal data in our possession
- Request correction of inaccurate or incomplete data
- Receive information about how your data is being used
7.2 Data Portability and Deletion
- Request transfer of your data in a structured format (where technically feasible)
- Request deletion of your personal data (subject to legal and business requirements)
- Withdraw consent for processing based on consent
7.3 Objection and Restriction
- Object to processing for direct marketing purposes
- Request restriction of processing in certain circumstances
- Lodge complaints with relevant data protection authorities
8. Cookies and Tracking Technologies
Our website may use cookies and similar technologies to:
- Enhance user experience and website functionality
- Analyze website traffic and usage patterns
- Provide personalized content and recommendations
- Ensure website security and prevent fraud
You can manage cookie preferences through your browser settings.
9. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites and encourage you to review their privacy policies.
10. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in:
- Our business practices and services
- Legal and regulatory requirements
- Technology and security measures
We will notify you of material changes through our website or direct communication.
11. Contact Information
For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
SafeSync Pte Ltd
Email: rohan@safesync.ai
Data Protection Officer:
Email: rohan@safesync.ai
We are committed to addressing your privacy concerns promptly and transparently.
12. Governing Law
This Privacy Policy is governed by the laws of Singapore, including the Personal Data Protection Act 2012 (PDPA) and other applicable data protection regulations.
This Privacy Policy demonstrates our commitment to protecting your privacy while maintaining the highest standards of cybersecurity. For the most current version, please visit our website.