Privacy Policy

Last Updated: February 1, 2026

1. Introduction

speectralsa is committed to protecting the privacy and security of personal information provided to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with Singapore's Personal Data Protection Act 2012 (PDPA) and applicable data protection laws.

By using our services or website, you consent to the collection and use of information in accordance with this policy. If you have questions about our privacy practices, please contact us at [email protected].

2. Information We Collect

We collect personal data that you voluntarily provide when engaging our services or using our website. The types of information we may collect include:

  • Contact information (name, email address, phone number, business address)
  • Company information (business name, position, industry sector)
  • Project-related information (requirements, technical specifications, business context)
  • Communications with our team (emails, meeting notes, project discussions)
  • Payment information (processed through secure third-party payment processors)
  • Website usage data (IP address, browser type, pages visited, time spent on pages)

We collect this data through various means including our contact forms, email communications, client meetings, and automated technologies such as cookies.

3. How We Use Your Information

We process personal data for the following purposes:

  • Service Delivery: To provide our AI development and consulting services, communicate about projects, and deliver contracted work
  • Client Communication: To respond to inquiries, provide information about our services, and maintain ongoing professional relationships
  • Contract Performance: To fulfil our contractual obligations and manage client engagements
  • Business Operations: To maintain records, conduct internal administration, and improve our service offerings
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Website Improvement: To analyse website usage, improve user experience, and optimise our online presence

We process personal data based on legal grounds including consent, contract performance, legitimate interests, and legal compliance.

4. Data Retention

We retain personal data for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Specific retention periods include:

  • Client project data: Retained for duration of engagement plus 3 years for support purposes
  • Communication records: Retained for 5 years for business continuity and dispute resolution
  • Financial records: Retained for 7 years in accordance with Singapore tax requirements
  • Website analytics: Retained for 18 months for performance analysis

When personal data is no longer required, we securely delete or anonymise it in accordance with data protection principles.

5. Data Sharing and Disclosure

We do not sell, rent, or trade personal data to third parties. We may share personal data with:

  • Service Providers: Third-party vendors who assist with business operations (email services, cloud storage, payment processing) under strict confidentiality agreements
  • Professional Advisors: Legal counsel, accountants, and other professional advisors when necessary for business operations
  • Legal Authorities: Government agencies or regulatory bodies when required by law or to protect our legal rights
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred subject to confidentiality requirements

All third parties with whom we share data are required to maintain appropriate security measures and use data only for specified purposes.

6. Data Security

We implement appropriate technical and organisational measures to protect personal data from unauthorised access, disclosure, alteration, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Secure server infrastructure with regular security updates
  • Access controls limiting data access to authorised personnel only
  • Regular security assessments and monitoring
  • Secure backup procedures and disaster recovery planning
  • Staff training on data protection and security practices

While we implement strong security measures, no system can be completely secure. We cannot guarantee absolute security of data transmitted over the internet.

7. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience and analyse website usage. For detailed information about our cookie practices, please see our Cookie Policy.

You can manage cookie preferences through your browser settings or our cookie consent tool. Disabling certain cookies may affect website functionality.

8. Your Rights and Choices

Under Singapore's PDPA, you have the following rights regarding your personal data:

  • Right to Access: Request confirmation of what personal data we hold about you and obtain a copy
  • Right to Correction: Request correction of inaccurate or incomplete personal data
  • Right to Withdraw Consent: Withdraw consent for data processing where consent is the legal basis
  • Right to Data Portability: Request transfer of personal data in a structured, commonly used format
  • Right to Object: Object to processing based on legitimate interests

To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days as required by PDPA. Certain limitations may apply to these rights as permitted by law.

9. International Data Transfers

Our operations are primarily based in Singapore. If we transfer personal data outside Singapore, we ensure appropriate safeguards are in place including standard contractual clauses, adequacy decisions, or other mechanisms approved by the Personal Data Protection Commission.

We work with cloud service providers whose infrastructure may be located in various jurisdictions. We ensure all such providers maintain adequate data protection standards.

10. Children's Privacy

Our services are directed to business professionals and organisations. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that we have collected personal data from a minor, we will take steps to delete such information.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website with a revised "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Email: [email protected]
  • Address: speectralsa, 1 George Street, #10-01, One George Street, Singapore 049145
  • Phone: +65 6395 1847

If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with the Personal Data Protection Commission of Singapore.