Privacy Policy

Last Updated: 18 January 2026

1. Introduction

Shaminder Technologies ("we", "us", "our") operates the website shaminder.sg. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit our website or use our services, in compliance with the Personal Data Protection Act 2012 (PDPA) of Singapore.

By using our website or services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your personal data as described herein.

2. Personal Data We Collect

We collect the following categories of personal data:

2.1 Information You Provide Directly

• Contact Information: Name, email address, phone number, company name
• Business Information: Industry, business requirements, project details
• Communication Records: Messages sent via contact forms, chatbot, email, or WhatsApp
• Payment Information: Billing details for service payments (processed through secure payment providers)

2.2 Information Collected Automatically

• Device Information: Browser type, operating system, device type
• Usage Data: Pages visited, time spent on pages, click patterns
• Technical Data: IP address, referring URL, access times
• Cookies: As described in Section 10 below

2.3 Information from Third Parties

• Information from business partners or referral sources (with your consent)
• Publicly available business information

3. Purposes for Collection, Use, and Disclosure

In accordance with the PDPA's Purpose Limitation Obligation, we collect, use, and disclose your personal data only for the following purposes:

Purpose	Legal Basis under PDPA
Responding to your enquiries and requests	Consent / Contractual necessity
Providing our services to you	Contractual necessity
Processing payments and invoicing	Contractual necessity
Sending service updates and project communications	Contractual necessity
Sending marketing communications (with consent)	Consent
Improving our website and services	Legitimate business interest
Complying with legal obligations	Legal requirement
Protecting our legal rights and interests	Legitimate business interest

4. Consent

In accordance with the PDPA's Consent Obligation:

• We obtain your consent before collecting, using, or disclosing your personal data, unless an exception under the PDPA applies.
• By submitting your information through our website, chatbot, or other channels, you consent to the collection and use of your personal data for the purposes stated.
• You may withdraw your consent at any time by contacting us. However, withdrawal of consent may affect our ability to provide certain services to you.
• We will inform you of the likely consequences of withdrawing consent.

5. Disclosure of Personal Data

We may disclose your personal data to the following categories of recipients:

5.1 Service Providers

• Web hosting providers
• Email service providers
• Payment processors
• Analytics providers (Google Analytics)
• Cloud storage providers (Google Sheets for lead management)

5.2 Professional Advisors

• Accountants, auditors, and legal advisors as necessary

5.3 Legal and Regulatory Authorities

• When required by law or to protect our legal rights
• In response to lawful requests by public authorities

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not sell your personal data to third parties.

6. Transfer of Personal Data Outside Singapore

In accordance with the PDPA's Transfer Limitation Obligation, your personal data may be transferred to, and processed in, countries outside Singapore. This includes:

• Cloud service providers with servers located overseas
• Third-party service providers operating internationally

Where we transfer personal data outside Singapore, we ensure that:

• The recipient country provides a comparable standard of protection to the PDPA; or
• We have obtained your consent for the transfer; or
• Contractual arrangements are in place to ensure adequate protection of your personal data.

7. Retention of Personal Data

In accordance with the PDPA's Retention Limitation Obligation:

• We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected.
• For clients, we retain project-related data for a minimum of 7 years for legal and accounting purposes.
• Marketing contact data is retained until you withdraw consent or request deletion.
• Website analytics data is retained for up to 26 months.

When personal data is no longer required, we will securely dispose of or anonymize it.

8. Protection of Personal Data

In accordance with the PDPA's Protection Obligation, we implement appropriate technical and organisational measures to protect your personal data against:

• Unauthorized access, collection, use, disclosure, or similar risks
• Accidental loss, destruction, or damage

Our security measures include:

• SSL/TLS encryption for data transmission
• Secure hosting infrastructure
• Access controls limiting who can access personal data
• Regular security reviews and updates
• Secure disposal of data when no longer needed

9. Your Rights Under the PDPA

Under Singapore's PDPA, you have the following rights:

9.1 Right of Access

You may request access to your personal data that we hold. We will respond to your request within 30 days and may charge a reasonable fee for processing the request.

9.2 Right of Correction

You may request correction of any personal data that is inaccurate or incomplete. We will correct the data within 30 days of receiving sufficient information to process your request.

9.3 Right to Withdraw Consent

You may withdraw your consent for us to collect, use, or disclose your personal data at any time by contacting us. Note that this may affect our ability to provide services to you.

9.4 Right to Data Portability

Where applicable under the PDPA data portability provisions, you may request to receive your personal data in a commonly used format or have it transmitted to another organization.

10. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience.

10.1 Types of Cookies We Use

Cookie Type	Purpose
Essential Cookies	Required for website functionality
Analytics Cookies	Help us understand how visitors use our site (Google Analytics)
Preference Cookies	Remember your settings and preferences

10.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality. For more information about managing cookies, visit www.allaboutcookies.org.

11. Chatbot and Lead Collection

Our website features an AI chatbot that collects information to help us serve you better:

• Data Collected: Name, email, phone number, service interests
• Purpose: To respond to your enquiries and provide relevant information
• Storage: Data is securely stored in Google Sheets with restricted access
• Retention: Lead data is retained for up to 2 years unless you request deletion earlier

By using the chatbot, you consent to this data collection. You may contact us to access, correct, or delete your chatbot data.

12. Do Not Call (DNC) Registry

In compliance with Singapore's Do Not Call Registry provisions under the PDPA:

• We will not send marketing messages to Singapore telephone numbers registered with the DNC Registry unless we have your clear and unambiguous consent.
• If you wish to opt out of marketing communications, contact us at hello@shaminder.sg or use the unsubscribe option in our emails.

13. Data Breach Notification

In accordance with the PDPA's mandatory data breach notification requirements:

• We have procedures in place to detect, investigate, and respond to data breaches.
• If a data breach is likely to result in significant harm to affected individuals, we will notify the Personal Data Protection Commission (PDPC) and affected individuals as soon as practicable.
• Notification will be made within 3 calendar days of assessing that the breach is notifiable.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read the privacy policies of any third-party sites you visit.

15. Children's Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such information, please contact us immediately.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this Privacy Policy periodically.

For significant changes that affect how we handle your personal data, we will endeavour to notify you directly where possible.

17. Complaints

If you have concerns about how we handle your personal data, please contact us first:

• Email: hello@shaminder.sg
• WhatsApp: +65 9813 7066

If you are not satisfied with our response, you may lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore:

• Website: www.pdpc.gov.sg
• Email: info@pdpc.gov.sg

18. Contact Us

For any questions, requests, or concerns regarding this Privacy Policy or your personal data, please contact our Data Protection Officer: