Privacy Policy

1. Introduction

Pathwright ("we," "our," or "us") operates as an AI integration consulting service based in Singapore. We are committed to protecting your personal data and respecting your privacy rights. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or engage our services.

This policy applies to all personal data collected through our website at pathwrighta.info, during consultations, and throughout service engagements. We comply with the Singapore Personal Data Protection Act 2012 (PDPA) and related regulations.

For questions about this policy or our data practices, please contact us at [email protected].

2. Information We Collect

2.1 Personal Data You Provide

We collect information that you voluntarily provide when you:

• Submit inquiry forms through our website (name, email address, phone number, message content)
• Request consultations or engage our services (business name, position, company details, project requirements)
• Communicate with us via email or phone (correspondence content, communication records)
• Attend workshops or events (registration details, attendance records)

2.2 Service Engagement Information

During pathfinding assessments and route development services, we collect:

• Organizational process information and workflow documentation
• Operational data relevant to AI integration planning
• Technical specifications of existing systems and infrastructure
• Project progress information and implementation notes

2.3 Automatically Collected Information

When you visit our website, we automatically collect:

• Technical information (IP address, browser type, device information, operating system)
• Usage data (pages visited, time spent, referring websites, click patterns)
• Cookie data as described in our Cookie Policy

3. How We Use Your Information

3.1 Service Delivery

We use your personal data to:

• Respond to inquiries and schedule consultations
• Perform pathfinding assessments and route development services
• Communicate about project progress and deliverables
• Provide ongoing support during and after service engagements
• Generate invoices and process payments

3.2 Business Operations

We process data for:

• Website functionality improvement and user experience optimization
• Security monitoring and fraud prevention
• Legal compliance and record-keeping requirements
• Internal research to enhance our methodologies

3.3 Marketing Communications

With your consent, we may send:

• Service updates and new offering announcements
• Educational content about AI integration practices
• Event invitations and workshop notifications

You may withdraw consent for marketing communications at any time by using the unsubscribe link in emails or contacting [email protected].

4. Legal Basis for Processing

Under Singapore PDPA, we process your personal data based on:

• Consent: When you provide information through forms or subscribe to communications
• Contractual Necessity: To fulfill our service agreements and deliver consulting engagements
• Legitimate Interests: For business operations, security, and service improvement where not overridden by your rights
• Legal Obligations: To comply with Singapore laws and regulations

5. Data Sharing and Disclosure

5.1 Service Providers

We may share data with trusted third parties who assist our operations:

• Cloud hosting providers for website and data infrastructure
• Email service providers for communication delivery
• Payment processors for financial transactions
• Analytics platforms for website usage understanding

All service providers are contractually bound to protect your data and use it only for specified purposes.

5.2 Legal Requirements

We may disclose information when required by Singapore law, court order, or regulatory authority, or to:

• Comply with legal processes and government requests
• Enforce our terms and conditions
• Protect our rights, property, or safety, and that of our clients
• Prevent fraud or security issues

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

• Encryption of data in transit and at rest using industry-standard protocols
• Secure servers with regular security audits and updates
• Access controls limiting data access to authorized personnel only
• Regular backups to prevent data loss
• Employee training on data protection practices
• Incident response procedures for potential security breaches

While we strive to protect your information, no electronic transmission or storage method is completely secure. We cannot guarantee absolute security but maintain commercially reasonable safeguards.

7. Data Retention

We retain personal data for different periods depending on its purpose:

• Inquiry information: 2 years from last contact unless service engagement begins
• Client project data: 7 years after project completion for legal and professional liability requirements
• Financial records: 7 years as required by Singapore accounting regulations
• Marketing consent records: Until withdrawal of consent plus 2 years
• Website analytics: 26 months from collection

After retention periods expire, we securely delete or anonymize data unless longer retention is required by law.

8. Your Rights Under Singapore PDPA

You have the following rights regarding your personal data:

8.1 Right to Access

Request copies of your personal data we hold. We will provide this within 30 days of verification.

8.2 Right to Correction

Request correction of inaccurate or incomplete personal data. We will verify and correct within reasonable timeframes.

8.3 Right to Withdraw Consent

Withdraw consent for data processing where consent is the legal basis. This does not affect processing that occurred before withdrawal.

8.4 Right to Data Portability

Request personal data in a structured, commonly used format for transfer to another service provider where technically feasible.

To exercise these rights, contact us at [email protected] with:

• Full name and contact details
• Description of your request
• Proof of identity for verification

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance functionality and user experience. We use:

• Essential Cookies: Required for website operation and security (always active)
• Analytics Cookies: Help understand website usage and improve services (optional)
• Marketing Cookies: Track effectiveness of advertising campaigns (optional)

For detailed information about cookies we use and how to manage preferences, see our Cookie Policy.

10. Third-Party Links

Our website may contain links to third-party websites, services, or resources. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing personal information. This Privacy Policy applies only to information collected through pathwrighta.info and our direct service engagements.

11. Children's Privacy

Our services are intended for businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that we have inadvertently collected data from a minor, we will take steps to delete it promptly. Parents or guardians who believe we may have information about a minor should contact [email protected].

12. International Data Transfers

While our operations are based in Singapore, some service providers may process data in other jurisdictions. When transferring data internationally, we ensure:

• Adequate safeguards are in place as required by Singapore PDPA
• Service providers comply with data protection standards equivalent to Singapore requirements
• Contractual protections govern international data transfers

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify active clients via email when changes significantly affect their rights
• Post a notice on our website homepage for 30 days

Continued use of our services after policy changes constitutes acceptance of the updated terms. We encourage periodic review of this policy.

14. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us: