Privacy Policy

1. Introduction

Cievo Pte. Ltd. (“Cievo”, “we”, “us”, or “our”) is committed to protecting your privacy and personal data in accordance with the Personal Data Protection Act 2012 of Singapore (“PDPA”). This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit our website at https://cievo.sg or use our services.

By using our website or services, you consent to the data practices described in this policy. If you do not agree with this Privacy Policy, please do not use our website or services.

2. Personal Data We Collect

We collect personal data that you voluntarily provide to us when you:

• Fill out our contact form (name, email address, and message content)
• Send us emails or other communications
• Request information about our products or services
• Enter into a service agreement with us

We may also automatically collect certain technical information:

• Browser preferences (such as dark mode selection stored in localStorage)
• Device and browser type (through standard web server logs)
• IP address (for security and geographical analysis)

3. Purpose of Data Collection

We collect and use your personal data for the following purposes:

• To respond to your inquiries and provide customer support
• To provide, maintain, and improve our mobile app development services
• To send you project updates and important service information
• To process and complete transactions you request
• To comply with legal obligations and enforce our agreements
• To protect against fraudulent or illegal activity
• To improve website functionality and user experience

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share your data only in the following circumstances:

• Service Providers: We use Formspree for form processing. When you submit our contact form, your data is processed through their secure servers in accordance with their privacy policy.
• Legal Requirements: We may disclose your data if required by law, court order, or government regulation.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity.
• Consent: We may share your data with your explicit consent.

For mobile app development projects, we maintain strict confidentiality and do not share client project data with third parties unless explicitly authorized.

5. Data Transfer Outside Singapore

Your personal data may be transferred to and processed in countries outside of Singapore for the following purposes:

• Form processing through Formspree (United States)
• Cloud infrastructure services for project delivery
• Collaboration with international development partners (with your consent)

We ensure that any transfer of personal data outside Singapore is done in compliance with the PDPA and that the receiving party provides a standard of protection comparable to the protection under the PDPA.

6. Data Security

We implement reasonable security arrangements to protect your personal data from unauthorized access, collection, use, disclosure, copying, modification, disposal, or similar risks. These measures include:

• SSL/TLS encryption for data transmission
• Secure storage of personal data with access controls
• Regular security assessments and updates
• Employee training on data protection practices
• Incident response procedures for potential data breaches

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Once the data is no longer needed for these purposes, we will take reasonable steps to securely delete or anonymize it. The specific retention period may vary depending on the nature of the data and our legal or business obligations.

8. Your Rights Under PDPA

Under the PDPA, you have the following rights regarding your personal data:

• Access: Request access to the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Withdrawal of Consent: Withdraw consent for the collection, use, or disclosure of your data
• Information: Request information on how your data has been used or disclosed in the past year

The PDPA also introduces a Data Portability Obligation, which allows individuals to request the transfer of their personal data to another organization in a structured format. This obligation will take effect once the relevant regulations are issued. We will comply with this requirement when it becomes legally enforceable.

To exercise these rights, please contact our Data Protection Officer at the contact information provided below. We may charge a reasonable fee for processing your request.

9. Cookies and Local Storage

Our website may use cookies, localStorage, or similar technologies to enhance your browsing experience and provide certain functionalities (for example, remembering your theme preference). These technologies are stored on your device and can usually be managed or cleared through your browser settings.

We do not use these technologies to track your activity across third-party websites. If we introduce additional cookies or analytics in the future, we will update this Privacy Policy and, where required by law, obtain your consent before such use.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe we have collected data from your child, please contact us immediately.

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website with a new effective date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

12. Data Protection Officer

13. Complaints

If you have concerns about how we handle your personal data, please contact our Data Protection Officer first. If you are not satisfied with our response, you may lodge a complaint with the Personal Data Protection Commission of Singapore at www.pdpc.gov.sg.