At 8am Business (“we”, “us”, “our”), we respect your privacy and are committed to protecting personal data in accordance with the Singapore Personal Data Protection Act 2012 (PDPA). This policy explains how we collect, use, disclose, and protect personal data in the course of our business.
1. Personal Data We Collect
We may collect personal data in a business context, including:
• Identity and Contact Data: Name, job title, and company name.
• Business Contact Information (BCI): Business email address and business contact number.
• Engagement Data: Information provided through enquiries, consultations, or training engagements.
• Technical Data: IP address and browser type for website security and optimization.
Note on BCI: Under the PDPA, Business Contact Information (e.g., your name and position used for business purposes) is generally not subject to the same consent requirements as other personal data. However, we treat all data with professional care.
2. How We Use Personal Data
We collect and use personal data for legitimate business purposes, including to:
• Respond to enquiries and manage professional communications.
• Deliver consulting, training, and AI-related services.
• Improve our services, website performance, and client experience.
• Comply with legal obligations or exercise legal rights.
Where required under the PDPA, we rely on your consent. In B2B contexts, we may also rely on "Legitimate Interests" or other applicable PDPA exemptions.
3. Use of AI Tools
We use AI-enabled tools internally to support service delivery, automation, and operational efficiency.
• Data Protection: We do not use client-identifiable or confidential business data to train third-party AI foundation models unless explicitly requested in writing.
• Human Oversight: We maintain human-in-the-loop oversight for AI-generated outputs that affect our clients.
4. Data Disclosure and Transfers
We do not sell personal data. We may disclose data to trusted third-party service providers (such as cloud hosting, CRM, or analytics providers) solely for business and operational purposes.
Where personal data is transferred outside Singapore, we ensure the receiving party is bound by legally enforceable obligations to provide a standard of protection comparable to that under the PDPA.
5. Data Accuracy and Retention
• Accuracy: We strive to ensure the personal data we hold is accurate and complete. We encourage you to notify us of any changes to your personal data.
• Retention: We retain personal data only for as long as necessary to fulfill business, legal, or contractual purposes. When no longer required, data is securely deleted or anonymized.
6. Data Protection and Breach Management
We implement reasonable administrative, technical, and organizational measures (such as encryption and access controls) to protect personal data.
In the event of a notifiable data breach, we will notify the Personal Data Protection Commission (PDPC) and affected individuals as required by the PDPA.
7. Your Rights
Under the PDPA, you have the following rights:
• Access and Correction: You may request access to or correction of your personal data held by us.
• Withdrawal of Consent: You may withdraw your consent for the collection, use, or disclosure of your data at any time by contacting our DPO. Please note that withdrawing consent may result in our inability to continue providing certain services to you.
8. Contact Us
For any questions regarding this policy or to exercise your rights, please reach out to our data protection function.
While a specific individual may be assigned this role, all enquiries should be directed to:
Attention: Data Protection Officer
Email: hello@8ambusiness.com