This policy is effective as of 21 June 2020.
1.2 The information on Users is divided into personally identifiable and non-personally identifiable information depending on whether information can identify the User as a specific person. Personally identifiable information shall be referred to as “personal data”.
1.3 Epiphany (PTE. LTD.) with its registered headquarters at, 160 ROBINSON ROAD, #24-09 SINGAPORE (068914), is responsible for compliance with the principles relating to processing of personal data. If you have any question or concern regarding your privacy, you can contact us at firstname.lastname@example.org.
1.4 In addition to the definitions provided for in the Terms, the following words and abbreviations shall have the meaning provided herein:
2.1 During your interaction with the Platform or with us directly we may process the following personal data:
2.2 We may collect personal data when you interact with the Platform, when you register and customize an account, or when you contact us. We may also collect some of the personal data about you from other Users such as when they want to invite you to use the Platform.
3.1 We process your personal data for the following purposes:
4.1 Depending on the type of personal data and the purpose for which it is processed, we process the personal data on the following legal basis:
4.2 We may process your email address to send you information about changes to the Platform, introduction of the new Services or general news about our Platform.
We have a legitimate interest in keeping you informed about the Services you subscribed to and to promote our new Services which we believe you might be interested in.
You can unsubscribe from these emails at any time by following the unsubscribe link in the email. We will not use legitimate interest to send you advertising emails for any Third-Party services.
4.3 We may process you IP address automatically when you access the Site. We have a legitimate interest in ensuring the safety and integrity of our Site, and by collecting your IP address we can scan IP address and ban IP addresses that show malicious signs such as too many password failures, seeking exploits and similar.
We will not use your IP address under our legitimate interest for any other purpose. If we need your IP address for other purpose, we will rely on other legal grounds or explain the new legitimate interest prior to commencing the processing.
5.1 Some Services will not be available to you if you do not provide requested personal data, for example, if you do not provide your name and email you cannot register an account. Different Services may require additional information which will be request at the time of requesting the specific Service.
5.2 We may keep records of any questions, complaints or compliments made by you and the response if any. Whenever you contact us, we shall collect any information which you chose to provide.
We shall store and use this information only for the purpose of responding to your inquiries. Information contained within the inquiry, free from any personally identifiable information, will be stored on our servers for the purpose of improving our Services and providing the best customer support possible.
In some instances, we are obliged to comply with court orders and government requests and provide information or parts of it to authorized bodies.
5.4 We have implemented security procedures and measures to ensure appropriate protection of the personal data we process, against any misuse, unauthorized access, disclosure, or modification.
5.5 We acknowledge that the safety of your personal data is one of the highest priorities and therefore only authorized processors have access to your information. Although we take all appropriate measures in respect to keeping your personal data secure, you understand that no data security measures in the world can offer 100% protection.
If we ever find or suspect a personal data breach we will without delay, within seventy-two (72) hours after becoming aware of it, notify the appropriate supervisory authority about the breach and Users where necessary.
5.6 The processing of the personal data is being performed automatically, without human intervention. However, whenever you contact us through email or Site contact form, the personal data within such communication will be handled and processed by a real person to provide you with the answers and support required.
6.1 The Platform collects a series of general data and information when a User or automated system calls up the Platform. This general data and information are stored in the server log files. Collected may be
6.2 We collect this information for breach investigation purposes. When using this information, we do not draw any conclusions about the User. Rather, this information is needed to:
The anonymous data of the server log files are stored separately from all personal data provided by a User.
7.1 Personal data will be stored on secure servers controlled and maintained in accordance with sufficient privacy safeguards.
We may store or transfer information on Users to processors located outside of European Union, provided that such processors implement appropriate and suitable safeguards regarding the security of personal information.
7.2 If you register an account with us, we will store your personal data for as long as you have an active account. We may keep your personal data for up to a year after your deactivation of the account in our backup in order to maintain the integrity of our backup storage data as well as in order to address any appeals or requests pursuant to your purchases.
8.1 We will process all personal data in line with Users’ rights, in particular their right, in certain circumstances, to:
8.2 You may exercise these rights by contact us at email@example.com
8.3 Where we are required to provide a copy of personal data this will be free of charge, however, any further copies requested may be subject to reasonable fee based on administration costs.
8.4 Where we stop processing personal data or delete User’s personal data, it will possibly mean that that particular User is unable to continue using or contributing to the provision of some of our Services, and they shall be notified accordingly.
8.5 Where a User requests to rectify or erase (except data required by any legal obligations) their personal data or restrict any processing of such personal data, we may be required to notify, certain Third-Parties to whom such personal data has been disclosed of such request.
8.6 Users may without prejudice to any other administrative or judicial remedy, lodge a complaint with supervisory authority, in particular in the EU member country of their habitual residence or place of the alleged infringement if the User considers that the processing of personal data relating to them infringes the GDPR.