Privacy Policy

Last Updated: February 2025

Our Commitment to Your Privacy

At Catalyst Partners, we understand that trust is the foundation of every successful business relationship. This Privacy Policy outlines our commitment to protecting your personal data and explains how we collect, use, store, and safeguard information in compliance with Singapore's Personal Data Protection Act (PDPA) and international data protection standards.

This policy applies to all personal data collected through our website, during consultations, and throughout our business engagements. We are committed to transparency in our data practices and ensuring your rights are protected.

Data Controller: Catalyst Partners
Address: 80 Robinson Road, Singapore 068898
Contact: [email protected]

Information We Collect

Personal Data You Provide

  • Contact Information: Name, email address, phone number, company name, job title
  • Business Information: Company details, industry sector, business challenges, project requirements
  • Communication Data: Messages sent through contact forms, email correspondence, consultation notes
  • Financial Information: Billing details for engaged services (processed through secure payment systems)
  • Professional Background: Resume/CV details if applying for positions or partnerships

Data Collected Automatically

  • Usage Data: Pages visited, time spent on site, navigation patterns, referral sources
  • Technical Data: IP address, browser type and version, device type, operating system
  • Cookie Data: Preferences, session information, analytics data (see our Cookie Policy)
  • Location Data: General geographic location based on IP address (country/city level)

Data from Third Parties

  • Professional networks and business directories
  • Publicly available company information
  • Referrals from existing clients or partners
  • Social media platforms where you engage with our content

How We Use Your Information

Service Delivery

  • Respond to inquiries and consultation requests
  • Deliver contracted consulting services
  • Manage client relationships and projects
  • Process payments and maintain financial records

Business Communications

  • Send project updates and deliverables
  • Share industry insights and thought leadership (with consent)
  • Notify about service enhancements or changes
  • Conduct client satisfaction surveys

Website Improvement

  • Analyze website usage patterns and user experience
  • Optimize content and navigation structure
  • Test new features and functionality
  • Ensure website security and performance

Legal Compliance

  • Meet regulatory requirements and legal obligations
  • Respond to government or regulatory requests
  • Protect our legal rights and interests
  • Prevent fraud and ensure security

Legal Basis for Processing

We process your personal data based on the following legal grounds:

Consent: For marketing communications, newsletter subscriptions, and optional data processing activities
Contract: To fulfill our obligations under consulting agreements and provide requested services
Legitimate Interest: For business operations, service improvements, and maintaining professional relationships
Legal Obligation: To comply with tax laws, regulatory requirements, and legal processes

Data Sharing and Disclosure

We maintain strict confidentiality and do not sell, rent, or trade your personal data. We may share information with:

Service Providers

  • Cloud hosting services (AWS Singapore region)
  • Email communication platforms
  • Analytics and monitoring services
  • Payment processing systems
  • Professional advisors (lawyers, accountants)

Business Transfers

In the event of a merger, acquisition, or business restructuring, personal data may be transferred as part of business assets, subject to the same privacy protections.

Legal Requirements

We may disclose data when required by law, court order, or government regulation, or to protect our rights, property, or safety.

Data Security Measures

We implement comprehensive security measures to protect your personal data:

Technical Safeguards

  • 256-bit SSL/TLS encryption for data transmission
  • Encrypted database storage with AES-256
  • Firewalls and intrusion detection systems
  • Regular security audits and penetration testing

Organizational Measures

  • Access controls and role-based permissions
  • Employee confidentiality agreements
  • Regular data protection training
  • Incident response procedures

Breach Notification: In the unlikely event of a data breach, we will notify affected individuals within 72 hours in compliance with PDPA requirements.

Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

Data Type Retention Period
Contact form submissions 3 years from last interaction
Client project records 5 years after project completion
Financial records 7 years (legal requirement)
Marketing preferences Until consent withdrawn
Website analytics 26 months

Your Data Protection Rights

Under the PDPA and applicable data protection laws, you have the following rights:

Right to Access

Request a copy of the personal data we hold about you and information about how we process it.

Right to Rectification

Request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

Request deletion of your personal data where there is no compelling reason for continued processing.

Right to Data Portability

Receive your personal data in a structured, commonly used, and machine-readable format.

Right to Object

Object to processing of your personal data for direct marketing or based on legitimate interests.

Right to Withdraw Consent

Withdraw consent for processing activities based on consent at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.

International Data Transfers

Your data may be transferred to and processed in countries outside Singapore for the purposes outlined in this policy. We ensure appropriate safeguards are in place:

  • Data processing agreements with standard contractual clauses
  • Transfers only to countries with adequate data protection laws
  • Encryption and security measures during transfer
  • Limited access on a need-to-know basis

Contact Our Data Protection Team

For questions about this privacy policy, to exercise your rights, or to file a complaint:

Email: [email protected]

Phone: +65 6924 1876

Address: 80 Robinson Road, Singapore 068898

You may also lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore at www.pdpc.gov.sg