Contact us
Team Calculator

Privacy policy

1. Who we are

VizServe Private Limited registered in Singapore. Business address: 10 Marina Boulevard #39-00 Marina Bay Financial Centre Singapore 018983.

Data Protection Officer: [name].

Contact: info@vizserve.com | +65 9726 7986.

2. Scope

This policy explains how we collect, use, disclose, secure, and retain personal data from visitors, users, and customers of www.vizserve.com. It also explains your rights and choices.

It also applies to all services, platforms, and tools operated by VizServe that link to this Privacy Policy.

3. Information collection

3.1 Data you provide

We collect the following through forms, chat, email, and support tickets:

  • Contact details, full name, email, phone
  • Account data, username, passwords
  • Billing data, address, invoices, partial payment data from our payment processors
  • User content, messages, uploaded files, form responses
  • Preferences, marketing choices, communication settings
  • Any additional information voluntarily submitted through surveys, feedback, or service requests

3.2 Data we collect automatically

We collect the following when you use the site:

  • Device and log data, IP address, browser, OS, timestamps, pages viewed, referrer URLs
  • Usage data, clicks, scrolls, session duration
  • Approximate location, based on IP
  • Cookies and similar IDs, see Section 8
  • System logs, error logs, and diagnostic information for security and performance

3.3 Data from third parties

We receive data from:

  • Analytics, advertising, and attribution partners
  • Social platforms, if you link or authenticate
  • Payment processors for fraud checks and settlements
  • Service partners that help operate the site
  • Identity verification and fraud-prevention providers, where applicable

3.4 Purpose of collection

We collect personal data to:

  • Deliver and improve the site and services
  • Create and manage accounts
  • Process orders and payments
  • Provide support and respond to requests
  • Personalize content and features
  • Run analytics and measure performance
  • Run security, fraud detection, and debugging
  • Send service messages
  • Send marketing messages where permitted and with required consents
  • Meet legal and regulatory duties
  • Comply with contractual obligations and enforce our Terms of Service

4. Use of information

We use personal data only for the purposes stated at or before collection, or for related purposes allowed by law.

For Singapore, PDPA obligations include consent, purpose limitation, protection, and accuracy, among others. See PDPC guidance on the 11 obligations.

For Singapore, we rely on the following legal bases under the PDPA:

  • Consent or deemed consent
  • Legitimate interests’ exception (where benefits outweigh adverse effects)
  • Business improvement exception
  • Legal and emergency exceptions
  • Contractual necessity where applicable

For Australia, under the APPs, we collect personal data only when reasonably necessary for our functions and obtain consent where required (such as for sensitive information).

5. Disclosure of information

We share personal data in these cases:

  • Service providers. Hosting, storage, analytics, email, payments, customer support, content delivery. They act under contract and follow security and confidentiality duties.
  • Business partners. Only where needed to provide features you request or as permitted by law.
  • Legal. Courts, regulators, and law enforcement when required.
  • Business transfers. Financing, merger, acquisition, or sale of assets. We will ensure continued protection.
  • With your direction. For example, when you link a third-party service.

We do not sell personal data.

If your data is transferred as part of a business transaction, the receiving party will be required to provide an equal or higher level of data protection as described in this policy.

6. International transfers

We store and process data in Singapore, Philippines, and Australia.

When we transfer data across borders, we use safeguards required by applicable law.

For Singapore PDPA cross-border transfers, we ensure comparable protection through contractual clauses, binding agreements, and pre-transfer risk assessments.

For Australia, APP 8 applies to ensure overseas recipients follow privacy principles.

7. Data security

We use administrative, technical, and physical safeguards to reduce risks of loss, misuse, and unauthorized access:

  • Encryption in transit
  • Role-based access controls
  • Multi-factor authentication
  • Network and endpoint protection
  • Logging and monitoring
  • Secure development and change control
  • Vendor due diligence and DPAs
  • Staff training and confidentiality
  • Regular backups and tested recovery
  • Passwords are stored using strong one-way hashing and never in plain text.
  • System and access logs are retained in compliance with applicable laws.

8. Cookies and tracking technologies

8.1 What we use

  • Strictly necessary cookies. Provide core site features.
  • Functional cookies. Remember settings and preferences.
  • Analytics cookies. Measure usage and performance.
  • Advertising cookies. Deliver and measure ads, only where allowed.
  • Similar technologies. Web beacons, pixels, SDKs, local storage.

8.2 Your choices

  • Cookie banner and preference controls. Set or change preferences through our cookie settings link in the footer.
  • Browser settings. Block or delete cookies in your browser.
  • Analytics opt-outs. Follow the provider’s instructions where available.
  • Blocking some cookies may affect site features.

We apply cookie consent requirements based on your jurisdiction, including opt-in consent where required by law (e.g., Singapore PDPA for non-essential cookies).

9. Data retention

We keep data only as long as needed for stated purposes or legal requirements. We then delete or de-identify data.

Where applicable, sample retention periods include:

  • Billing and financial data: 5–7 years
  • Account data: retained while active and for a limited period after deletion
  • Logs: retained for operational and security purposes

10. Your rights

You have rights including access, correction, deletion, objection or restriction, portability where applicable, and withdrawal of consent.

How to exercise your rights: email [privacy email].

For Singapore PDPA, you may withdraw consent at any time. Withdrawal may limit access to certain features or services.

Jurisdiction-specific rights:

  • Philippines – Rights include to be informed, to access, to object, to rectify, to erasure or blocking, to damages, to data portability, and to file a complaint with the National Privacy Commission.
  • Singapore – Access and Correction, Data Portability when in force, withdrawal of consent, and other PDPA obligations apply.
  • Australia – Access and correction under the APPs. Lodge complaints with OAIC if needed.

11. Marketing communications

We send service emails and marketing messages with consent or as permitted.

You may withdraw marketing consent at any time using unsubscribe links.

12. Children’s privacy

Our services target a general audience.

We do not knowingly collect personal data from children under 13.

Parents or guardians who believe a child provided data should contact us. We will delete the data or obtain verifiable consent, based on law in your location.

13. Third-party links

Our site includes links to third-party websites or apps. Their privacy practices apply on those properties. Review their policies before sharing data.

14. Data breach response

We maintain an incident response plan.

We assess, contain, and remediate incidents.

We notify regulators and users where required:

  • Philippines. Notify the NPC and affected individuals within 72 hours upon knowledge or reasonable belief of a notifiable breach, with a full report to follow as required.
  • Singapore. Notify PDPC and affected individuals for notifiable breaches as soon as practicable, within 72 hours after assessment that notification is required.
  • Australia. Under the Notifiable Data Breaches scheme, notify OAIC and affected individuals as soon as practicable where serious harm is likely.

15. Data sharing with processors

We use vetted processors to support the site. Each processor follows security, confidentiality, and data protection obligations under contract. We keep a record of core processors.

16. Do Not Track

Some browsers send Do Not Track signals. Industry standards are not uniform. We honor rights provided by applicable laws and our cookie settings controls.

17. Policy changes

We will post updates on this page with a new effective date. If changes affect your rights in a material way, we will provide a clear notice through the site or by email before changes take effect. We review this policy at least once a year.

18. Contact

If you have questions, concerns, or requests related to this Privacy Policy or your personal data, you may contact us through the following:

Email: [privacy email]

Postal: [address]

Attn: Data Protection Officer

For filing complaints directly with your local regulator, you may refer to the following:

  • Philippines complaints, NPC
  • Singapore complaints, PDPC
  • Australia complaints, OAIC

Jurisdiction Addenda

The following addenda apply depending on your place of residence or where the data processing occurs. These provisions supplement, and do not replace, the main Privacy Policy.

A. Philippines – Data Privacy Act of 2012

  • Legal basis – We process personal data based on consent, contract, legal obligations, vital interests, or legitimate interests, in accordance with RA 10173 and its Implementing Rules and Regulations
  • Your rights – You have the right to be informed, access, object, rectify, erase or block, seek damages, data portability, and file a complaint with the NPC.
  • Breach notice – Notify NPC and affected data subjects within 72 hours when a notifiable breach occurs. Submit the full report within the period required by the NPC.
  • Supervisory authority – National Privacy Commission

We also ensure privacy impact assessments are conducted for high-risk processing activities as recommended by the NPC.

B. Singapore – Personal Data Protection Act

  • PDPA obligations – We comply with all PDPA obligations, including: accountability, notification, consent, purpose limitation, accuracy, protection, retention limitation, transfer limitation, access and correction, data breach notification, and data portability when in force.
  • Do Not Call (DNC) Registry – The DNC rules apply to specified marketing messages directed to Singapore telephone numbers.
  • Breach notice. Notify PDPC and affected individuals as soon as practicable, and within 72 hours after assessment for notifiable breaches.
  • Supervisory authority – Personal Data Protection Commission

We ensure the accuracy of personal data through periodic verification activities and provide means for users to update their information.

C. Australia – Privacy Act 1988 & Australian Privacy Principles (APPs)

  • APP compliance – We comply with all 13 APPs governing the collection, use, disclosure, governance, integrity, correction, and access to personal information.
  • Notifiable Data Breaches scheme – Notify OAIC and affected individuals as soon as practicable when a breach is likely to result in serious harm.
  • Supervisory authority – Office of the Australian Information Commissioner

We collect sensitive information only with express consent or where permitted by APP exceptions.

Date last updated: December 29, 2025
Scroll to Top