Privacy Policy

1. Introduction

Tideknot Pte. Ltd. ("Tideknot", "we", "us", "our") is committed to protecting the personal data of individuals who interact with our website and programmes. This policy explains what data we collect, why we collect it, how it is used, and what rights you hold over that data.

This policy applies to all users of our website at tideknot.blog and individuals who enrol in or enquire about our financial education programmes in Singapore. It is governed by the Personal Data Protection Act 2012 (PDPA) of Singapore.

Questions about this policy may be directed to [email protected].

2. Data We Collect

We collect only the personal data necessary to deliver our programmes and communicate with enquirers. This includes:

• Identity data: Full name as provided through our contact or enrolment form.
• Contact data: Email address and phone number.
• Communication data: Messages sent through our contact form, including the content of your enquiry.
• Usage data: Information collected automatically through cookies about how you navigate our website — pages visited, session duration, referring source. This is collected only where you have consented to analytics cookies.
• Programme participation data: Notes relating to your participation in a Tideknot programme, including attendance and progress information where relevant.

We do not collect sensitive personal data (such as financial account details, identification numbers, or health information). We do not require payment through our website — programme fees are handled through separate secure channels upon confirmation of enrolment.

3. How We Collect Data

Personal data is collected through the following means:

• Our contact form on the Tideknot website
• Direct email or telephone communication
• Programme registration or confirmation exchanges
• Analytics cookies (where consented to) via standard web analytics tools

We do not purchase data from third-party data brokers or collect data from social media profiles.

4. Legal Basis and Purpose of Processing

We process personal data under the following lawful bases:

• Consent: For analytics and marketing cookies, where you have explicitly opted in.
• Contractual necessity: To communicate with you about the programme you have enquired about or enrolled in.
• Legitimate interest: To respond to your enquiry and improve the quality of our services, where this does not override your rights.
• Legal obligation: Where required to comply with applicable Singapore law.

We use your data for the following purposes:

• Responding to your enquiry and providing programme information
• Processing enrolment and communicating programme logistics
• Sending relevant updates about cohort schedules or programme changes (you may opt out at any time)
• Improving the structure and content of our website through anonymised usage analysis

5. Data Retention

We retain personal data only for as long as necessary for the purpose for which it was collected:

• Enquiry data (no enrolment): up to 12 months from last contact, unless you request earlier deletion.
• Programme participant data: up to 3 years after programme completion, to support the follow-up session included in certain programmes and for administrative records.
• Analytics data: aggregated and anonymised; individual session data held no longer than 26 months.

After these periods, data is securely deleted or anonymised.

6. Data Protection Measures

We take reasonable and appropriate measures to protect personal data against unauthorised access, disclosure, alteration, and destruction:

• All data in transit is protected by TLS encryption.
• Access to personal data within Tideknot is restricted to staff with a direct operational need.
• We review our data handling processes periodically and update practices where improvements are identified.
• In the event of a data breach that poses a significant risk to affected individuals, we will notify the Personal Data Protection Commission (PDPC) and affected persons in accordance with the PDPA's mandatory breach notification requirements.

7. Cookies

We use cookies to support basic site functionality and, with your consent, to understand how visitors use our website. You can review the types of cookies we use and adjust your preferences at any time by visiting our Cookie Policy page.

8. Third-Party Data Sharing

We do not sell personal data. We may share data with the following categories of third parties where necessary:

• Service providers: IT infrastructure and email services who process data on our behalf under appropriate data processing agreements.
• Analytics providers: Where analytics cookies are consented to, anonymised usage data may be processed by analytics tools such as Google Analytics (data is anonymised and aggregated).
• Legal and regulatory bodies: Where required by law or to respond to lawful requests from Singapore authorities.

We do not share personal data with financial product providers, advertisers, or any third party for commercial purposes.

9. Your Rights

Under the PDPA, you have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Withdrawal of consent: Where processing is based on consent, withdraw that consent at any time. Withdrawal does not affect the lawfulness of prior processing.
• Data portability: Request that your data be provided in a commonly used machine-readable format where technically feasible.
• Erasure: Request deletion of your personal data where it is no longer necessary for us to retain it.
• Complaint: Lodge a complaint with the Personal Data Protection Commission of Singapore at pdpc.gov.sg.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

10. Children's Privacy

Our programmes are designed for adults aged 18 and above. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted personal data to us, please contact us at [email protected] and we will delete it promptly.

11. Third-Party Links

Our website may contain links to external sites. This policy does not apply to those sites and we are not responsible for their privacy practices. We recommend reviewing the privacy policy of any external site you visit.

12. Policy Updates

We may update this policy from time to time. Material changes will be communicated by posting the revised policy on this page with an updated date. Continued use of our website after changes constitutes acceptance of the updated terms.

13. Contact Us