Privacy Policy

Overview

This Privacy Policy explains how Wealth AI Engine Pte. Ltd. (UEN 203031749M) collects, uses, discloses, and protects personal data when you visit wealthaiengine.one, submit contact forms, enrol in programmes, or attend sessions at 138 Market Street, #16-02 CapitaGreen, Singapore 048946. We comply with the Personal Data Protection Act 2012 (PDPA) of Singapore.

Data controller identity

Wealth AI Engine Pte. Ltd. is the organisation responsible for personal data processing. Our Data Protection Officer may be contacted at [email protected]. Postal address: 138 Market Street, #16-02 CapitaGreen, Singapore 048946. Phone: +65 6532 4472.

Categories of personal data collected

• Identity and contact data: full name, email address, telephone number, postal address, employer or company name, job title.
• Enrolment and attendance data: programme selections, cohort preferences, invoice references, attendance logs, certificate issuance records, skills assessment responses.
• Communication data: contact form submissions, email threads, support tickets, feedback surveys, alumni forum posts where applicable.
• Technical and usage data: IP address, browser user agent, device type, operating system, referring URL, pages viewed, session duration, cookie identifiers, consent timestamps.
• Educational exercise data: sample spreadsheets, AI prompt configurations, and anonymised coursework submitted during training — never real bank credentials.

We do not collect NRIC, passport numbers, full payment card numbers, or online banking credentials through this website. Payment processing is handled by third-party providers with separate privacy terms.

Purposes of collection and use

We process personal data for the following purposes: delivering AI financial management education and related administrative services; responding to enquiries about programmes, corporate training, and cohort registration; issuing invoices and managing enrolment contracts; sending schedule updates, policy notices, and service communications; conducting aggregated website analytics to improve user experience; maintaining security, fraud prevention, and abuse detection; complying with ACRA, tax, and other Singapore legal obligations; and exercising or defending legal claims where necessary.

PDPA legal bases and consent

Under the PDPA, we rely on: (a) consent — for contact forms, marketing communications where offered, and non-essential cookies; (b) contractual necessity — to perform enrolment agreements and deliver purchased courses; (c) legitimate interests — for network security, service improvement, and internal reporting, balanced against your rights; and (d) legal obligation — where Singapore law requires retention or disclosure.

You may withdraw consent by emailing [email protected]. Withdrawal does not affect prior lawful processing and may limit our ability to provide services requiring that data.

Disclosure to third parties

We may disclose personal data to: cloud hosting providers storing website and enrolment systems; email delivery services; payment processors; professional advisers under confidentiality obligations; corporate clients sponsoring employee enrolments where you are the nominated participant; and government authorities when required by law or court order. We do not sell, rent, or trade personal data to marketers.

Cross-border transfers

Some service providers may process data outside Singapore. Where this occurs, we require contractual protections ensuring standards comparable to the PDPA, including purpose limitation and security safeguards. You may request information about transfer locations by contacting [email protected].

Retention periods

Contact form submissions: up to three years from last interaction. Enrolment and attendance records: up to seven years for business, accounting, and dispute purposes. Marketing consent records: until withdrawal plus six months. Cookie consent logs: six months from last preference update. Server logs: up to twenty-six months in aggregated form. Educational sample submissions: deleted or anonymised within twelve months of course completion unless you request earlier deletion.

Individual rights under the PDPA

You have the right to: request access to personal data we hold about you; request correction of inaccurate or incomplete data; withdraw consent for processing based on consent; request information about how your data has been used and disclosed in the past year; and lodge a complaint with the Personal Data Protection Commission (PDPC) if you believe your rights have been infringed. Submit requests to [email protected]. We respond within thirty calendar days unless an extension is permitted.

PDPC contact

The Personal Data Protection Commission is Singapore's national privacy regulator. Website: pdpc.gov.sg. You may contact PDPC if we do not resolve your concern satisfactorily.

Cookies and similar technologies

We use cookies and local storage for essential functionality, consent management, and optional analytics. See our Cookie Policy for categories, durations, and opt-out instructions. Non-essential cookies require your consent via our banner.

Security measures

We implement HTTPS encryption, access controls, staff confidentiality training, vendor due diligence, and incident response procedures. No internet transmission is completely secure; please use strong passwords for any accounts we provide and notify [email protected] promptly of suspected breaches.

Automated decision-making

We do not use automated decision-making or profiling that produces legal or similarly significant effects on individuals. AI tools discussed in our courses are third-party services governed by their own policies.

Children and minors

Our services target adults aged eighteen and above. We do not knowingly collect personal data from minors without verified parental or guardian consent.

Data breach notification

If a data breach likely to cause significant harm occurs, we will notify PDPC and affected individuals as required under the PDPA, and take remedial steps to mitigate harm. Our incident response plan includes containment, assessment, notification, and post-incident review procedures documented internally.

Access request procedure

To submit a PDPA access or correction request, email [email protected] with your full name, contact details, and description of the data concerned. We may request reasonable identity verification before releasing records. We aim to respond within thirty days and will explain any permitted extension under the PDPA.

Processor relationships

Where we engage data processors, we impose contractual obligations requiring confidentiality, security measures, purpose limitation, and deletion upon contract termination. Processors may not subcontract without our approval except for standard cloud infrastructure providers operating under equivalent terms.

Changes to this policy

We may update this Privacy Policy to reflect legal, technical, or business changes. Material updates will be posted on wealthaiengine.one with a revised "Last updated" date. Continued use after changes constitutes acceptance where permitted by law.

Contact for privacy matters

Wealth AI Engine Pte. Ltd., 138 Market Street, #16-02 CapitaGreen, Singapore 048946. Email: [email protected]. Phone: +65 6532 4472.

Marketing communications

Where we send programme updates or alumni newsletters, we rely on consent or existing customer relationships under PDPA exceptions. Every marketing email includes an unsubscribe link. Unsubscribe requests are processed within ten business days.

Photography and recordings

In-person sessions at 138 Market Street, #16-02 CapitaGreen, Singapore 048946 may include optional group photography for internal training records. We obtain verbal consent before capture and do not use images for advertising without separate written permission.

Links to other websites

wealthaiengine.one may link to third-party AI tool providers, PDPC resources, or mapping services. We are not responsible for their privacy practices. Review their policies before submitting personal data on external sites.

Accuracy of personal data

You are responsible for providing accurate enrolment information. Notify us promptly of changes to contact details so we can deliver schedule updates and certificate correspondence correctly. We may request documentation to verify correction requests where fraud is suspected.

Research and aggregated statistics

We may produce anonymised, aggregated reports about course completion rates and tool usage trends for internal curriculum improvement. Aggregated reports cannot reasonably identify individuals and are not subject to access requests.

Questions and complaints timeline

We acknowledge privacy enquiries within five business days and aim to resolve straightforward access requests within thirty days. Complex requests involving archived enrolment records may require additional time permitted under the PDPA with written notice to you.

Version control

Previous versions of this policy may be available on request for a period of two years. The Last updated date at the top of this page indicates the current effective version published on wealthaiengine.one.