Privacy
Privacy Policy
Last updated: 2026-07-01 · Learn AI Singapore Pte. Ltd. (UEN 202518921M)
1. Introduction
Learn AI Singapore Pte. Ltd. ("Learn AI Singapore", "we", "us") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit learnaisingapore.one, submit enquiries, enrol in learning tracks, or attend sessions at our Fusionopolis learning studio in Singapore. We comply with the Personal Data Protection Act 2012 (PDPA) of Singapore.
By using our website or services, you acknowledge this policy. If you disagree, please do not submit personal data through our forms.
2. Data controller
Learn AI Singapore Pte. Ltd.
UEN 202518921M
1 Fusionopolis Place, #07-10 Galaxis, Singapore 138522
Email: [email protected]
Phone: +65 6708 9215
3. Personal data we collect
3.1 Information you provide
- Contact details: name, email, phone, company (if supplied)
- Enquiry and enrolment content: messages, subject selections, cohort preferences
- Billing data: billing address, payment references (processed via third-party payment providers — we do not store full card numbers)
- Skills review notes you share for facilitator feedback
- PDPA consent records tied to form submissions
3.2 Information collected automatically
- Device and browser type, IP address, pages viewed, referral URLs
- Cookie identifiers where you accept optional analytics or marketing cookies
- Timestamps and session logs for security and troubleshooting
3.3 Information from third parties
We may receive enrolment confirmations from corporate HR contacts you authorise, or payment status from processors. We do not purchase personal data lists.
4. Purposes of collection
We use personal data to:
- Respond to course enquiries, syllabus requests, and corporate training leads
- Administer learning tracks, cohort schedules, and studio access at Galaxis
- Deliver facilitator feedback, skills reviews, and alumni forum access
- Process fees quoted in SGD and issue receipts
- Improve website content and optional analytics (with consent)
- Comply with legal obligations and resolve disputes
- Send service notices — not unrelated marketing without consent
5. Legal basis & consent
Under the PDPA, we rely on consent (explicit checkbox on contact forms), contractual necessity (enrolment agreements), and legitimate interests (site security, fraud prevention) where appropriate. You may withdraw consent for optional processing by emailing [email protected]; withdrawal does not affect prior lawful processing.
6. Disclosure to third parties
We may share data with:
- Email and hosting providers operating under confidentiality terms
- Payment processors for SGD transactions
- Professional advisers (lawyers, accountants) when required
- Authorities if compelled by Singapore law
We do not sell personal data. Cross-border transfers, if any, use contractual safeguards consistent with PDPA requirements.
7. Retention
Enquiry records: up to 24 months unless an enrolment follows. Enrolment and billing records: up to seven years for accounting. Cookie consent choices: six months in your browser local storage. Skills review notes: up to 24 months unless you request earlier deletion and no dispute exists.
8. Security
We apply access controls, encrypted transport (HTTPS), and staff training on PDPA obligations. No method is perfectly secure; report concerns to [email protected] promptly.
9. Your PDPA rights
You may request access, correction, or withdrawal of consent subject to legal exceptions. Contact [email protected] with proof of identity. We respond within thirty days where practicable.
10. Children
Our vocational courses target adults. We do not knowingly collect data from persons under sixteen without guardian consent.
11. Third-party links & AI tools
Our site links to external resources. Their privacy practices differ from ours. Classroom demonstrations may use ChatGPT, Copilot, Claude, or Gemini — do not paste sensitive personal data into those tools during exercises unless the facilitator instructs otherwise.
12. Changes
We may update this policy; the date at the top will change. Material changes to enrolled learners will be communicated by email where appropriate.
13. Contact
Privacy questions: [email protected]
General: [email protected]
1 Fusionopolis Place, #07-10 Galaxis, Singapore 138522
14. Marketing communications
We send promotional email only where you opt in — for example by ticking a separate marketing box during enrolment or alumni forum signup. Service emails about cohort schedules, payment receipts, or policy updates are not marketing and may be sent under contractual necessity. Every marketing message includes an unsubscribe link processed within ten business days.
15. Do Not Call & telemarketing
We honour Singapore Do Not Call Registry preferences for voice and text marketing. Operational calls about your booking are exempt. If you believe we contacted you improperly, email [email protected] with the number and date.
16. Data breach notification
If a breach likely causes significant harm, we will notify affected individuals and the Personal Data Protection Commission as required. We maintain incident response steps: contain, assess, notify, remediate. You may report suspected issues to [email protected].
17. Cohort photography & recordings
Live sessions may be recorded for absent learners with notice. Photos for marketing require separate consent forms at the studio — default is no publication of your likeness. Corporate workshops follow the client's media policy when agreed in writing.
18. Automated decision-making
We do not use personal data for solely automated decisions with legal or similarly significant effects. Facilitator assessments involve human judgment. Optional analytics aggregate trends without profiling enrolment eligibility.
19. Glossary
Personal data means data about an identifiable individual. Processing includes collection, storage, use, and disclosure. Consent must be voluntary and informed under the PDPA. Data intermediary means vendors processing data on our instructions.
20. Enrolment records
When you join a learning track, we collect attendance logs, exercise submissions you choose to share, facilitator feedback, and assessment notes. These records support certificate issuance and quality improvement. They are accessible to assigned facilitators and administrative staff under role-based access. We do not publish learner rankings or comparative scores publicly.
Corporate cohorts may require rosters from your employer — we process those lists under instruction from your HR contact and delete surplus fields not needed for studio access badges.
21. Payment data
Card payments are handled by PCI-compliant processors. We receive confirmation tokens, last four digits, and transaction IDs — never full card numbers on our servers. Bank transfers display our UEN 202518921M on invoices for reconciliation. Refund processing reuses the original payment channel where possible.
22. Website logs
Server logs retain IP addresses, user agents, and requested URLs for up to ninety days for security monitoring. Logs may be analysed in aggregate to detect abuse patterns. We do not combine logs with marketing profiles without optional cookie consent.
23. International learners
Our primary audience is Singapore residents; online cohorts may include participants abroad. Data still resides on infrastructure selected for reliability; cross-border transfers follow PDPA accountability measures and vendor contractual clauses.
24. Complaints
If you are dissatisfied with our response to a privacy request, you may contact the Personal Data Protection Commission in Singapore after giving us reasonable time to resolve the matter. We document complaint timelines internally.
25. Data protection officer contact window
Privacy correspondence sent to [email protected] is reviewed on business days between 09:00 and 18:00 SGT. Complex access requests may require additional verification — we will explain delays plainly. Keep subject lines descriptive, for example "PDPA access request — cohort March 2026".
26. Version history
Version 2026-07-01: expanded sections on marketing, breach notification, cohort records, and payment handling. Prior versions available on request for enrolled learners who need audit trails for corporate compliance reviews.
27. Sensitive data in classroom exercises
Do not paste NRIC numbers, full medical histories, unreleased financial statements, or third-party secrets into shared prompts during cohort sessions. Facilitators use redacted examples. If you accidentally disclose sensitive personal data in a form or chat, notify [email protected] immediately so we can delete or restrict access where technically feasible.
Corporate workshops should supply synthetic datasets unless a data processing agreement covers live material. We coach teams on PDPA-minimisation when designing AI-assisted workflow pilots inside Singapore offices.
Where learners participate from shared corporate devices, clear browser sessions after class if your employer policy requires it. We do not retain browser cookies from third-party AI vendors on studio machines beyond the scheduled session window.