Privacy Policy
Last updated: 9 July 2026
BrandPoint Life ("we", "us", or "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit brandpoint.life, engage our branding, creative, content marketing, SEO, or social media services, enrol in our programmes, or otherwise interact with us. This policy is prepared in accordance with the Personal Data Protection Act 2012 of Singapore (PDPA) and applies to all individuals whose personal data we process.
1. Data Controller
The data controller responsible for your personal data is BrandPoint Life, registered in Singapore under UEN 202947528K, with its registered office at 150 Orchard Road #08-01, Orchard Gateway @ Emerald, Singapore 238841. For privacy-related enquiries, contact us at [email protected] or call +65 6384 5629.
2. Personal Data We Collect
We may collect the following categories of personal data depending on how you interact with us:
2.1 Information You Provide Directly
- Contact details: Name, email address, phone number, company name, job title, and mailing address when you complete our contact form, request a proposal, enrol in a programme, or subscribe to communications.
- Communication content: Messages, enquiries, feedback, and any other information you voluntarily provide in correspondence with our team.
- Business information: Details about your organisation, branding requirements, marketing objectives, and project scope shared during discovery sessions or engagements.
- Payment information: Billing details processed through secure third-party payment providers. We do not store full credit card numbers on our servers.
- Programme participation: Attendance records, assignment submissions, and assessment data for participants in BP-101 through BP-601 programmes.
2.2 Information Collected Automatically
- Technical data: IP address, browser type and version, operating system, device identifiers, referring URLs, and pages viewed on our website.
- Usage data: Time spent on pages, click patterns, scroll depth, and interaction with website features.
- Cookie data: Information collected through cookies and similar technologies as described in our Cookie Policy.
2.3 Information from Third Parties
- Referral partners, event organisers, or professional networks who introduce you to BrandPoint Life with your consent.
- Publicly available business directories and professional profiles such as LinkedIn when relevant to a prospective engagement.
- Analytics and advertising platforms that provide aggregated or pseudonymised data about website visitors.
3. Purposes of Processing
We process your personal data for the following purposes, relying on appropriate legal bases under the PDPA including consent, contractual necessity, and legitimate business interests:
- To respond to enquiries submitted through our contact form or email and to provide information about our services and programmes.
- To deliver branding, creative, content marketing, SEO, and social media services under contract with you or your organisation.
- To administer programme enrolment, deliver curriculum content, track participation, and issue certificates of completion.
- To process payments, issue invoices, and maintain financial records as required by Singapore law.
- To send service-related communications including project updates, scheduling confirmations, and account notifications.
- To send marketing communications about our services, programmes, events, and industry insights where you have provided consent or where permitted by applicable law. You may opt out at any time.
- To improve our website, services, and user experience through analytics and feedback analysis.
- To comply with legal obligations, respond to lawful requests from authorities, and protect our legal rights.
- To prevent fraud, abuse, and security incidents affecting our systems and users.
4. Consent and Your Rights
Where consent is the legal basis for processing, we will obtain your clear and informed consent before collecting or using your personal data. You have the following rights under the PDPA:
- Right of access: Request a copy of the personal data we hold about you.
- Right to correction: Request correction of inaccurate or incomplete personal data.
- Right to withdraw consent: Withdraw consent for processing that relies on consent, subject to legal or contractual restrictions.
- Right to data portability: Request your data in a structured, commonly used format where technically feasible.
- Right to complain: Lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore if you believe your rights have been violated.
To exercise any of these rights, email [email protected] with the subject line "PDPA Request". We will respond within thirty days. We may request verification of your identity before processing your request.
5. Disclosure of Personal Data
We do not sell your personal data. We may share personal data with the following categories of recipients where necessary for the purposes described in this policy:
- Service providers: Cloud hosting providers, email delivery services, payment processors, analytics platforms, project management tools, and other vendors who process data on our behalf under contractual data protection obligations.
- Professional advisers: Lawyers, accountants, and auditors bound by confidentiality obligations.
- Business partners: Collaborators involved in joint programmes or co-branded events, only with your prior consent where required.
- Legal authorities: Government bodies, regulators, or law enforcement when required by applicable law or to protect our rights.
- Corporate transactions: Prospective buyers or successors in the event of a merger, acquisition, or asset sale, subject to confidentiality agreements.
Where personal data is transferred outside Singapore, we ensure appropriate safeguards are in place as required by the PDPA, including standard contractual clauses or transfers to jurisdictions recognised by the PDPC as providing comparable protection.
6. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Typical retention periods include:
- Contact form enquiries: three years from last interaction unless an engagement is established.
- Client project files and deliverables: seven years from project completion for contractual and legal purposes.
- Programme records: five years from programme completion.
- Marketing consent records: until consent is withdrawn plus two years for audit purposes.
- Website analytics data: twenty-six months in aggregated form.
- Financial and tax records: seven years as required by Singapore law.
When personal data is no longer needed, we securely delete or anonymise it in accordance with our data retention schedule.
7. Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encrypted connections (TLS/SSL) for data transmission, access controls limiting employee access to personal data on a need-to-know basis, secure password policies, regular security assessments, and staff training on data protection practices. While we strive to protect your personal data, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.
8. Children's Privacy
Our website and services are not directed at individuals under eighteen years of age. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly.
9. Third-Party Links
Our website may contain links to third-party websites, social media platforms, or tools. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.
10. Marketing Communications
With your consent, we may send you emails about our branding services, creative programmes, content marketing insights, SEO updates, and social media trends. Every marketing email includes an unsubscribe link. You may also opt out by emailing [email protected]. Opting out of marketing communications does not affect service-related messages necessary for active engagements.
11. Automated Decision-Making
We do not use automated decision-making or profiling that produces legal or similarly significant effects on individuals. Analytics tools may segment website visitors in aggregate for performance measurement, but such processing does not result in automated decisions affecting your rights.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. The "Last updated" date at the top of this page indicates when the policy was last revised. Material changes will be communicated via a notice on our website or by email where appropriate. We encourage you to review this policy periodically.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer:
BrandPoint Life — Data Protection
150 Orchard Road #08-01, Orchard Gateway @ Emerald
Singapore 238841
Email: [email protected]
Phone: +65 6384 5629
14. Data breach notification
In the event of a personal data breach that is likely to result in significant harm or affect a significant number of individuals, BrandPoint Life will assess the breach promptly, take containment measures, and notify the Personal Data Protection Commission of Singapore and affected individuals as required under the PDPA. We maintain an internal incident response plan reviewed annually and tested through tabletop exercises with our leadership team.
15. Related documents
We recommend reviewing these related documents alongside this Privacy Policy to understand the full scope of how BrandPoint Life handles your information across our website, services, and communications channels. If you are a client with an active Service Agreement, additional data processing terms may apply as set out in your contract documentation and onboarding materials provided at engagement start.