PipFarm Privacy Policy
Introduction
This Privacy Policy describes the basis on which PipFarm.com (“we”, “us”, or “our”) may collect, use, disclose or otherwise process the Personal Data of users following the Personal Data Protection Act (“PDPA”).
This Privacy Policy applies to Personal Data in our possession or under our control, including Personal Data in the possession of organisations we have engaged in collecting, using, disclosing or processing Personal Data to perform our services and other legitimate purposes.
Personal Data means any information about an individual, whether true or not, from which a person can be identified using one or more pieces of data. Personal Data may include any other information linked to Personal Data, such as usernames or usage statistics.
Personal Data does not include data where the identity has been removed (i.e. anonymous or pseudonymous data).
Scope
The Personal Data we process and store depends on our relationship with you and the scope of services we provide you. Our relationship with you can be categorised as a Visitor or a Member.
Visitor : A Visitor is someone who visits our website or communicates with us using our live chat feature, contact forms or sends an email.
Member : A Member is someone who completes a purchase and concludes a binding agreement under our Terms and Conditions.
Collection of Personal Data
Per the conditions defined herein, we may collect Personal Data about you, depending on the type of relationship we have with you and the scope of services provided.
Types of Personal Data collected
The type of data collected can be categorised as follows:
- Names : such as first names, last name, maiden name, patronym, username or similar identifier;
- Identity : such as national identification numbers, passport numbers, and other official identifiers, marital status, title, date of birth and gender;
- Contact :such as billing address, email address and telephone numbers;
- Payment : such as bank account, payment card details, and details about payments to and from you or relationship to affiliates;
- Trading Simulation : such as your simulated trading activity;
- Technical : such as internet protocol (IP) address, login data, browser type and version, time zone setting and location, devices, operating systems and behavioural statistics;
- Profile : such as your username and password, purchases or orders made by you, your interests, attribution to social media profiles, preferences, such as preferred language, demographics, such as location or age, feedback and survey responses;
- Marketing : such as your preferences in receiving marketing communications from us and our third parties and your communication preferences.
Purpose for collection
This table describes the purpose of collecting your Personal Data.
Use of Personal Data
Provide services and support : To evaluate a request for products or services, administer such products or services, process transactions on behalf of clients, communicate with you about your use of the products and services, provide troubleshooting and technical support, fulfil your orders and requests, and for similar service and support purposes.
Processing payments : To process payments for accessing services or remuneration according to the General Terms and Conditions.
Monitor risks and threats : To keep our services, products, and business safe; to defend our rights and those associated with us; to find and prevent fraud, unauthorised actions, and misuse; and to act against illegal activities, threats to anyone’s safety or rights, or breaking our rules.
Provide important notifications and information : To inform you about material changes to the Privacy Policy and any terms and conditions you previously agreed to.
Compliance and due diligence : To comply with industry best practices and internal procedures to know with whom we conduct business.
Collect feedback and conduct surveys : To administer surveys and questionnaires for market research or surveys.
General business and administrative recordkeeping : To review and manage our overall business activities, including accounting, audits, recordkeeping, monitoring performance, and legal requirements.
Marketing and advertising : To send you information about our services, such as offers, promotions, discounts, newsletters, other marketing content, and any other information you sign up to receive.
Analytics and service improvement : To learn how users interact with our services and products for research and analysis, like improving our services and operations, creating new features, and for our quality checks and training.
Method of collection
The Personal Data collected may be acquired using various methods. We collect data about you using the following methods:
Data you provide to us:
When using our services, you share information with us directly and intentionally, and includes the details you provide when registering, like your name, email address, and phone number; any information you enter into forms, such as feedback or questions; and anything else you share while using our services.
Information we collect automatically:
As you interact with our services, we automatically collect information using various cookies and pixel tags.
Information we get from third parties:
We may receive information about you from third-party sources, such as simulated trading platform providers, social media platforms, publicly available sources, and advertising platforms.
Disclosure of Personal Data
To keep Personal Data secure, we only share Personal Data with third parties when necessary. Your Personal Data may be shared in the following circumstances:
Third-party service providers: We work with different service providers to help us deliver our services. These providers might handle payments, support our technology, store data in the cloud, do market research, analyse marketing efforts, detect fraud, check identities, and carry out audits, among other tasks. We only share your Personal Data with them as much as needed for their specific function. Any service provider or business partner that gets your Personal Data must follow this Policy and keep your Personal Data safe and private.
Social media platforms: Social media sites like Discord, Facebook, Instagram and Twitter have features, plugins, widgets, or tools that can be used on our website or app. If you decide to use these, social media companies might collect or get some of your Personal Data. To know what they collect and how they use it, check the privacy policy of the specific social media company.
Consent collection and withdrawal
Collection of consent
When you register for our services, we interpret your registration as an affirmative act of consent to collect, use, and disclose your Personal Data, as this Privacy Policy outlines. This process ensures that we have your explicit agreement to handle your data following our established privacy standards and practices and relevant laws and regulations. The consent you provide for the collection, use and disclosure of your Personal Data will remain valid until you withdraw it in writing.
How to withdraw consent
We understand that your privacy preferences may change over time. If you decide to withdraw your consent for us to collect, use, or disclose your Personal Data, you can do so at any time by notifying our Data Protection Officer using the details in section: Contact information.
In your written notice, please state your intent to withdraw your consent to process your Personal Data. The notice must include your full name, contact information, and any specific details regarding the scope of your consent withdrawal. This information will help us accurately identify your records and process your request efficiently.
We will confirm receipt of your withdrawal request and inform you of any implications or necessary actions following your withdrawal of consent. We aim to ensure your decision is respected, following our Privacy Policy and regulatory obligations.
Upon receiving your written notice, we will process your request within 30 business days. Please be aware that withdrawing your consent may affect our ability to provide certain services. Moreover, in some instances, we may need to retain certain Personal Data about you as required by law or for legitimate business purposes permitted by law, even after your consent withdrawal.
If you, having previously withdrawn your consent for the processing of your Personal Data, choose to re-engage with our services, we will interpret your action of resuming service use as a reinstatement of your consent. This renewed engagement signifies your agreement to allow us to collect, use, and disclose your Personal Data according to our current privacy policy and terms of service at the time of your re-engagement.
Access and correction
Requesting access to Personal Data
If you wish to obtain a copy of the Personal Data we hold about you or seek information about how we use or disclose your Personal Data, please contact our Data Protection Officer using the details in section: Contact information.
Updating your Personal Data
We primarily rely on the Personal Data you provide. To ensure the Personal Data we hold is current, complete, and accurate, you are encouraged to inform us of any changes to your Personal Data. Updates can be communicated by contacting our Data Protection Officer using the details in section: Contact information.
Response time
Upon receiving your request or update, we aim to respond promptly and effectively:
- We will generally respond within 30 business days.
- If we anticipate delays beyond 30 days in addressing your request, you will receive a written notification within 30 days detailing when you can expect a response.
In instances where we cannot fulfil your request for access to Personal Data or to make the requested corrections, we will explain, except in cases not required by the Personal Data Protection Act (PDPA) or other relevant legal requirements.
Protection of Personal Data
Security measures
To protect personal data against unauthorised access, disclosure, alteration, and destruction, we employ a comprehensive suite of security measures, including but not limited to:
Access controls: We restrict access to Personal Data to authorised personnel based on their role and the necessity of accessing the information for legitimate business or operational reasons. Access is controlled through secure authentication mechanisms and monitored and logged to prevent unauthorised access.
Encryption: Personal Data stored and transmitted is encrypted using advanced encryption technologies. Encryption helps protect the data during storage and transmission over the internet, ensuring it remains secure and confidential.
Regular security assessments: Our security protocols and systems are regularly reviewed and updated to address emerging security threats and vulnerabilities. This includes conducting periodic security assessments and audits to evaluate the effectiveness of our data protection measures.
Data minimisation: We adhere to the principle of data minimisation, ensuring that only the necessary Personal Data for specific, legitimate purposes is collected, processed, and retained.
Employee training: All employees must undergo regular data protection and privacy training. This training ensures that our team is aware of their responsibilities in protecting Personal Data and understands the best practices and company policies related to data security.
Incident response plan: In the event of a data breach or security incident, we have an established incident response plan to address and mitigate the impact on Personal Data promptly. Affected individuals and relevant authorities will be notified following legal requirements and our commitment to transparency.
Retention Period
Personal Data collected from Visitors will be retained for up to 12 months from the date of their last interaction. This includes, but is not limited to, data collected through website visits, inquiries, or any form of casual engagement that does not result in Membership or a business relationship per the General Terms and Conditions.
Personal Data collected from Members will be retained for 5 years following the conclusion of the most recent business transaction. Retaining Members’ Personal Data for this duration supports our ability to maintain accurate records for financial auditing, legal obligations and to resolve any disputes or claims that may arise post-transaction. Upon the expiration of the 5 years, the data will be securely deleted or anonymised unless specific legal requirements mandate further retention.
Upon reaching the end of the retention period, personal data will be securely deleted or anonymised to prevent its reconstruction or retrieval. The Company employs industry-standard data deletion and anonymisation techniques, ensuring the permanent removal of Personal Data from our records.
Transfer of Personal Data outside of Singapore
We operate globally, engaging with service providers and utilising data processing facilities in various countries to deliver our services efficiently. Specifically, our primary service providers are located in the United Kingdom, Europe, and the United States of America. As a result, the personal data we collect may be processed and stored in these jurisdictions.
We are committed to ensuring that all personal data processed or stored outside Singapore is handled with the utmost care and per data protection standards that are parallel to or exceed, those provided under Singaporean law. Our approach to international data transfers includes:
Selecting reputable service providers: We carefully select service providers based on their compliance with international data protection laws and standards. This ensures that your Personal Data is processed in a manner that offers a level of security and privacy protection comparable to that of Singapore.
Legal frameworks and safeguards: We transfer personal data across borders in compliance with applicable legal frameworks, such as the European Union’s General Data Protection Regulation (GDPR), the UK’s Data Protection Act, and the Privacy Shield framework for transfers to the USA, where applicable. We implement appropriate safeguards, including standard contractual clauses and data protection addendums, to ensure your Personal Data is protected adequately.
Regular review and monitoring: We regularly review the data protection practices of our service providers and the legal and regulatory changes in the countries where personal data may be processed or stored. This ongoing monitoring helps us maintain compliance with data protection obligations and adapt to any changes that could affect the privacy and security of your Personal Data.
Cookies and similar technologies
Cookies are small text files of letters and numbers stored on your web browser application or your device. You can learn more about cookies at www.allaboutcookies.org.
We use various cookies, pixels and similar tracking technologies to monitor the use and performance of our websites and applications. You have the right to set your web browser to deactivate some or all cookies or to decline the cookies used by pipfarm.com.
Types of cookies
We use the following types of first-party and third-party cookies:
Performance cookies: These cookies measure how often you visit our website and the pages you visit. We use this information to understand how you engage with our website, helping us improve its content and functionality.
Functionality cookies: These cookies recognise when you return to our website and remember your preferences or settings, so you don’t need to enter login details every time.
Targeting cookies: These cookies record your visit to our website, the pages you visit and the links you follow. We will use this information to make our website and content more relevant to your interests.
Manage cookies
Your web browser may allow you to change your cookie preferences, including deleting and disabling PipFarm and third-party cookies. Please consult the help section of your web browser or follow the links below to understand your options:
- Chrome: https://support.google.com/chrome/answer/95647?hl=en
- Safari: https://support.apple.com/en-gb/guide/safari/sfri11471/mac
- Firefox: https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox
- Opera: https://help.opera.com/en/latest/web-preferences/
- Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies
To find information relating to other browsers, visit the browser developer’s website.
If you deactivate some or all of the cookies, some features of our website or services may not operate as intended.
Cookies used
We use the following cookies on our website:
You can opt out of any third-party cookies used on our website by following the links provided below:
- Google Analytics: https://tools.google.com/dlpage/gaoptout
Third-party websites
This website may include links to third-party websites, plug-ins and applications. Clicking on those links may allow third parties to collect or share your data. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
Children’s Privacy
Our services are not intended for or directed at children. By children, we mean users under 18 or, in the case of a country where the minimum age for processing Personal Data differs, such a different age.
We do not knowingly collect any information from children. If we obtain knowledge that we have collected Personal Data from a child, we will immediately delete it (unless we are legally obligated to retain such information). Please contact us if you believe we inadvertently collected any child’s Personal Data.
Updates to the Privacy Policy
We may update this Privacy Policy from time to time. We’ll notify you of any significant changes using the email address you provided when you registered, and we’ll always keep the latest version available on our website.
Contact information
If you have questions or concerns about this Privacy Policy or a specific request related to your Personal Data, please contact us at privacy@pipfarm.com.