Privacy
Privacy Policy
How AI Course SG Pte. Ltd. handles personal data under the Singapore PDPA.
Introduction
This Privacy Policy explains how AI Course SG Pte. Ltd. (UEN 202418734K), operating the website aicoursesg.life and training studio at 79 Anson Road, #20-01, Singapore 079906, collects, uses, discloses, and protects personal data under the Personal Data Protection Act 2012 (PDPA) of Singapore. By using our website, submitting enquiry forms, or enrolling in programmes, you acknowledge this Policy. If you disagree, please refrain from submitting personal data or contact us to discuss alternatives.
Data controller
AI Course SG Pte. Ltd. is the organisation responsible for personal data described here. Privacy enquiries and Data Protection Officer correspondence: [email protected]. General contact: [email protected], +65 6704 3218.
Personal data we collect
We may collect: (a) identity and contact data — name, email, phone, company, job title; (b) enrolment data — programme selection, attendance records, assessment submissions, payment references; (c) communication data — messages you send via contact forms or email; (d) technical data — IP address, browser type, device identifiers, pages viewed, referral URLs, cookie identifiers; (e) marketing preferences where you opt in. We do not intentionally collect NRIC numbers through public forms. Corporate clients may provide additional attendee lists under separate agreements.
How we collect data
Data is collected when you: submit the contact or enrolment form; email us; register for events; attend studio sessions; browse our website (via cookies and server logs); or interact with optional analytics if you consent through the cookie banner.
Purposes of use
We use personal data to: respond to enquiries and provide syllabi; process enrolments and deliver courses; issue invoices and certificates; communicate schedule changes; improve website content and security; comply with legal obligations; and, with consent, send programme updates or optional marketing. We do not sell personal data to third parties.
Legal basis and consent
Under the PDPA, we rely on consent for marketing communications and optional cookies. Contractual necessity applies to enrolment processing. Legitimate interests — such as fraud prevention and service improvement — are balanced against your rights. You may withdraw consent by emailing {PRIVACY_EMAIL}; withdrawal does not affect prior lawful processing.
Disclosure to third parties
We may share data with: payment processors handling SGD transactions; email and calendar tools hosting enrolment communications; cloud hosting providers storing website and backup data; professional advisers bound by confidentiality; and authorities when required by Singapore law. Processors must protect data comparably to this Policy.
Cross-border transfers
Some service providers may store data outside Singapore. Where transfer occurs, we take steps to ensure recipients provide a standard of protection comparable to the PDPA — contractual clauses, vendor assessments, and minimisation of fields transferred.
Retention
Enquiry records: up to twenty-four months unless an enrolment follows. Enrolment and certificate records: up to seven years for business and audit purposes. Payment references: as required by tax law. Server logs: up to twelve months. Cookie consent choices: six months locally in your browser, then re-prompted. Marketing lists: until you unsubscribe or withdraw consent.
Security
We implement administrative, technical, and physical measures appropriate to the sensitivity of data — HTTPS encryption, access controls for enrolment systems, staff confidentiality obligations, and secure disposal practices. No method is perfectly secure; report suspected incidents to {PRIVACY_EMAIL} promptly.
Your PDPA rights
Subject to exceptions in the PDPA, you may request access to personal data we hold, correction of inaccuracies, withdrawal of consent, and information about how data was used or disclosed in the past year. We respond within thirty days where possible. Identity verification may be required.
Cookies and tracking
We use essential cookies for site operation and, with consent, optional analytics or marketing cookies. Details appear in our Cookie Policy. You may manage preferences via the site banner or browser settings.
Children
Programmes target adults and working professionals. We do not knowingly collect data from individuals under eighteen without parental or guardian involvement. Contact us if you believe a minor submitted data in error.
Third-party links
Our site may link to external tools or resources. Their privacy practices are governed by their own policies — review them before submitting data elsewhere.
Automated decision-making
We do not use solely automated decisions producing legal or similarly significant effects about individuals. Facilitators review enrolment suitability manually when prerequisites apply.
Updates
We may update this Policy to reflect legal or operational changes. Material updates will be posted here with a revised date. Continued use after updates constitutes acceptance where permitted by law. Last updated: 01 July 2026.
Contact
Privacy enquiries: [email protected]. Postal: AI Course SG Pte. Ltd., 79 Anson Road, #20-01, Singapore 079906. Phone: +65 6704 3218.
Enrolment records
When you enrol, we create a learner record linking your contact details to programme dates, attendance logs, submitted exercises, facilitator feedback, and certificate issuance. Assessment submissions may include prompt templates and workflow documents you choose to share; do not upload confidential third-party data without redaction. Corporate enrolments may include billing contacts separate from attendee lists — each data subject may exercise PDPA rights individually.
Payment information
We use third-party payment processors for SGD transactions. We typically receive confirmation references, amounts, and timestamps — not full card numbers. Processors maintain PCI-DSS controls. Retain your receipts for employer reimbursement; we issue tax invoices with UEN and registered address on request.
Marketing communications
Programme announcements, cohort reminders, and optional newsletters are sent only with consent or where you are an existing learner with a legitimate interest in related studio updates. Every marketing email includes an unsubscribe link. Unsubscribing does not affect transactional messages about active enrolments.
Data breach response
If a personal data breach likely to cause harm occurs, we will assess notification duties under the PDPA and inform affected individuals and the Personal Data Protection Commission where required. We maintain an internal incident log and review vendor notifications promptly.
Facilitator notes
Facilitators may record brief observational notes about participation to improve teaching — not psychological profiles. Notes are stored securely, accessible only to training staff, and deleted according to the retention schedule unless needed for dispute resolution.
Open-source and AI tools
Class exercises may use third-party generative-AI services governed by their own terms. We instruct learners not to submit personal data belonging to others into public models. Your use of external tools after class remains subject to those providers' policies.
Complaints
If you believe we mishandled personal data, contact our Data Protection Officer at {PRIVACY_EMAIL}. You may also lodge a complaint with the Personal Data Protection Commission of Singapore if unresolved.
Photography at events
Occasionally we capture studio photography for website use. We obtain verbal consent before identifiable images are published. If you prefer not to appear in marketing materials, inform facilitators on day one — we will seat you outside frame or use cropped shots.
Access requests procedure
Submit access or correction requests to {PRIVACY_EMAIL} with sufficient detail to locate your records. We may request government-issued identification to prevent unauthorised disclosure. Complex requests may receive interim responses within thirty days with completion timelines explained.
Anonymisation
Aggregated statistics — such as cohort completion rates — may be published without identifying individuals. When datasets are anonymised irreversibly, they fall outside PDPA personal data scope yet remain handled ethically.
Vendor due diligence
Before engaging subprocessors handling personal data, we review security questionnaires, data processing terms, and breach notification clauses. Vendors must notify us without undue delay of incidents affecting our learners' data.
Research participation
From time to time we may invite optional surveys improving curriculum design. Participation is voluntary and clearly labelled. Survey responses stored separately from payment records unless you consent to linkage for alumni follow-up.
International learners
Learners residing outside Singapore may enrol in hybrid cohorts where schedules permit. PDPA rights apply similarly; cross-border transfer safeguards described above apply when data is processed from abroad accessing our Singapore-hosted systems. Contact us before travelling if jurisdiction-specific restrictions affect your participation.