Privacy Policy

1. Data controller

AI Income Career Pte. Ltd. ("we", "us") at 8 Marina Boulevard, #05-02, Marina Bay Financial Centre, Singapore 018981, UEN 202814729M, is the organisation responsible for personal data collected through aiincomecareer.pro and our training services. Contact our privacy team at [email protected] or +65 6221 8473.

2. Scope

This Privacy Policy applies to visitors of our website, prospective and enrolled course participants, corporate training clients and individuals who contact us. It is written to comply with the Personal Data Protection Act 2012 (PDPA) of Singapore.

3. Personal data we collect

Identity and contact data: name, email address, phone number, employer name and job title when you submit forms or enrol. Transaction data: course selections, payment references and invoicing details processed through our payment partners — we do not store full credit card numbers. Technical data: IP address, browser type, device information and cookie identifiers when you use our website. Communication data: messages you send via contact forms or email. Training data: attendance records, assignment submissions and feedback you provide during courses. Sensitive data: we do not routinely collect NRIC, financial account numbers or health data unless a specific corporate arrangement requires it with your explicit consent.

4. Purposes and PDPA bases

We process personal data for: responding to enquiries and providing customer support (consent and legitimate interests); enrolling you in courses and delivering training (contractual necessity and consent); processing payments and maintaining financial records (legal obligation and contractual necessity); improving our website and services through analytics where you have consented to non-essential cookies (consent); sending course updates and administrative notices (contractual necessity); complying with ACRA, IRAS and other regulatory requirements (legal obligation); protecting our legal rights and preventing fraud (legitimate interests). We document purpose limitation reviews annually to ensure data collected remains adequate, relevant and not excessive for each stated purpose.

5. Consent withdrawal

Where processing relies on consent, you may withdraw consent by emailing [email protected]. Withdrawal does not affect prior lawful processing. Some data must be retained for legal compliance even after withdrawal.

6. Disclosure to third parties

We may share data with: payment processors for course fees; email service providers for transactional messages; cloud hosting providers storing website and enrolment data; professional advisers (lawyers, accountants) under confidentiality; government authorities when required by law. We do not sell personal data. Third parties must protect data consistent with PDPA requirements.

7. International transfers

Primary storage is in Singapore. If data is transferred overseas, we ensure comparable protection through contractual clauses or your explicit consent as required by PDPA.

8. Retention

Enquiry records: twenty-four months from last contact unless enrolment follows. Enrolment and training records: seven years for business and tax compliance. Marketing consents: until withdrawn plus six months. Server logs: ninety days. Cookie consent preferences: six months. When retention periods expire, we securely delete or anonymise data unless legal hold requirements apply. Anonymised aggregate statistics may be retained indefinitely for curriculum improvement without identifying individuals.

9. Your rights under PDPA

You may request access to and correction of your personal data. You may withdraw consent where applicable. You may inquire about how your data has been used or disclosed in the past year. Contact [email protected] — we respond within thirty days. If unresolved, contact the Personal Data Protection Commission (PDPC): https://www.pdpc.gov.sg. We provide reasonable assistance for access requests including explaining any technical terms in our response. Correction requests are processed promptly when verified.

10. Security measures

We implement access controls, encrypted connections (HTTPS), staff training on data handling and vendor due diligence. Role-based access limits employee visibility to data required for their function. Password policies and multi-factor authentication protect administrative systems. No system is completely secure — report suspected breaches to [email protected] promptly. We review security controls following significant vendor or infrastructure changes.

11. Cookies

See our Cookie Policy for categories, durations and opt-out methods. Essential cookies operate regardless of consent for site functionality.

12. Minors

Our services target working adults. We do not knowingly collect data from persons under eighteen without parental consent.

13. Changes to this policy

We may update this policy and will revise the date below. Material changes will be highlighted on our website.

14. Marketing communications

We send course announcements and administrative updates to enrolled participants based on contractual necessity. Promotional emails about new modules require your opt-in consent. Every marketing message includes an unsubscribe link. We do not purchase third-party mailing lists.

15. Automated decision-making

We do not use automated decision-making or profiling that produces legal or similarly significant effects on individuals. Course recommendations suggested on our website are general information only, not automated eligibility determinations.

16. Data breach notification

If a notifiable data breach occurs under PDPA, we will assess impact promptly, notify PDPC where required, and inform affected individuals when the breach is likely to result in significant harm. Report concerns to [email protected] without delay.

17. Records of consent

We maintain records of cookie consent choices and form consent checkboxes including timestamp and policy version displayed at time of consent, retained for six months after expiry or withdrawal plus applicable limitation periods.

18. Corporate clients

When your employer enrols you in corporate training, we may receive data from your organisation under their instructions. Refer to your employer's privacy notice for primary collection purposes; our policy governs our processing as training provider.

19. Accuracy of data

You are responsible for providing accurate enrolment information. Notify us promptly of changes to contact details so we can deliver course communications and certificates correctly. We may request verification documents for corporate billing arrangements.

20. Access request procedure

Submit access or correction requests to [email protected] with sufficient identity verification. We may charge a reasonable fee for manifestly unfounded or excessive requests as permitted by PDPA. We aim to respond within thirty calendar days.

21. Complaints

If you believe we have handled your personal data improperly, contact us first for resolution. Unresolved complaints may be escalated to the Personal Data Protection Commission at www.pdpc.gov.sg. We cooperate fully with PDPC investigations.

22. Contact

Data Protection Officer contact: [email protected] · AI Income Career Pte. Ltd. · 8 Marina Boulevard #05-02 Singapore 018981 · +65 6221 8473

23. How we collect data through forms

Our contact and cohort registration forms require explicit PDPA consent via an unchecked checkbox before submission. We log the timestamp and form version at the point of consent. Honeypot fields protect forms from automated spam — submissions with honeypot values filled are silently discarded without storing personal data.

24. Training session recordings

We do not routinely record cohort sessions. If a specific module is recorded for absent learners with consent from all visible participants, we notify the cohort in advance and limit access to enrolled learners for thirty days before deletion.

25. Anonymised and aggregated data

We may use anonymised enrolment statistics for internal planning and marketing descriptions. Aggregated data does not identify individuals. We do not publish learner income figures, salary changes or employment outcomes.

26. Third-party AI tool data

During courses you may use ChatGPT, Copilot, Claude or similar tools under your own accounts. Data entered into those tools is governed by the respective provider's privacy policy. We instruct learners not to submit confidential client or employer data without authorisation.

27. Data protection impact

We review processing activities when introducing new collection channels or analytics vendors. Where processing is likely to result in high risk, we conduct internal assessments and implement mitigations before launch.

28. Links to other websites

Our website may link to PDPC, AI tool providers and payment gateways. Review the privacy policy of each external site before submitting personal data.

29. Language

This Privacy Policy is published in English (Singapore). In case of discrepancy between translations, the English version prevails.

30. Acknowledgement

By submitting a contact form with PDPA consent or enrolling in a programme, you acknowledge that you have read and understood this Privacy Policy.

31. Questions about training data

If you are unsure whether information you plan to share in class exercises contains personal data subject to PDPA, ask our facilitator before submission. We provide anonymised scenario templates wherever possible.

32. Version history

This policy version 2026-06-24 replaces all prior versions. You may request the effective date of the policy version that applied when your data was collected by emailing [email protected].