Privacy Policy

Last Updated: January 2025

Nexuscapiitalls is committed to protecting your privacy and ensuring the secure handling of your personal data in accordance with Singapore's Personal Data Protection Act (PDPA) and international best practices.

Data Collection Information

Personal Data We Collect

  • Contact Information: Name, email address, phone number, and mailing address when voluntarily provided through forms or consultation requests
  • Professional Information: Job title, company name, industry, and professional background relevant to investment education needs
  • Usage Data: IP address, browser type, device information, pages visited, time spent on site, and referring sources
  • Communication Data: Messages, inquiries, and feedback sent through contact forms, email, or phone communications
  • Educational Data: Learning preferences, course progress, assessment results, and educational background information

How Data is Collected

  • Direct Collection: Through contact forms, registration processes, consultation requests, and direct communications
  • Automatic Collection: Through cookies, web beacons, and analytics tools during website visits
  • Third-Party Sources: Through legitimate business partnerships and publicly available professional information

Legal Basis for Processing

  • Consent: For marketing communications, newsletter subscriptions, and optional data processing activities
  • Contractual Necessity: To provide requested educational services, consultations, and platform access
  • Legitimate Interest: For business operations, security monitoring, and service improvement
  • Legal Compliance: To meet regulatory requirements under Singapore law and international standards

How We Use Your Data

Primary Uses

  • Service Delivery: Providing investment education courses, trading analytics access, and consultation services
  • Communication: Responding to inquiries, providing customer support, and sending service-related notifications
  • Account Management: Creating and maintaining user accounts, processing payments, and managing subscriptions
  • Personalization: Customizing educational content and recommendations based on learning preferences

Marketing and Analytics

  • Marketing Communications: Sending newsletters, course updates, and promotional materials (with explicit consent)
  • Website Analytics: Understanding user behavior to improve website functionality and user experience
  • Performance Measurement: Evaluating service effectiveness and educational outcome success rates

Data Sharing Practices

We do not sell, trade, or transfer personal data to third parties except in the following limited circumstances:

  • Service Providers: Trusted partners who assist in service delivery under strict confidentiality agreements
  • Legal Requirements: When required by law or in response to valid legal requests from authorities
  • Business Protection: To protect our rights, property, or safety, or that of our clients or others

Data Protection Measures

Technical Safeguards

  • Encryption: All data transmissions use SSL/TLS encryption and stored data is encrypted at rest
  • Secure Servers: Data hosted on enterprise-grade servers with multiple security layers
  • Access Controls: Strict authentication and authorization protocols for data access
  • Regular Monitoring: Continuous security monitoring and threat detection systems

Operational Safeguards

  • Staff Training: Regular privacy and security training for all team members
  • Data Minimization: Collection and retention limited to necessary purposes only
  • Breach Response: Incident response procedures including notification within 72 hours
  • Regular Audits: Periodic security assessments and compliance reviews

Data Retention Periods

  • Contact Form Submissions: 3 years from last contact
  • Educational Records: 5 years after course completion
  • Consultation Records: 7 years for regulatory compliance
  • Marketing Data: Until consent is withdrawn
  • Website Analytics: 26 months maximum
  • Financial Records: 7 years as required by law

Your Rights and Data Management

Data Subject Rights

Right of Access

Request a copy of all personal data we hold about you, including processing purposes and retention periods.

Right to Rectification

Request correction of inaccurate or incomplete personal data in our records.

Right to Erasure

Request deletion of your personal data when no longer necessary for original purposes.

Right to Data Portability

Receive your data in a structured, machine-readable format for transfer to another provider.

Right to Object

Object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Withdraw consent for processing activities that require your explicit agreement.

How to Exercise Your Rights

To exercise any of these rights or for privacy-related inquiries, please contact us:

Email:

privacy@{domain}

Phone:

+65 6394 8276

Address:

80 Robinson Road, Singapore 068898

Response Time:

Within 30 days of verified request

Complaint Procedures

If you believe your privacy rights have been violated, you have the right to lodge a complaint with:

  • Personal Data Protection Commission (PDPC) Singapore: The primary data protection authority for Singapore residents
  • Direct Resolution: Contact our privacy team first for prompt resolution of concerns

International Data Transfers

Some of our service providers may process data outside of Singapore. In such cases, we ensure adequate protection through:

  • Adequacy Decisions: Transfers only to countries with adequate data protection standards
  • Standard Contractual Clauses: Binding agreements ensuring equivalent protection levels
  • Certification Schemes: Providers certified under recognized privacy frameworks

Current international service providers include Google Analytics (USA), Facebook Business Tools (USA), and cloud hosting services with data centers in Singapore and Australia.

Policy Updates

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. Material changes will be communicated through:

  • Email Notification: Direct notification to registered users for significant changes
  • Website Notice: Prominent notices on our website homepage and service pages
  • Advance Notice: Minimum 30 days notice for material changes affecting your rights

Continued use of our services after policy updates constitutes acceptance of revised terms. You may withdraw consent or request account closure if you disagree with changes.

Privacy Questions or Concerns?

Our privacy team is here to help with any questions about data protection, your rights, or this privacy policy.