Privacy
Privacy Policy
Last updated: 01 July 2026
1. Who we are
Finance AI Vault Pte. Ltd. ("Finance AI Vault", "we", "us") operates financeaivault.life and delivers vocational AI finance-management courses at 5 Shenton Way, #28-01 UIC Building, Singapore 068808. Data protection enquiries: [email protected]. General contact: [email protected].
2. Scope
This Privacy Policy explains how we collect, use, disclose and protect personal data under the Personal Data Protection Act 2012 (PDPA) when you browse our site, submit forms, enrol in vault tracks or correspond with us. It applies to Singapore residents and overseas visitors interacting with our Singapore services.
3. Data we collect
- Identity and contact data: name, email, phone, employer (optional), job role.
- Enrolment data: chosen vault track, cohort date, billing contact, attendance records.
- Technical data: IP address, browser type, device identifiers, pages viewed, referral URLs.
- Communications: messages you send via contact forms, email or chat.
- Cookie and analytics data as described in our Cookie Policy.
4. Purposes of use
We use personal data to: respond to vault track enquiries and syllabus requests; process enrolments and issue certificates; deliver corporate AI finance training; improve website security and performance; comply with legal obligations; and, where you opt in, send administrative updates about cohort schedules. We do not use your data to sell passive-income products, crypto schemes or unrelated marketing funnels.
5. Legal basis and consent
We rely on consent (explicit checkbox on forms), contractual necessity (enrolment), legitimate interests (fraud prevention, site analytics with opt-out) and legal compliance. You may withdraw consent for optional processing by emailing [email protected]; core enrolment processing may still be required to perform a contract you entered.
6. Disclosure
We may share data with: payment processors for SGD course fees; email delivery vendors; cloud hosting providers with data processing agreements; professional advisers bound by confidentiality; and authorities when required by Singapore law. We do not sell personal data to data brokers.
7. International transfers
Some subprocessors may store data outside Singapore. Where this occurs, we implement contractual safeguards consistent with PDPA cross-border transfer requirements and limit data to what is necessary.
8. Retention
Enrolment records: seven years for business and tax compliance. Contact form messages: twenty-four months unless a longer period is needed for disputes. Analytics logs: thirteen months. Cookie consent choices: six months in local storage, then re-prompted.
9. Your rights
Under the PDPA you may request access to, correction of, or withdrawal of consent for your personal data. We respond within thirty days where practicable. Contact [email protected] or write to our Shenton Way address. If unresolved, you may escalate to the Personal Data Protection Commission (PDPC) at www.pdpc.gov.sg.
10. Security
We apply HTTPS encryption, access controls, staff confidentiality training and vendor due diligence. No method is perfectly secure; report suspected incidents to [email protected] promptly.
11. Children
Our vault courses target working adults. We do not knowingly collect data from persons under eighteen without parental consent. Contact us to delete such data if submitted in error.
12. Changes
We update this policy when practices or laws change. Material updates appear on this page with a revised "Last updated" date. Continued use after changes constitutes acknowledgement where permitted by law. We encourage you to review this page periodically if you maintain an ongoing relationship with our studio.
13. Marketing communications
We send promotional email only where you opt in or where existing enrolment makes course updates reasonably expected. Each marketing message includes an unsubscribe link. Opting out of marketing does not affect transactional messages such as receipts, cohort reminders or certificate delivery.
14. Corporate and group enrolments
When an employer enrols staff, the employer may provide delegate names and work emails. We process that data to deliver corporate AI finance training and issue attendance records. Employers should ensure they have authority to share delegate details and should direct individuals to this policy for rights requests.
15. Automated decision-making
We do not use solely automated decisions that produce legal or similarly significant effects. Facilitators review enrolment suitability manually when questions arise about prerequisites or tool access requirements.
16. Data breach notification
If a personal data breach likely to cause significant harm occurs, we will notify affected individuals and the PDPC where required by law. We maintain an internal incident response checklist and vendor escalation paths.
17. Third-party AI tools in class
Vault modules may require you to create accounts with third-party AI vendors. Those vendors process data under their own terms. We coach data-minimisation habits but do not control vendor retention. Avoid uploading sensitive personal data unless your organisation permits it.
18. Contact and complaints
Data protection officer contact: [email protected]. Postal: Finance AI Vault Pte. Ltd., 5 Shenton Way, #28-01 UIC Building, Singapore 068808. We aim to acknowledge complaints within five business days and resolve straightforward access requests within thirty days.
19. Definitions
Personal data means data about an individual who can be identified from that data or other information we possess. Processing includes collection, storage, use and disclosure. Consent means voluntary agreement obtained with clear notice under the PDPA.
20. Do-not-call and messaging
We maintain an internal suppression list for individuals who opt out of marketing SMS or phone outreach. Transactional service messages related to active enrolments may still be sent where necessary.
21. Accuracy obligations
Please provide accurate enrolment details. Notify us promptly if your email or billing contact changes so certificates and receipts reach the correct recipient. We are not responsible for misdelivery caused by outdated information you supplied.
22. Public areas
Do not post personal data in blog comments or community spaces if we enable them in future. Such content may be visible to others and is outside controlled enrolment systems.
23. Links to other sites
External links to AI vendors or Singapore government resources have separate privacy practices. Review their policies before submitting personal data on third-party platforms accessed from our site.
24. Policy archive
Previous policy versions are available on request for twelve months after replacement. Contact [email protected] with the approximate date you interacted with us if you need a historical copy.
25. Sensitive data caution
Do not submit NRIC numbers, full medical records, complete payment card numbers or employer-confidential material through our general contact form. Use secure channels we provide during corporate onboarding when such data is genuinely required for invoicing or attendance verification.
26. Training environment photos
We may photograph vault sessions for internal quality review or marketing with notice and opt-out where feasible. Identifiable images used publicly require separate consent. Corporate clients may request private cohorts without photography.
27. Access request process
To request access or correction, email [email protected] from the address we hold on file or provide sufficient identity verification. We may extend the response period for complex requests with explanation. Unreasonable or repetitive requests may be refused with reasons.
28. Relationship to Cookie Policy
Optional cookies and local storage entries described in our Cookie Policy form part of our overall data practices. Rejecting optional cookies limits analytics and marketing measurement but does not remove essential enrolment records once you register for a vault track.
29. Statistical and aggregated data
We may create aggregated statistics about enrolment trends, vault track popularity and website traffic that no longer identify individuals. Such aggregated data may be used for internal planning and may be shared publicly in high-level reports without personal identifiers.
30. Your responsibilities in class
When practising AI finance workflows, avoid entering colleagues' personal data into third-party tools unless permitted. Follow employer acceptable-use policies. We teach PDPA-aware record handling but cannot monitor every prompt you submit during independent practice time.
31. Effective date
This Privacy Policy takes effect on 01 July 2026 and applies to personal data processed from that date forward unless otherwise stated. Enrolment data collected before updates remains subject to the policy version in force at collection, except where new protections benefit you without reducing rights. Questions welcome at [email protected].