Privacy Policy

1. Introduction

Tidemark Financial Education ("Tidemark", "we", "us", "our") is committed to handling your personal data with care and transparency. This Privacy Policy explains what personal data we collect, how we use it, and the choices you have in relation to it.

We operate under and comply with Singapore's Personal Data Protection Act 2012 (PDPA). If you have questions about how your data is handled, please contact us at [email protected].

This policy applies to personal data collected through our website, programme enrolments, and any other interactions you have with Tidemark.

2. What Personal Data We Collect

We collect only the data necessary to provide our services and respond to your enquiries:

• Identity data: Full name, and where relevant, your occupation or industry.
• Contact data: Email address and telephone number.
• Programme data: Details of programmes you have enrolled in or enquired about, including session attendance records and workbook submissions.
• Financial context data: Only where voluntarily shared during programme activities, and treated with the highest level of discretion.
• Technical data: IP address, browser type, and pages visited, collected via standard analytics tools when you browse our website.
• Communication data: The content of any messages or enquiries you send us.

We do not collect sensitive personal data (such as NRIC numbers, financial account details, or medical information) unless you explicitly provide it in an educational context, and we will always explain why before collecting it.

3. How We Collect Your Data

We collect personal data through the following means:

• Enquiry and contact forms on our website
• Programme enrolment and registration processes
• Direct email or phone communication
• Programme participation (workbook submissions, exercises)
• Website analytics (cookies and similar tracking technologies — see our Cookie Policy)

4. Legal Basis for Processing

Under the PDPA, we process personal data on the following bases:

• Consent: Where you have voluntarily provided your data through a form, enrolment, or direct communication.
• Contractual necessity: Where processing is required to deliver the programme you have enrolled in.
• Legitimate interests: For internal analytics and improving our programme offerings, where this does not override your rights.
• Legal obligation: Where we are required to retain or disclose data to comply with applicable Singapore law.

5. How We Use Your Data

Your personal data is used for the following purposes:

• Responding to enquiries and providing programme information
• Administering your programme enrolment and delivering sessions
• Sending programme materials, schedules, and updates
• Conducting internal analysis to improve programme content and delivery
• Sending occasional updates about new programmes or resources — only where you have consented
• Meeting legal or regulatory obligations

We do not use your data for automated decision-making or profiling.

6. Data Sharing

We do not sell or rent your personal data to third parties. We share data only in the following limited circumstances:

• Service providers: Third-party platforms used to facilitate sessions, manage communications, or process payments, subject to data processing agreements that require them to protect your data.
• Analytics: Anonymised or aggregated website usage data may be processed by analytics providers (such as Google Analytics).
• Legal requirements: Where disclosure is required by law, regulation, or a valid order from a Singapore authority.

Any third-party service providers we engage are required to handle your data in accordance with the PDPA and our instructions.

7. Data Retention

We retain personal data only for as long as necessary:

• Enquiry data: Up to 12 months from the date of last contact, unless you proceed to enrolment.
• Programme participant data: Up to 3 years after programme completion, for the purposes of annual reviews and follow-up support where applicable.
• Financial and planning data shared during programmes: Retained only for the duration of the programme and deleted upon completion unless you explicitly request otherwise.
• Legal and accounting records: As required by Singapore law (typically 5–7 years).

When data is no longer required, it is securely deleted or anonymised.

8. Data Protection Measures

We take reasonable steps to protect personal data against unauthorised access, disclosure, or loss:

• Secure HTTPS connections on all data transmissions
• Access controls limiting data to authorised staff only
• Regular reviews of data handling practices
• Staff awareness of data protection obligations

In the event of a data breach that poses a significant risk of harm, we will notify affected individuals and the Personal Data Protection Commission (PDPC) in accordance with the PDPA's mandatory breach notification requirements.

9. Cookies and Tracking

Our website uses cookies to improve your browsing experience and understand how the site is used. You can manage your cookie preferences at any time through our Cookie Policy page, which includes a preference management tool.

Essential cookies are required for the site to function and cannot be disabled. Analytics and marketing cookies are optional and used only with your consent.

10. Your Rights

Under the PDPA, you have the right to:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Withdrawal of consent: Withdraw consent to non-essential processing at any time (this does not affect the lawfulness of prior processing).
• Data portability: Request a copy of your data in a portable format where technically feasible.
• Erasure: Request deletion of your data, subject to our legal retention obligations.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

If you believe your data rights have not been respected, you have the right to lodge a complaint with the Personal Data Protection Commission (PDPC) at www.pdpc.gov.sg.

11. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies separately.

12. Children's Privacy

Our programmes and services are designed for adults aged 18 and above. We do not knowingly collect personal data from individuals under 18. If you believe a minor has submitted data to us, please contact us and we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When material changes are made, we will post the updated policy on this page with a revised effective date. Continued use of our website or services following such changes constitutes acceptance of the updated policy.

14. Contact Us

If you have any questions about this Privacy Policy or about how we handle your personal data, please contact us:

• Email: [email protected]
• Phone: +65 6237 8493
• Address: Tidemark Financial Education, 71 Robinson Road, #14-01, Singapore 068895