Privacy Policy

FE Technology and Security Pte Ltd (UEN: 202301449D) ("we," "us," or "our") is committed to safeguarding the personal data of individuals ("you" or "your") who interact with our website – www.fe-technology.com (the "Site"). This Privacy Policy outlines how we collect, use, disclose, and protect your personal data in compliance with the Singapore Personal Data Protection Act 2012 ("PDPA").

Last updated: 01 February 2025

---

1. Data Protection Officer

We have designated a Data Protection Officer (DPO) responsible for ensuring our compliance with the PDPA. For any questions, concerns, or requests relating to your personal data, please contact our DPO:

---

2. Personal Data We Collect

Information You Provide

We collect personal data that you voluntarily provide when you interact with us, including:

• Contact information: Name, company name, email address, phone number
• Enquiry details: Information provided through contact forms, emails, or meetings
• Service engagement data: Project scope, technical information, billing details (for contracted services)

Information Collected Automatically

• Technical data: IP address, browser type, operating system, device information
• Usage data: Pages visited, time on pages, referral sources

---

3. Purpose of Collection, Use, and Disclosure

We collect, use, and disclose your personal data for the following purposes:

• To respond to your inquiries and provide information about our services
• To deliver cybersecurity consulting, audit, VAPT, SSAT, and awareness training services
• To communicate with you regarding potential business opportunities
• To process invoices and manage payments
• To improve our services and website
• To comply with legal and regulatory requirements

---

4. Consent

By submitting your personal data via our contact form or engaging our services, you consent to our collection, use, and disclosure of your personal data for the purposes stated in this Privacy Policy.

Withdrawing Consent

You may withdraw your consent at any time by contacting our DPO. Please note that withdrawing consent may affect our ability to respond to your inquiries or provide services to you. We will inform you of the specific consequences before processing your withdrawal request.

---

5. Disclosure to Third Parties

We do not sell, rent, or trade your personal data. We may disclose your personal data to:

• Service providers: Cloud hosting providers, email service providers, and IT system providers who assist in our operations. These parties are contractually bound to protect your data.
• Professional advisors: Lawyers, accountants, and auditors as necessary for business operations
• Regulatory authorities: When required by law, regulation, or court order

---

6. International Data Transfers

Your personal data may be transferred to, stored, or processed outside Singapore due to our use of cloud-based hosting services. We ensure that such transfers comply with the PDPA through:

• Ensuring recipient countries have comparable data protection laws
• Entering into legally enforceable agreements with service providers requiring PDPA-comparable protection standards

---

7. Protection of Personal Data

As a cybersecurity consultancy, we implement industry-recognized security measures to protect your personal data, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Role-based access controls limiting data access to authorized personnel
• Multi-factor authentication for systems containing personal data
• Regular security assessments and vulnerability testing
• Staff training on data protection and security awareness

---

8. Data Breach Notification

We have implemented a Data Breach Management Plan to detect, assess, and respond to personal data breaches. In the event of a notifiable data breach:

• We will notify the Personal Data Protection Commission (PDPC) within 3 calendar days
• If the breach is likely to result in significant harm to you, we will notify you as soon as practicable
• We will provide information about the breach and steps you can take to protect yourself

---

9. Retention of Personal Data

We retain personal data only as long as necessary to fulfill the purposes for which it was collected or as required by law. When no longer needed, we securely delete or anonymize it.

General retention periods include:

• Client engagement records: 7 years after completion
• Enquiry records: 2 years from last communication
• Financial records: 5 years (as required by IRAS/Companies Act)

---

10. Your Rights Under the PDPA

Access

You may request access to the personal data we hold about you and information about how it has been used or disclosed within the past 12 months. We will respond within 30 calendar days.

Correction

You may request correction of any inaccurate, incomplete, or out-of-date personal data. We will process your request within 30 calendar days.

How to Submit a Request

To exercise these rights, contact our DPO using the details in Section 1. Please provide your full name, contact details, and sufficient information to identify the personal data concerned. We may verify your identity before processing requests.

---

11. Cookies and Tracking Technologies

Our website uses cookies to enhance your browsing experience and analyze website usage. We use:

• Strictly necessary cookies: Essential for website functionality
• Analytics cookies: To understand visitor interactions (requires consent)

You can manage cookie preferences through your browser settings. Note that disabling cookies may affect website functionality.

---

12. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Material changes will be posted on this page with an updated revision date. For significant changes affecting how we handle your personal data, we will notify you via email or prominent website notice before the changes take effect.

---

13. Governing Law

This Privacy Policy is governed by the laws of Singapore. Any disputes shall be subject to the exclusive jurisdiction of the courts of Singapore.

---