Privacy Policy

1. Organisation and data controller

AI Money Flow Pte. Ltd. acts as the data controller for personal information gathered via aimoneyflow.one, email correspondence, flow track enrolment forms, and in-person services at our Telok Ayer flow studio. Questions about this policy or your data rights may be directed to [email protected] or by post to the registered address above. We aim to assign a Data Protection Officer contact for all privacy-related communications.

2. Categories of personal data collected

We gather personal data through voluntary submission and through normal use of our digital platforms:

• Contact identifiers: name, email address, telephone number, mailing address, and organisation name when provided for corporate flow programme enquiries.
• Track enrolment records: selected flow tracks, cohort dates, attendance logs, fee payment references, and completion status for capstone review packs.
• Correspondence content: messages sent through our contact form, email threads, and support requests regarding parallel agent walkthroughs or household budget workshops.
• Technical identifiers: IP address, browser user agent, device type, referring URL, session duration, and cookie tokens as described in our Cookie Policy.
• Pipeline configuration data: sample spreadsheets, category rule definitions, inflow outflow map drafts, and agent queue preferences submitted during educational sessions — processed solely for track delivery and not used for autonomous financial decisions.

We do not request NRIC numbers, full bank account numbers, or payment card details through this website. Where track fees are collected, payment card processing occurs through independent payment service providers governed by their own privacy notices.

3. Purposes of data processing

Personal data is processed for legitimate business purposes connected to our cash-flow pipeline education services:

• Registering participants in flow tracks and delivering scheduled studio or online sessions.
• Responding to enquiries about AI cash-flow management programmes and parallel money-flow agent demonstrations.
• Setting up parallel agent assist environments during onboarding with facilitator supervision.
• Issuing administrative notices about schedule changes, venue updates, policy revisions, and cohort reminders.
• Measuring aggregated website performance and improving flow track materials through anonymised analytics where consent is given.
• Fulfilling statutory obligations including ACRA filing requirements and responding to lawful requests from Singapore authorities.
• Detecting and preventing fraudulent form submissions, honeypot abuse, and unauthorised access attempts.

4. PDPA legal bases

Our processing activities align with PDPA grounds as follows:

• Consent: Obtained through the consent_pdpa checkbox on contact forms, track enrolment agreements, and optional analytics or marketing cookie selections. You may withdraw consent by contacting [email protected], though withdrawal may limit our ability to deliver active enrolments.
• Contractual necessity: Processing required to perform flow track services you have registered for, including attendance records and certificate issuance.
• Legal obligation: Retention of financial records and corporate documents as mandated by Singapore law.
• Legitimate interests: Website security monitoring, aggregated service improvement, and internal audit activities that do not override your privacy rights.

5. Disclosure to third parties

We do not sell personal data. Disclosure occurs only where necessary:

• Service providers: Cloud hosting, email delivery, payment processing, and analytics vendors operating under contractual confidentiality and data protection obligations.
• Professional advisers: Legal, accounting, or audit professionals bound by professional confidentiality duties.
• Regulatory bodies: PDPC, ACRA, or other authorities when required by applicable law or court order.
• Corporate transactions: In connection with a merger, acquisition, or asset sale, subject to continued protection of your data.

Where personal data is transferred outside Singapore, we ensure comparable protection through contractual safeguards or reliance on jurisdictions recognised under PDPA transfer provisions.

6. Retention schedules

We retain personal data only as long as necessary for the purposes collected:

• Contact form submissions: 24 months from last interaction unless an active enrolment exists.
• Track enrolment and attendance records: 7 years from completion for audit and dispute resolution purposes.
• Pipeline configuration samples submitted during sessions: deleted within 90 days after track completion unless you request extended retention for ongoing monthly review cadence services.
• Marketing consent records: until consent withdrawal plus 12 months for compliance documentation.
• Server logs and security records: 12 months unless extended for active incident investigation.

7. Your rights under the PDPA

Singapore residents may exercise the following rights subject to PDPA exceptions:

• Access: Request a copy of personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Withdrawal of consent: Withdraw consent for processing that relies on consent, understanding this may affect service delivery.
• Portability: Where technically feasible, receive data you provided in a structured, commonly used format.

Submit requests to [email protected] with sufficient detail to locate your records. We respond within 30 calendar days. A reasonable administrative fee may apply to manifestly unfounded or repetitive requests.

8. PDPC contact and complaints

If you believe we have not handled your personal data appropriately, contact us first at [email protected] so we may investigate and resolve your concern directly. You may also lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore at www.pdpc.gov.sg if you remain dissatisfied after our response.

9. Cookies and tracking technologies

Our website uses cookies and local storage for essential functionality, preference memory, and optional analytics. Detailed information about cookie categories, durations, and opt-out methods is provided in our Cookie Policy. Non-essential cookies are activated only after you provide consent through our cookie banner.

10. Security measures

We implement administrative, technical, and physical safeguards appropriate to the sensitivity of data processed:

• TLS encryption for data transmitted between your browser and our servers.
• Access controls limiting employee access to personal data on a need-to-know basis.
• Regular review of third-party vendor security practices for hosting and email services.
• Honeypot and validation mechanisms on contact forms to reduce automated spam submissions.
• Periodic assessment of data retention schedules to ensure information is not kept longer than necessary.
• Staff training on PDPA obligations and secure handling of pipeline configuration samples submitted during flow tracks.

No transmission method over the internet is completely secure. While we strive to protect your data, we cannot guarantee absolute security and encourage you to use strong passwords and secure devices when communicating with us. If you suspect unauthorised access to data you shared with us, notify [email protected] promptly so we can investigate and take remedial action.

10a. Automated decision-making

Our parallel money-flow agent may generate automated category suggestions and flow summary drafts during educational sessions. These outputs are assistive only and require your explicit approval before affecting any personal finance management record you maintain. We do not make solely automated decisions producing legal or similarly significant effects about individuals without human review. Participants always retain the ability to reject, modify, or override agent suggestions through the review-and-approve workflow taught in our flow tracks.

11. Change log

We may update this Privacy Policy to reflect changes in our practices, technology, or legal requirements. Material changes will be indicated by updating the "Last updated" date at the top of this page. Continued use of our website after changes constitutes acknowledgment of the revised policy. Previous versions may be requested by contacting [email protected].

• 27 June 2026: Initial publication of Privacy Policy for aimoneyflow.one launch.

12. Children and minors

Our flow tracks and services are directed at adults and corporate teams. We do not knowingly collect personal data from individuals under 18 without verifiable parental or guardian consent. If you believe we have inadvertently collected data from a minor, contact [email protected] for prompt deletion.

13. Marketing communications

With your consent, we may send information about upcoming flow cohorts, new pipeline modules, and parallel agent feature updates. You may opt out of marketing emails at any time by clicking the unsubscribe link or emailing [email protected]. Opting out of marketing does not affect transactional communications about active enrolments or enquiry responses.

14. Contact for privacy matters

AI Money Flow Pte. Ltd.
137 Telok Ayer Street, #06-11, Singapore 068602
Email: [email protected]
General enquiries: [email protected]
Phone: +65 6982 5174