General information

Definitions

Key terms used in this policy are defined below to clarify their meaning in the context of how we handle personal data.

Personal data refers to information that identifies or can reasonably identify an individual, such as name, contact details, job title, and other identifiers collected in connection with our services.

Processing means any operation performed on personal data, including collection, storage, use, disclosure, retention and deletion.

User means any natural person who visits Ownership.pro, engages with our resources, or enters into a contractual relationship with Ownership.

Service refers to the advisory, documentation and resource offerings provided by Ownership, accessible via Ownership.pro or through direct engagement.

Cookies are small data files placed on a user’s device to enable website functionality, analytics and preference storage. We use minimal cookies for site operation and analytics.

What data we collect

We collect personal data that is necessary for providing services, responding to enquiries, and for administrative or legal compliance purposes. Data collection is limited to what is relevant and proportionate.

How we use data

We use personal data only for clear operational purposes necessary for delivering our services, legal compliance, and improving user experience.

• To respond to enquiries and provide requested information or services.
• To perform contractual obligations and manage engagements with clients and partners.
• To administer billing and payment where applicable using designated processors.
• To send operational messages about service updates, policy changes and scheduled maintenance.
• To analyse site usage and improve content, tools and user flows.
• To conduct internal reviews, audits and compliance checks in line with legal obligations.
• To maintain security, prevent abuse and contribute incidents.
• To aggregate and anonymise data for reporting and research purposes without identifying individuals.

Legal bases for processing

Processing of personal data is carried out in accordance with applicable law. The main legal bases we rely upon are set out below.

• Performance of a contract: processing necessary to provide services or fulfil contractual obligations.
• Legitimate interests: processing for operational management, security, and improving services, where such interests do not override individual rights.
• Consent: where users have expressly consented to specific processing activities such as certain cookies or marketing communications.
• Legal obligation: processing required to comply with applicable laws and regulatory requirements.

Cookies and similar technologies

Ownership.pro uses cookies and similar technologies to provide basic site functionality, performance analytics and user preferences. Where required by law, we seek consent before setting non-essential cookies.

Types of cookies used include essential cookies for site operation, analytics cookies to measure site traffic and performance, and preference cookies to remember display settings.

Cookie categories: essential (required for operation), analytics (performance measurement), preferences (user settings) and marketing (third-party advertising, used only with consent).

Users can manage cookie preferences via the site cookie settings or through their browser controls. Disabling non-essential cookies may reduce certain site features and analytics accuracy.

Full cookie policy

Data sharing and disclosures

We do not sell personal data. Personal data may be shared with third parties only where necessary for service delivery, legal compliance, or with the user’s consent.

• Service providers who process data on our behalf under contract (e.g., hosting, analytics, payment processors).
• Professional advisors and auditors where necessary for legal, tax or compliance purposes.
• Regulators or law enforcement if required by law or to respond to lawful requests.
• Relevant counterparties in the case of corporate transactions, such as mergers or reorganisations, subject to due diligence and confidentiality protections.
• Third parties where users have explicitly consented to the sharing of their data.
• Aggregated or anonymised data shared for research or reporting where individuals cannot be identified.

Cross-border transfers

Where personal data is transferred outside Singapore, we rely on appropriate safeguards such as contractual protections, standard contractual clauses, or other lawful transfer mechanisms consistent with applicable data protection requirements.

Transfers to third-party service providers are governed by contracts requiring adequate protections, limited use, and obligations to maintain confidentiality and security.

Data retention

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, to meet legal or regulatory requirements, or to resolve disputes.

Account and engagement records are kept for the duration of the client relationship and for a defined period thereafter necessary for administrative and legal purposes.

Communications and correspondence are retained to support service delivery, recordkeeping and potential future enquiries, typically for a period aligned with business needs and legal obligations.

Technical logs and analytics data are retained for operational and security purposes; aggregated forms may be retained longer for trend analysis.

When data is no longer required it will be securely deleted or anonymised in accordance with our retention procedures.

Security and retention

We implement administrative, technical and physical measures appropriate to the sensitivity of the data we process. Measures include access controls, encryption where appropriate, regular reviews of systems and contractual safeguards for third-party processors.

• Access controls and role-based permissions to limit data access to authorised personnel only.
• Regular security assessments, patch management and monitoring to detect and address vulnerabilities.
• Use of secure transmission methods and encryption for sensitive data where appropriate.

Your data rights

Subject to applicable law, users have rights regarding their personal data, including access, correction, deletion and objection to certain processing activities. Requests should be submitted as described below.

• Right to access: request a copy of personal data we hold about you.
• Right to rectification: request correction of inaccurate or incomplete data.
• Right to deletion: request deletion of personal data where processing is no longer necessary.
• Right to object: object to certain processing activities based on legitimate interests.
• Right to restriction: request limitation of processing in certain circumstances.
• Right to data portability: request transmission of personal data in a structured, commonly used format where applicable.
• Right to withdraw consent: withdraw consent for specific processing activities where consent was the basis.
• Right to lodge a complaint with a supervisory authority if you consider your rights have been infringed.

How to exercise your rights

Submit rights requests via the contact channels on Ownership.pro or by mail to 28 Stevens Road, Singapore, 259866. Provide sufficient detail to identify the relevant data and the specific request. We may require verification of identity before processing the request.

[email protected]

We will acknowledge receipt of a rights request promptly and aim to respond within a reasonable period in accordance with applicable law. In some cases, more time may be required to verify identity or to collect information necessary to respond.

Compliance with applicable data protection standards

Where EU data protection requirements apply, we implement measures to respect the rights and safeguards set out in relevant legislation. This includes transparency, data minimisation and appropriate legal bases for processing.

• Transparency about processing and purposes.
• Limitation to necessary data and minimal retention.
• Mechanisms to allow individuals to exercise their rights.
• Contracts and safeguards for international data transfers where required.
• Appropriate technical and organisational measures to protect personal data.
• Recordkeeping of processing activities where applicable.

If you are subject to EU supervisory authority oversight, you may contact the relevant authority in addition to raising a query with Ownership via the contact details provided.

Marketing and communications

Ownership may use contact information to send informational updates, product notices, and occasional marketing communications relevant to ownership strategy and corporate purpose. Marketing messages are limited to topics related to our services and initiatives in Singapore. Consent for marketing is collected where required by law and stored with the business record.

To stop receiving marketing communications, follow the unsubscribe link included in any email from Ownership or submit an unsubscribe request via the contact form on Ownership.pro. Processing of unsubscribe requests may take up to five business days.

Children's privacy

Ownership does not knowingly collect personal information from children under 13. Our services and content are intended for adult users and professionals. If a parent or guardian believes that we have collected information about a child under 13, please contact us so we can take appropriate steps.

Third-party links

Our site may contain links to third-party websites and services that are not controlled by Ownership. These links are provided for convenience and do not imply endorsement. We are not responsible for the privacy practices or content of external sites.