Privacy Policy
Last updated: July 8th, 2026
This policy is currently under legal review and will be updated. For questions, contact contact@envvo.co
Envvo ("we", "us" or "our") operates www.envvo.co (the "Website") and provides business services to our clients. We are committed to protecting personal data in accordance with the Personal Data Protection Act 2012 of Singapore ("PDPA"). This Privacy Policy explains what personal data we collect, why we collect it, how we use, disclose, and protect it, and what rights you have.
By using the Website or engaging our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this Policy, please do not provide your personal data to us or use the Website.
1. Personal Data We Collect
We may collect the following types of personal data, depending on how you interact with us:
Contact information: name, email address, phone number, and business/organisation name
Account and enquiry details: information submitted through contact forms, booking forms, or email correspondence
Business information: details about your organisation relevant to the services we provide
Technical data: IP address, browser type, device information, and website usage data collected via cookies or similar technologies
Communication records: records of calls, messages, and correspondence with us
We only collect personal data that is necessary for the purposes identified in this Policy, or as otherwise notified to you at the time of collection.
2. Purposes for Collection, Use and Disclosure
We collect, use, and disclose personal data for purposes including:
Responding to enquiries and providing requested information
Delivering, managing, and improving our services
Scheduling and administering appointments, bookings, or consultations
Communicating with you, including sending updates or marketing communications (where you have consented)
Processing payments and maintaining business records
Complying with legal and regulatory obligations
Improving the Website and understanding how visitors use it
Where required by the PDPA, we will obtain your consent before collecting, using, or disclosing personal data for a new purpose.
3. Consent
By submitting your personal data to us (for example, via a contact form, booking form, or email), you consent to our collection, use, and disclosure of that data for the purposes set out in this Policy. You may withdraw your consent at any time by contacting us using the details in Section 9, subject to legal or contractual restrictions and reasonable notice. Withdrawing consent may affect our ability to continue providing certain services to you.
4. Disclosure of Personal Data
We do not sell your personal data. We may disclose personal data to:
Service providers and vendors who support our business operations (e.g. scheduling tools, email/communication platforms, payment processors, cloud hosting providers), under contractual obligations to protect your data
Professional advisers (e.g. legal, accounting) where necessary
Government or regulatory authorities, where required by law
A successor entity in connection with a business transaction (e.g. merger or acquisition), subject to confidentiality obligations
Where personal data is transferred outside Singapore, we take steps to ensure the recipient provides a standard of protection comparable to the PDPA.
5. Retention of Personal Data
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law or legitimate business needs (e.g. tax, accounting, or dispute resolution). When personal data is no longer needed, we securely delete, anonymise, or dispose of it.
6. Protection of Personal Data
We implement reasonable administrative, technical, and physical safeguards to protect personal data against unauthorised access, collection, use, disclosure, copying, modification, or disposal. These include access controls, secure storage, and staff awareness of data protection obligations. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
7. Access and Correction
Subject to the PDPA, you may request:
Access to the personal data we hold about you
Information on how your personal data has been used or disclosed in the past year
Correction of any inaccurate or incomplete personal data
We may charge a reasonable fee for access requests, and may decline requests where permitted under the PDPA (e.g. where disclosure would reveal another individual's personal data). We will respond to requests within a reasonable time.
8. Cookies and Website Analytics
Our Website may use cookies and similar technologies to enhance user experience, analyse traffic, and understand visitor behaviour. You can control or disable cookies through your browser settings; note that this may affect the functionality of the Website.
9. Contact Us
If you have questions, feedback, or requests regarding this Privacy Policy or your personal data, please contact us: contact@envvo.co
You may also lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore if you believe we have not complied with the PDPA (www.pdpc.gov.sg).
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated version will be posted on this page with a revised effective date. We encourage you to review this Policy periodically.