Rally your squad

Home / Privacy Policy

Privacy Policy

Personal Data Protection Act (PDPA) — Singapore · Last updated: 4 June 2025

This Privacy Policy explains how RallyHub Pte Ltd (UEN 201346516M) (“RallyHub”, “we”, “us”) collects, uses, discloses, and protects personal data when you visit rallyhub.pro, contact us, or engage our team AI coordination hub services. We comply with the Personal Data Protection Act 2012 (PDPA) of Singapore and applicable subsidiary legislation.

1. Data controller

RallyHub Pte Ltd
1 Changi Business Park Crescent, #05-08 Plaza 8, Singapore 486025
Email: [email protected] · Phone: +65 6541 9037

For data protection enquiries, contact our Data Protection Officer at the email above with subject line “PDPA enquiry”.

2. Personal data we collect

We may collect:

  • Identity and contact data: name, business email, phone number, job title, organisation.
  • Enquiry data: solution interest, squad size, budget range, preferred consultation date, messages you submit via our contact form.
  • Technical data: IP address, browser type, device information, pages visited, referral source, cookie identifiers stored locally when you accept cookies (key: cookies_accepted_rally).
  • Engagement data: meeting notes, proposals, contracts, and hub programme documentation when you become a client.

We do not intentionally collect sensitive personal data (e.g. NRIC, health, biometrics) through this website unless you voluntarily provide it and we have a lawful basis.

3. Purposes of collection, use, and disclosure

We collect and use personal data for purposes including:

  • Responding to enquiries and scheduling hub assessments or squad workshops;
  • Delivering programme hub AI, squad coordination, cross-team delivery, rally milestones, and hub governance services;
  • Improving our website, security, and user experience (including analytics where cookies are accepted);
  • Complying with legal obligations, resolving disputes, and enforcing agreements;
  • Marketing RallyHub services to business contacts where permitted — you may opt out at any time.

We may disclose personal data to service providers (hosting, email, CRM, analytics) bound by confidentiality and data protection obligations, professional advisers, and authorities where required by Singapore law. We do not sell personal data.

4. Consent and withdrawal

By submitting our contact form or accepting cookies, you consent to collection and use for the stated purposes. You may withdraw consent by emailing [email protected]. Withdrawal may affect our ability to provide services. For cookies, you may clear browser storage or decline on first visit (non-essential cookies will not be set until acceptance).

5. Cookies and similar technologies

We use essential cookies for site operation and, upon acceptance via our cookie banner, may use analytics cookies to understand traffic patterns. Your acceptance is stored in localStorage under the key cookies_accepted_rally. See browser settings to manage cookies.

6. Retention

We retain personal data only as long as necessary for the purposes collected, including legal, accounting, or reporting requirements. Enquiry records are typically retained up to twenty-four (24) months unless a client relationship continues.

7. Protection and cross-border transfers

We implement reasonable administrative, technical, and physical safeguards appropriate to the nature of the data. Where data is transferred outside Singapore, we ensure recipients provide a standard of protection comparable to the PDPA, including contractual clauses where required.

8. Your rights under the PDPA

Subject to exceptions in the PDPA, you may:

  • Request access to personal data we hold about you;
  • Request correction of inaccurate or incomplete data;
  • Withdraw consent for processing based on consent;
  • Request information about how we have used or disclosed your data in the past year.

We may charge a reasonable fee for access requests permitted under the PDPA. We will respond within thirty (30) days or as otherwise allowed by law.

9. Do Not Call Registry

If you provide a Singapore telephone number, we will check the Do Not Call Registry before sending marketing messages unless you have given clear consent or the message is excluded under the PDPA.

10. Third-party links

Our site may link to external resources. We are not responsible for their privacy practices. Review their policies before providing personal data.

11. Updates

We may update this policy from time to time. Material changes will be posted on this page with a revised date. Continued use after changes constitutes notice of the updated policy where permitted by law.

12. Contact and complaints

Contact us first at [email protected]. If unresolved, you may lodge a complaint with the Personal Data Protection Commission (PDPC), Singapore.