Joyce Teo
Privacy Policy
Effective date: 17 March 2026 · Jurisdiction: Singapore · Governed by the Personal Data Protection Act 2012 (PDPA)
Your privacy matters. This policy explains what personal data Joyce Teo collects through this website and in the course of providing services, why it is collected, how it is used, and what rights you have over your own information. This policy is written in plain language — not to obscure, but to be clear.
1. Who This Policy Applies To
This Privacy Policy applies to all individuals who visit the website at www.joyceteo.com, submit an application or contact form, sign up to the mailing list, download any resources or worksheets, or engage Joyce Teo's services in any capacity.
The data controller is Joyce Teo, a sole proprietor based in Singapore. For all privacy-related enquiries, contact: joyceteo.sage@gmail.com.
2. What Personal Data Is Collected
The following categories of personal data may be collected:
Identity data: your name, role or job title, and company name (where provided).
Contact data: email address and, where provided, telephone number.
Application data: responses submitted through application forms, including information about your professional situation, goals, and challenges.
Communication data: messages sent via the contact form, email, or any other channel.
Session data: notes and summaries created in the course of delivering coaching services (held privately and not shared).
Payment data: billing details processed through Simplero's payment infrastructure. Full card numbers are never stored by Joyce Teo directly.
Technical data: IP address, browser type, pages visited, and time spent on the website — collected automatically via standard website analytics.
No special categories of sensitive personal data (such as health, race, religion, or political views) are intentionally collected. If you choose to disclose such information in the course of an engagement, it is held with the same confidentiality obligations as all other session content.
3. How Personal Data Is Collected
Personal data is collected through the following means:
Contact and enquiry forms on this website.
Application forms submitted prior to a discovery call.
Email list sign-up forms and lead magnet download requests.
Direct email, phone, or video call communication.
Booking and calendar systems used to schedule calls.
Payment processing during programme enrolment.
Automatic collection via website cookies and analytics tools.
4. Why Personal Data Is Collected and Used
Personal data is collected and used only for the purposes described below. The legal basis for each use under the Singapore PDPA is noted.
Purpose | Data used | Basis |
|---|---|---|
Responding to enquiries and contact form submissions | Identity, contact | Consent / legitimate interests |
Reviewing and processing applications | Identity, contact, application data | Consent |
Delivering coaching services | Identity, contact, session data | Contract performance |
Processing payments | Identity, contact, payment data | Contract performance |
Sending the email newsletter and programme updates | Identity, contact | Consent |
Delivering digital downloads and resources | Identity, contact | Consent / contract performance |
Improving the website and understanding visitor behaviour | Technical data | Legitimate interests |
Complying with legal obligations | Any relevant data | Legal obligation |
Your personal data will not be used for any purpose other than those listed above without your prior consent.
5. Email List and Marketing Communications
If you sign up to the Joyce Teo mailing list — whether through the website opt-in form or by downloading a resource — you consent to receiving periodic emails. These may include reflections, programme updates, new resources, and occasional offers.
You may unsubscribe at any time by clicking the unsubscribe link in any email, or by emailing joyceteo.sage@gmail.com. Unsubscribing will remove you from marketing communications but will not affect transactional communications related to an active service engagement.
The mailing list is managed through the Simplero platform. By subscribing, your name and email address are stored within Simplero's system. Simplero's own privacy policy governs the processing of that data on their platform.
6. Sharing of Personal Data
Joyce Teo does not sell, rent, or trade personal data to any third party.
Personal data may be shared with the following categories of third parties only to the extent necessary to deliver the services described:
Simplero — the website and CRM platform used to manage the site, email list, payments, and digital downloads. Data stored on Simplero is subject to their privacy policy.
Calendar and scheduling tools — used to manage discovery call bookings. Only your name and email are shared for this purpose.
Payment processors — card networks and processors used by Simplero to handle transactions securely. Joyce Teo does not store full card details.
Legal and regulatory authorities — only where required by law or court order.
No personal data is shared with third-party marketers, advertisers, or data brokers.
7. Cookies and Website Analytics
This website uses cookies — small text files stored on your device — to enable the website to function correctly and to understand how visitors use the site.
The types of cookies used include:
Essential cookies: required for the website to operate. These cannot be disabled.
Analytics cookies: used to understand page views, traffic sources, and visitor behaviour in aggregate. These do not identify you personally.
Functional cookies: used to remember your preferences, such as form input, across a session.
You may disable non-essential cookies through your browser settings at any time. Doing so may affect certain website functionality.
8. Data Retention
Personal data is retained only for as long as is necessary for the purposes for which it was collected, or as required by law.
Active client records (including session notes and communications) are retained for a minimum of 3 years following the end of an engagement, in case of any subsequent queries or disputes.
Application data from unsuccessful applicants is deleted within 6 months of the decision being communicated.
Email list subscribers remain on the list until they unsubscribe. Inactive subscribers (no opens in 24 months) may be periodically removed.
Payment records are retained for 7 years in accordance with Singapore's accounting and tax requirements.
Website technical data (analytics) is retained in aggregate and anonymised form only.
9. Data Security
Reasonable technical and organisational measures are in place to protect your personal data from unauthorised access, disclosure, loss, or misuse. These include secure email practices, password-protected systems, and use of reputable third-party platforms with their own security standards.
No method of transmission over the internet is completely secure. While every effort is made to protect your data, absolute security cannot be guaranteed. In the event of a data breach that is likely to affect your rights, you will be notified as required under the PDPA.
10. Your Rights Under the PDPA
Under Singapore's Personal Data Protection Act 2012, you have the following rights regarding your personal data:
Right of access: you may request a copy of the personal data held about you.
Right of correction: you may request that inaccurate or incomplete data be corrected.
Right of withdrawal: where processing is based on consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.
Right to data portability: in certain circumstances, you may request that your data be provided in a structured, commonly used format.
To exercise any of these rights, please contact joyceteo.sage@gmail.com. Requests will be responded to within 30 days. Identity verification may be required before data is released or amended.
If you believe your personal data has been handled in a manner inconsistent with the PDPA, you may lodge a complaint with the Personal Data Protection Commission (PDPC) at www.pdpc.gov.sg.
11. Children's Privacy
This website and all services are intended solely for adults. No personal data is knowingly collected from individuals under the age of 18. If you believe a minor has submitted personal data through this website, please contact joyceteo.sage@gmail.com and it will be deleted promptly.
12. International Data Transfers
This website is operated from Singapore. If you are accessing this website from outside Singapore, your personal data may be transferred to and processed in Singapore or in other countries where the third-party platforms used (such as Simplero) store their data. By using this website, you consent to such transfers.
Where data is transferred internationally, reasonable steps are taken to ensure it receives a standard of protection comparable to that required under the Singapore PDPA.
13. Changes to This Policy
This Privacy Policy may be updated from time to time to reflect changes in practices, technology, or legal requirements. The effective date at the top of this page will be updated accordingly. Where changes are material, reasonable notice will be provided to active subscribers via email.
Continued use of this website following any update constitutes acceptance of the revised policy.
14. Contact
For any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data, please contact:
Joyce Teo
Singapore
joyceteo.sage@gmail.com
© 2026 Joyce Teo · Singapore · joyceteo.sage@gmail.com
Note: This Privacy Policy has been drafted to reflect the requirements of Singapore's Personal Data Protection Act 2012 (PDPA). It is recommended that you have it reviewed by a qualified Singapore lawyer or a PDPA-registered Data Protection Officer before publishing, particularly if your client base extends to individuals in the European Union (where GDPR may also apply) or other jurisdictions with their own data protection requirements.
