Privacy Policy

Section 01

About This Policy

Decretum Research Bureau Pte Ltd (UEN 201900234K), incorporated in Singapore and operating at 8 Marina View, #27-15, Singapore 018960, is the data controller for personal data collected through this website and in the course of providing research bulletins, subscriptions and custom research engagements.

This policy applies to all personal data submitted to us through our website enquiry forms, subscription sign-ups, research participation and any direct correspondence. By using our website or engaging our services, you acknowledge that we may process your personal data in the manner described here.

This policy should be read alongside our Cookie Policy and Terms & Conditions.

Section 02

Data We Collect

We collect personal data only where it is reasonably necessary for the services we provide. The categories of data we may collect include:

• Contact details — name, job title, organisation, email address and telephone number provided through our enquiry and subscription forms.
• Transaction records — service tier selected, purchase date and payment reference numbers (we do not store payment card data directly).
• Research participation data — where an individual participates in a structured survey or interview as part of a custom engagement, the responses provided.
• Correspondence records — emails, written submissions and any other communications you send to us.
• Usage data — anonymised data on how visitors interact with this website, collected via analytics tools subject to your cookie preferences.

We do not collect sensitive personal data (as defined under the PDPA) unless you voluntarily provide it in correspondence, and we do not use it for any purpose other than responding to your enquiry.

Section 03

How We Use Your Data

We use personal data for the following purposes:

• Responding to enquiries and delivering the service or research product you have requested.
• Administering bulletin subscriptions, including dispatching new bulletins, access credentials and executive briefing invitations.
• Conducting bespoke research engagements — including coordinating interviews, surveys and report delivery.
• Issuing invoices, receipts and other account correspondence relevant to your purchase or subscription.
• Sending occasional updates about new bulletin publications, research topics or programme changes, where you have opted in or where we have a legitimate basis to do so under the PDPA.
• Improving the quality and relevance of our research by understanding how subscribers engage with bulletin content (in aggregate and anonymised form).

We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects.

Section 04

Disclosure to Third Parties

We do not sell, rent or trade personal data to any third party. We may share data with the following categories of service providers strictly for operational purposes:

• Payment processing platforms — for the purpose of completing purchase transactions. These providers are bound by their own PDPA-compliant or equivalent data handling obligations.
• Email delivery and document distribution tools — to send bulletins, briefings and transactional correspondence to subscribers.
• Website analytics providers — to receive anonymised, aggregated usage data. These tools are configured to avoid collection of personally identifiable information where possible, subject to cookie preferences.
• Professional advisers — including accountants and legal advisers, under obligations of confidentiality, where reasonably required.

We take reasonable steps to ensure all third-party service providers implement appropriate data protection measures. We will not disclose personal data to any government body or regulatory authority except where required by law or a binding legal process.

Section 05

Retention of Data

We retain personal data only for as long as it is needed for the purpose for which it was collected, or as required by applicable law:

• Subscriber and purchaser records are retained for a period of seven years from the date of the last transaction, in line with standard accounting and record-keeping obligations.
• Enquiry and correspondence records are retained for up to three years from the date of the last communication, unless a service engagement follows.
• Research participation data is retained for the duration of the engagement plus three years, after which it is securely deleted or anonymised.
• Website analytics data is retained in aggregated, anonymised form for up to twenty-four months.

When data is no longer required, it is securely deleted or rendered permanently unidentifiable.

Section 06

Security Measures

We implement reasonable technical and organisational measures to protect personal data from unauthorised access, disclosure, alteration or loss. These include:

• TLS encryption for all data transmitted between your browser and our servers.
• Access controls limiting internal access to personal data to staff with a clear operational need.
• Regular review of the third-party tools and platforms through which data is processed.
• Secure document delivery channels for bulletin dispatch and research deliverables.

No system is entirely without risk. If you have reason to believe your personal data has been compromised through an interaction with us, please contact us immediately at the address set out in Section 10.

Section 07

Your Rights

Under the PDPA, you have the right to:

• Request access to the personal data we hold about you, and to receive a copy of that data in a reasonable timeframe.
• Request correction of any personal data that is inaccurate or incomplete.
• Withdraw your consent to our use of your data for marketing or non-essential purposes at any time. Withdrawal does not affect processing that occurred prior to the withdrawal.
• Request the portability of your data to another organisation, where technically practicable.
• Lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore if you believe your data has been handled in breach of the PDPA.

To exercise any of these rights, please contact our Data Protection Officer at the details in Section 10. We will respond to access or correction requests within thirty calendar days, or notify you if a longer period is required.

Section 08

Cookies & Tracking

Our website uses cookies and similar tracking technologies to support its functionality and to understand how visitors engage with our content. Cookies are small text files placed on your device when you visit a website.

We use cookies for the following general purposes: maintaining your session preferences, measuring anonymous visit counts and content engagement, and (where you have consented) supporting third-party analytics and remarketing tools.

You can manage your cookie preferences at any time by revisiting our Cookie Policy, which describes each category of cookie we use and provides instructions for adjusting your browser settings. Declining non-essential cookies will not prevent you from accessing any part of this website.

Section 09

Updates to This Policy

We review this policy periodically and may update it to reflect changes in our data practices, service offerings or applicable law. The date of the most recent update is shown at the top of this page.

Where changes are material, we will notify active subscribers by email prior to the updated policy taking effect. Continued use of our website or services after any update constitutes acceptance of the revised terms.

Section 10

Contact Our Data Protection Officer

If you have questions about this policy, wish to exercise your data rights, or wish to raise a concern about how we have handled your personal data, please contact us:

You also have the right to direct complaints to the Personal Data Protection Commission (PDPC) of Singapore. Further information is available at www.pdpc.gov.sg.