Last Updated: 19th February 2026
1. Introduction
This Privacy Policy describes how HAROCT TECHNOLOGIES SINGAPORE PTE. LTD. (“Haroct”, “we”, “our”, or “us”) collects, uses, discloses, processes, and protects personal data when you use our website, mobile application, and services (collectively, the “Platform”).
Haroct is committed to protecting personal data in accordance with:
-
Singapore’s Personal Data Protection Act 2012 (PDPA)
-
Applicable Thai data protection laws where relevant
-
General Data Protection Regulation (GDPR) principles where applicable
2. What Personal Data We Collect
We may collect the following categories of personal data:
2.1 Identity Information
-
Full name
-
NRIC / Passport / ID number (where required for KYC)
-
Date of birth
-
Business registration details
-
Director / shareholder information
2.2 Contact Information
-
Email address
-
Telephone number
-
Business address
-
Billing address
2.3 Financial & Transaction Information
-
Bank account details
-
Payment transaction records
-
Invoice and settlement data
-
Purchase and order history
2.4 Technical Information
2.5 Compliance Information
We collect only data necessary for legitimate business and regulatory purposes.
3. How We Use Personal Data
We process personal data for the following purposes:
-
Account registration and identity verification
-
Processing transactions and payments
-
Facilitating logistics and cross-border trade
-
Fraud prevention and risk monitoring
-
Compliance with legal and regulatory obligations
-
Customer support and dispute resolution
-
Platform improvement and analytics
We do not sell personal data.
4. Legal Basis for Processing (GDPR Alignment)
Where GDPR applies, we process data based on:
-
Performance of a contract
-
Legal obligation
-
Legitimate business interests
-
User consent (where required)
5. Disclosure of Personal Data
We may disclose personal data to:
-
Payment service providers (e.g., Fiuu Singapore)
-
Banking partners
-
Logistics providers
-
Regulatory authorities
-
Professional advisors (legal, compliance, auditors)
-
Technology service providers
All third parties are contractually obligated to protect personal data.
6. Cross-Border Data Transfers
Due to the nature of cross-border trade operations, personal data may be transferred to:
Haroct ensures that:
-
Adequate safeguards are in place
-
Contractual data protection clauses are applied
-
Transfers comply with PDPA requirements
7. Data Retention
We retain personal data only as long as necessary for:
-
Business operations
-
Legal compliance
-
Regulatory requirements
Compliance-related records (including KYC) may be retained for up to 5–7 years depending on regulatory requirements.
8. Data Security
We implement reasonable administrative, technical, and physical safeguards, including:
However, no system is completely secure, and users acknowledge inherent internet risks.
9. Your Rights (PDPA & GDPR Alignment)
Subject to applicable law, users may:
-
Request access to personal data
-
Request correction of inaccurate data
-
Withdraw consent (where applicable)
-
Request deletion (where legally permissible)
-
Object to certain processing activities
Requests may be submitted via our official contact channel below.
10. Cookies & Tracking
We use cookies and analytics tools to:
Users may adjust browser settings to manage cookies.
11. Third-Party Links
Our platform may contain links to third-party websites. We are not responsible for their privacy practices.
12. Children’s Privacy
Our services are not directed to individuals under 18 years old. We do not knowingly collect personal data from minors without proper supervision.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Updated versions will be published on our Website.
Continued use of the Platform constitutes acceptance of the updated policy.
14. Contact Information
For privacy-related inquiries or requests:
HAROCT TECHNOLOGIES SINGAPORE PTE. LTD.
131G WHITLEY ROAD
THE WHITLEY RESIDENCES
SINGAPORE 297648
Email: customerservice@haroct.com.my