Privacy Policy
Last Updated: 18 January 2026
1. Introduction
Corallith ("we", "us", "our") is committed to respecting and protecting the personal data of individuals who interact with our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or engage our artificial intelligence consulting services.
This policy applies to all personal data collected through our website at https://corallenas.pro, our contact forms, email communications, and during any consulting engagements.
We operate from Singapore and are subject to the Personal Data Protection Act 2012 (PDPA). If you have questions about this policy, please reach us at [email protected].
2. Information We Collect
We collect personal data that you voluntarily provide to us. This may include:
Contact information — your name, email address, telephone number, and organisation name, submitted through our contact form or direct correspondence.
Engagement details — project requirements, business context, and technical information shared during consultations or service delivery.
Usage data — information collected through cookies and analytics tools, such as pages visited, time spent on pages, browser type, device information, and referring URLs. This data is typically aggregated and does not identify you personally.
Communication records — records of correspondence between you and our team, including emails and messages submitted through our website.
3. How We Use Your Information
We process personal data for the following purposes:
Service delivery — to respond to your enquiries, prepare proposals, deliver consulting engagements, and provide ongoing support related to our AI services.
Communication — to send you information relevant to your enquiry or engagement, including project updates and follow-ups. We will not send unsolicited marketing without your consent.
Website improvement — to understand how visitors use our site, helping us improve content and user experience. This relies on aggregated analytics data.
Legal obligations — to comply with applicable laws, regulations, or legitimate requests from authorities in Singapore.
4. Legal Basis for Processing
Under Singapore's PDPA, we process your personal data based on one or more of the following grounds:
Consent — when you submit our contact form or agree to receive communications, you provide consent for us to use the information for the stated purpose.
Contractual necessity — when processing is required to fulfil a consulting engagement or service agreement.
Legitimate interests — to improve our services and understand how our website is used, provided this does not override your rights.
5. Sharing of Information
We do not sell your personal data. We may share information in the following limited circumstances:
Service providers — trusted third parties who assist in operating our website and delivering services, such as hosting providers and analytics platforms. These parties are contractually bound to handle data responsibly.
Legal requirements — when disclosure is required by law, regulation, legal process, or governmental request.
Business transfers — in the event of a merger, acquisition, or asset sale, personal data may be transferred as part of the business assets, subject to the same privacy protections.
6. Data Protection Measures
We take reasonable steps to protect the personal data in our possession. Our measures include encrypted data transmission (TLS/SSL), secure server infrastructure, access controls limiting data access to authorised personnel, and regular reviews of our security practices.
While we strive to protect your personal data, no method of electronic transmission or storage is completely secure. We encourage you to take steps to protect your own information, such as using strong passwords and safeguarding login credentials.
7. Data Retention
We retain personal data only as long as necessary for the purposes described in this policy, or as required by law. General guidelines for retention periods:
Enquiry data — retained for up to 24 months following the last interaction, unless an engagement commences.
Client engagement data — retained for the duration of the engagement plus up to 5 years, in line with professional and regulatory requirements.
Analytics data — aggregated usage data may be retained indefinitely as it does not identify individuals.
8. Cookies
Our website uses cookies to enhance your browsing experience and to collect aggregated usage data. You can manage your cookie preferences at any time.
For comprehensive information about the cookies we use and how to manage them, please refer to our Cookie Policy.
9. Your Rights
Under the PDPA, you have certain rights regarding your personal data:
Access — you may request to know what personal data we hold about you and how it has been used or disclosed during the past year.
Correction — you may request corrections to any personal data that is inaccurate or incomplete.
Withdrawal of consent — you may withdraw your consent for us to collect, use, or disclose your personal data at any time, by contacting us. Please note that withdrawal may affect our ability to provide services to you.
Data portability — where applicable, you may request a copy of your data in a commonly used format.
To exercise any of these rights, please contact us at [email protected]. We will respond within a reasonable timeframe, typically within 30 business days.
10. Third-Party Links
Our website may contain links to external sites that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policy of any site you visit.
11. Children's Privacy
Our services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If you believe we have inadvertently collected such information, please contact us and we will take steps to remove it.
12. International Data Transfers
Some of our service providers may process data in jurisdictions outside Singapore. Where this occurs, we take reasonable steps to ensure that your personal data receives a standard of protection comparable to that under the PDPA, including contractual safeguards with the receiving parties.
13. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised "Last Updated" date. We encourage you to review this policy periodically.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact our data protection team:
+65 9527 3648
105 Cecil Street, #09-02 The Octagon, Singapore 069534
If you are not satisfied with our response, you may lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore at https://www.pdpc.gov.sg.