Privacy Policy
Last updated: 18 May 2025
1. Who We Are
Taydle.com ("Taydle", "we", "our", "us") provides an AI‑powered productivity platform and related services, including TaydleGPT. This Privacy Policy explains how we collect, use, disclose and protect your personal data when you use our website, products and services (collectively, the "Services"). By accessing or using the Services you agree to the practices described below.
Regulatory scope. Taydle is incorporated in Singapore and follows the Singapore Personal Data Protection Act 2012 ("PDPA"). If you are located in the European Economic Area ("EEA") or the United Kingdom we also rely on the General Data Protection Regulation ("GDPR"). For California residents the California Consumer Privacy Act/California Privacy Rights Act ("CCPA/CPRA") may apply. Section 10 lists your specific rights under these laws.
2. Personal Data We Collect
| Category | What it includes | How we obtain it |
|---|---|---|
| Information you provide | Name, email address, billing address, company name (optional), VAT/GST number (optional) | Registration forms, payment checkout, support tickets |
| Information from Google Sign-In | Google account ID, name, primary email address, profile-picture URL (if provided) | When you choose 'Sign in with Google' OAuth flow |
| Payment information | Last four digits of payment card, expiry date, card country, transaction IDs | Entered by you at checkout and processed by Stripe (see Section 5) |
| Usage data (TaydleGPT) | Prompts, responses and feature‑interaction events anonymised at source | Generated automatically when you interact with TaydleGPT |
| Usage data (other pages) | IP address, device type, browser version, time‑stamps, clicked links, referrer URL, session identifiers | Server logs and essential cookies |
| Fraud‑prevention data | IP address linked to account, failed payment attempts, charge‑back metadata | Derived from server logs and Stripe webhooks |
We do not intentionally collect sensitive personal data (e.g. health, biometrics). Please do not submit such data through the Services.
3. Why We Process Your Data & Legal Bases
| Purpose | PDPA legal basis | GDPR legal basis | Examples |
|---|---|---|---|
| Provide, maintain and secure the Services | Contract / Legitimate interests | Contract | Creating and managing your user account, providing customer support, facilitating single-sign-on through Google |
| Process payments & prevent fraud | Contract / Legal obligation | Contract / Legitimate interests | Charging subscription fees, handling charge‑backs |
| Internal analytics & product improvement | Legitimate interests | Legitimate interests | Analysing aggregated, anonymised usage patterns to improve features |
| Comply with law & enforce rights | Legal obligation | Legal obligation | Responding to lawful requests, defending legal claims |
| Communicate service updates | Consent (for optional marketing) | Consent | Sending newsletters when you opt‑in |
4. Cookies & Local Storage
Taydle uses only strictly‑necessary cookies and similar local storage technologies to:
- Keep you signed in (session cookie)
- Link requests to your account for security and billing (IP logging cookie)
We do not set third‑party advertising or analytics cookies. Third-party cookies may be set by Google during the optional OAuth sign-in process and by our payment processor Stripe. See our Cookie Policy for full details.
You can disable cookies via your browser, but parts of the Services may not work.
5. How We Share Your Data
We do not sell or rent your personal data. We share it only with:
- Google LLC (identity provider) – we exchange authentication tokens to verify your account when you choose to log in with Google. Google acts as an independent controller for any data it processes under its own privacy policy.
- Stripe Payments Europe, Ltd. (payment processor) – to process card payments, manage subscriptions and detect fraud.
- Authorities or legal advisers – when required to comply with law, court orders or to protect our rights.
Stripe acts as an independent controller for payment data. You can read its privacy policy at https://stripe.com/privacy.
6. Cross‑Border Data Transfers
Our servers are located in Singapore and the US. Stripe may process your payment data on servers in the United States or other jurisdictions. We may move data out of Singapore or US, or within different data centres in the US or Singapore, for any reason.
7. Data Retention
| Data type | Retention period |
|---|---|
| Account & billing records | 7 years after your last transaction (to meet tax and accounting obligations) |
| Usage logs & IP addresses linked to account | Up to 7 years (for fraud detection and legal defence) |
| Anonymised analytics data | Retained indefinitely because it cannot identify you |
| Marketing consent records | Until you withdraw consent + 2 years |
We securely delete or anonymise data once the applicable period elapses, unless we need to keep it to establish, exercise or defend legal claims.
8. Security Measures
WWe employ industry‑standard safeguards to protect your data. No internet service is 100 % secure, so we encourage you to keep your password safe and contact us immediately if you suspect unauthorised use.
9. Your Rights & Choices
Depending on your location, you may have the right to:
- Access the personal data we hold about you;
- Correct inaccurate or incomplete data;
- Withdraw consent at any time (this does not affect processing already performed);
- Request deletion of your account;
- Object to or restrict certain processing;
- Receive a portable copy of your data;
- Lodge a complaint with a supervisory authority (e.g., Singapore PDPC).
To exercise any of these rights please email [email protected]. We respond within 30 days.
10. Children's Privacy
The Services are not directed to children under 16. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us and we will delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Significant changes will be notified via email or an in‑app banner at least 14 days before they take effect. The latest version will always be published at taydle.com/privacy-policy.
12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact our Data Protection Officer:
Email: [email protected]