Consolidated Privacy Policy 

  1. Introduction

This Privacy Policy (“Policy”) applies to Corpstage Pte Limited (“Corpstage”) and its subsidiaries (collectively, the “Corpstage Group”). This Policy explains how we collect, use, disclose, and protect your personal data when you use our websites, including esgconsultingservice.com, gritawards.com, and our primary website, corpstage.com (the “Websites”). 

In this Policy, when we use “we”, “us” or “our”, we refer to the company (within the Corpstage Group) which is collecting your personal data, or which is operating the website which you are accessing or using.

This Policy applies to all personal data that you may provide to us and the personal data we hold about you. By providing us with your personal data or by accessing, using or viewing the applicable website or any of its services, functions or contents (including transmitting, caching or storing of any such personal data), you shall be deemed to have agreed to each and all the terms, conditions, and notices in this Policy. If you do not agree, please cease use of the relevant website(s) and/or service(s) and DO NOT provide any personal data to us. 

As we transition to corpstage.com as our primary platform, data collected on esgconsultingservice.com and gritawards.com will be migrated to corpstage.com. While these websites will continue to operate for API integrations, corpstage.com is now the primary platform for our services. We are committed to protecting your privacy and handling your personal data responsibly. 

  1. What Personal Data We Collect

We collect personal data directly from you and through automated means. This includes: 

  • Contact Information: Name, email address, phone number, postal address. 
  • Account Information: Username, password, security questions, profile information. 
  • Payment Details: Billing information, transaction history, payment method. 
  • Cookies and Tracking Data: IP address, browser type, device information, pages visited, links clicked, time spent on pages. See Section 5 for details. 
  • User Activity: Pages visited, interactions with our services, search queries. 
  • Geo-location Data: If permitted by your device settings, we may collect information about your location. This data is used to provide location-based services and improve functionality. You can control location sharing through your device settings. 
  • Marketing Preferences: Communication preferences and opt-in/opt-out choices. 
  • Other Information: Any other information you choose to provide to us, such as feedback, survey responses, or participation in contests. 

For users in the European Union (EU) and Australia, we process personal data based on legal grounds, including contract performance, compliance with legal obligations, legitimate interests, and consent where required. 

  1. How We Use Your Personal Data

We use your personal data for the following purposes: 

  • Providing Services: Managing accounts, processing payments, delivering services, personalizing your experience. 
  • Customer Support: Responding to inquiries, resolving complaints, providing technical assistance. 
  • Marketing and Communication: With your explicit consent, sending promotional materials, newsletters, updates, and other marketing communications. You can withdraw your consent at any time. 
  • Legal Compliance: Meeting regulatory requirements in Singapore, the EU (GDPR), and Australia (Privacy Act 1988), including tax and accounting obligations. 
  • Security & Fraud Prevention: Detecting, preventing, and responding to security risks, fraud, and abuse. 
  • Service Improvements: Analyzing usage patterns, conducting research, and improving our Websites and services. 

Where applicable, processing is categorized as: 

  • Necessary for Contract Performance: (e.g., account creation, service access, payment processing). 
  • Legitimate Interests: (e.g., fraud detection, service improvements, direct marketing where permitted by law). 
  • Consent-based Processing: (e.g., marketing communications where explicit consent is required). 
  • Legal Obligation: (e.g., compliance with tax laws, responding to legal requests). 
  1. Disclosure of Your Information

We do not sell your personal data. However, we may share it with: 

  • Corpstage Group Entities: To provide seamless services and for internal administrative purposes. 
  • Third-party Service Providers: For payment processing, cloud storage, analytics, marketing, customer support, and other essential services. We ensure these providers are contractually obligated to protect your data. 
  • Regulatory Authorities: To comply with legal obligations, respond to legal requests, and protect our legal rights. 
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your data may be transferred as part of that transaction. You will be notified of any such transfer.    

International Transfers: When data is transferred outside Singapore, the EU, or Australia, we ensure compliance through Standard Contractual Clauses (SCCs), adequacy decisions, or other recognized safeguards to maintain an adequate level of protection for your data. 

  1. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our Websites. These technologies collect information about your browsing behavior and preferences. We use the following types of cookies: 

  • Essential Cookies: Required for website functionality (e.g., login, shopping cart). 
  • Functional Cookies: Remember user preferences (e.g., language, region). 
  • Analytical Cookies: Track website performance (e.g., Google Analytics, with IP anonymization enabled). These help us understand how users interact with our site. 
  • Advertising Cookies: Used for personalized ads (if applicable). [Only include if applicable] 

You can manage your cookie preferences through our [Cookie Settings/Banner]. Please note that disabling certain cookies may affect the functionality of the Websites. 

  1. Third-party Services and Social Networks

We integrate with third-party services such as social media platforms, payment processors, and Google Maps. These services may collect information about you. We do not control the data collection practices of these third parties, and we encourage you to review their privacy policies to understand how your data is handled. If you interact with social media plugins on our site, those platforms may also collect information about your visit. 

  1. Data Security

We implement reasonable security measures, including: 

  • Encryption of sensitive data in transit and at rest. 
  • Access controls and authentication mechanisms to restrict access to personal data. 
  • Regular security assessments and audits to identify and address vulnerabilities.    
  • Employee training on data privacy and security best practices. 

However, no system is completely secure. We encourage users to take precautions to protect their personal data, such as using strong passwords and keeping their software updated. 

  1. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this Policy, or as required by applicable laws and regulations. The length of retention may vary depending on the type of data and the purpose of processing. We consider factors such as: 

  • The duration of your relationship with us. 
  • Legal and regulatory obligations. 
  • The sensitivity of the data. 
  • Whether there is a need to retain the data for legal claims or investigations. 
  1. Your Rights

Depending on your location and applicable law, you have certain rights regarding your personal data, including: 

  • Access & Correction: Requesting access to and correction of your data. 
  • Data Portability: Obtaining a copy of your data in a structured, commonly used, and machine-readable format (EU users under GDPR). 
  • Deletion (“Right to be Forgotten”): Requesting erasure of your data where legally applicable (EU users under GDPR). 
  • Objection & Restriction: Objecting to or restricting the processing of your data in certain situations. 
  • Withdrawal of Consent: Opting out of marketing at any time. 

To exercise your rights, please contact us at [email address removed]. We will respond to your request within a reasonable timeframe and in accordance with applicable law. We may require you to verify your identity before processing your request. 

  1. Governing Law

This Policy is governed by the laws of Singapore. If you are in the EU, GDPR protections apply. For Australian users, we comply with the Privacy Act 1988. 

  1. Changes to this Policy

We may update this Policy from time to time to reflect changes in our practices or applicable law. We will notify users of any material changes via email or a prominent notice on our Websites. Continued use of our services constitutes acceptance of the revised Policy.    

  1. Complaints and Contact Information

For privacy-related inquiries, complaints, or to exercise your rights, contact our Data Protection Officer (DPO) at: 

Data Protection Officer 190 Clemenceau Avenue #06-01, Singapore 239924 Singapore Email: admin@corpstage.com 

If you are unsatisfied with our response, you may escalate concerns to the Personal Data Protection Commission (PDPC) in Singapore, the Office of the Australian Information Commissioner (OAIC) in Australia, or other relevant authorities in your jurisdiction 

Disclaimer Regarding Data Security 

While we implement reasonable security measures to protect your personal data, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. You acknowledge and accept this inherent risk.