Privacy Policy
1. Who we are
SignaOS is operated by SignaOS Pte. Ltd. (UEN 202546601R), a company registered in Singapore with its registered office at 583 Orchard Road, #13-01 Forum Office Tower, Singapore 238884 ("SignaOS", "we", "us"). SignaOS provides an AI operations service that monitors and manages marketing, advertising, and commerce operations for business clients across connected platforms.
For any question about this policy or your data, contact us at privacy@signaos.com. SignaOS's Data Protection Officer can be reached at dpo@signaos.com.
2. Scope of this policy
This policy explains how we handle information in two distinct contexts:
- Website visitors. People who visit
signaos.comor request an operations audit. - Client account operations. Business data we access and process on behalf of a client when that client authorizes SignaOS to operate their advertising and commerce accounts (for example, an advertising account connected through partner permissions).
SignaOS is a business-to-business service. We do not operate a consumer application, and individual members of the public do not create accounts or sign in to use it.
3. Information we collect
3.1 From website visitors
- Contact details you submit through forms (name, email, company, and anything you choose to include in a message).
- Usage and device data collected through analytics, including pages viewed, referrer, approximate location derived from IP address, browser, and device type, gathered using third-party analytics and advertising tools.
- Marketing and attribution data, such as the campaign source that referred you and advertising click identifiers passed in the page URL (for example UTM tags), used to measure and attribute our marketing.
3.2 From client account operations
When a client authorizes SignaOS to operate their accounts, we access the business data needed to run those operations. Depending on the platforms a client connects, this can include:
- Advertising data from connected ad platforms: campaign structures, performance and insights metrics, ad creatives, budgets, and delivery status.
- Commerce data from connected stores and marketplaces: orders, revenue, products, and fulfilment metrics.
- Lead and messaging data where a client enables those surfaces (for example, lead-form submissions or customer messages on connected channels), processed solely to operate that client's customer communications on their behalf.
- Account and authorization metadata needed to connect, such as ad account identifiers and access tokens granted by the client.
This data belongs to the client. SignaOS acts as a service provider (processor) handling it under the client's instruction and the engagement agreement between us.
3.3 Cookies and similar technologies
Our website uses cookies and similar technologies for essential functionality, to remember preferences, to measure traffic, and to understand how our marketing performs. Some are set by us and some by the third-party analytics and advertising tools we use. You can control or block cookies through your browser settings, though blocking some may affect how the site works. Where required by law, we ask for your consent before setting non-essential cookies.
4. How we use information
We use the information above to:
- Respond to enquiries and schedule operations audits.
- Operate, monitor, and optimize a client's advertising and commerce accounts, including reporting, anomaly detection, creative analysis, and approved changes such as budget or status updates.
- Generate briefings, alerts, and recommendations delivered to the client through their chosen channel.
- Measure the performance of our own website and marketing.
- Maintain the security and integrity of our service and comply with legal obligations.
We do not sell personal data, and we do not use platform data for advertising of our own or to build profiles of individuals.
Where the EU or UK GDPR applies, we rely on these legal bases: performance of a contract (to deliver the service a client engages us for), your consent (for non-essential analytics and marketing cookies), our legitimate interests (to operate, secure, and improve the service and our own marketing), and compliance with legal obligations. Under Singapore's Personal Data Protection Act, we collect and use personal data for the purposes described in this policy, with consent or as otherwise permitted by law.
5. Connected platform data
SignaOS connects to advertising and commerce platforms to operate accounts on behalf of clients who have authorized us. For data accessed through any connected platform, we apply the same principles:
- We request only the access and permissions needed for the operations a client has engaged us to run.
- We use the data only to provide and improve the service for that client, never to sell it, and never for unrelated advertising or profiling.
- We handle it in accordance with the applicable terms of the platform it came from.
- We store it securely and delete it when it is no longer needed for the engagement, or on request (see Your rights and data deletion).
6. How we share information
We share information only as needed to run the service:
- Infrastructure and AI sub-processors that help us operate, including cloud hosting and third-party AI model providers used to generate analysis and briefings. Data sent to model providers is processed to produce output for the client and is not used by us to train models.
- Delivery channels chosen by the client to deliver briefings and alerts.
- Connected platforms when we act on a client's account at their instruction.
- Legal and safety disclosures where required by law or to protect rights and security.
We do not share information with third parties for their own marketing.
7. Data retention
We keep website enquiry data for as long as needed to respond and for our legitimate business records. We keep client operational data for the duration of the engagement and for a short period afterward to allow for rollback and reconciliation, then delete or anonymize it. Access tokens are rotated and revoked when an engagement ends. We do not keep personal data longer than necessary for the purposes described in this policy or as required by law.
8. Your rights and data deletion
Subject to applicable law, you may request access to, correction of, or deletion of personal data we hold about you, and you may withdraw consent to non-essential analytics.
How to request deletion of your data. Email privacy@signaos.com with the subject line "Data Deletion Request" and tell us which data or account the request concerns. We will confirm the request, complete the deletion within 30 days, and send you confirmation when it is done.
If you are a client, you may also instruct us to delete the operational data associated with your engagement at any time, and we will revoke our access to your connected platform accounts.
Because SignaOS does not host consumer accounts that people sign into directly, deletion requests are handled through the email channel above rather than a self-service login.
9. Security
We protect data with access controls, encrypted transport, credential isolation per client, and the principle of least privilege. Access tokens and secrets are stored securely and are never exposed in logs or output. No method of transmission or storage is perfectly secure, but we work to protect data in line with the sensitivity of what we handle.
10. International transfers
SignaOS operates from Singapore and uses service providers that may process data in other countries. Where we transfer personal data across borders, we put in place appropriate safeguards, such as standard contractual clauses or transfers to jurisdictions recognized as providing comparable protection, and we require recipients to protect the data to a standard consistent with this policy and applicable law.
11. Children
SignaOS is a business service not directed to children, and we do not knowingly collect personal data from anyone under 18.
12. Changes to this policy
We may update this policy as our service or legal obligations change. We will update the "Last updated" date above and, for material changes, take reasonable steps to notify affected clients.
13. Contact
SignaOS Pte. Ltd.
583 Orchard Road, #13-01 Forum Office Tower
Singapore 238884
Privacy enquiries: privacy@signaos.com
Data Protection Officer: dpo@signaos.com