NMT Privacy Policy

Last updated: 2026-06-01

Neu Media Technology LLP (“NMT”, “we”, “us” or “our”) respects the privacy and confidentiality of personal data entrusted to us. This Privacy Policy explains how we collect, use, disclose, store, protect and otherwise process personal data in connection with our business, services, websites, enquiries, project engagements, hosting arrangements, support services and related communications.

This Privacy Policy is intended to comply with the Personal Data Protection Act 2012 of Singapore (“PDPA”), including any amendments, regulations, advisory guidelines and directions issued by the Personal Data Protection Commission of Singapore (“PDPC”), where applicable.

1. Definitions

For the purposes of this Privacy Policy:

“Client” means any customer, organisation or person that engages NMT for Services.

“Client Data” means information, content, records, documents, files or data that a Client, its users, employees, contractors, customers, suppliers or other authorised persons submit, upload, process or store in systems, platforms, databases or applications provided, implemented, hosted or supported by NMT.

“Personal Data” has the meaning given under the PDPA and generally refers to data about an individual who can be identified from that data, or from that data and other information to which an organisation has or is likely to have access.

“Services” means services provided by NMT, including but not limited to project scoping, business analysis, solution proposal, implementation, software configuration, custom development, technical documentation, staging and production deployment, user acceptance testing, training, server hosting, cloud hosting, maintenance, support subscription services, helpdesk support, troubleshooting, managed services and related operational activities.

“Data Protection Officer” or “DPO” means the person or team designated by NMT to oversee matters relating to personal data protection.

2. Application of this Privacy Policy

This Privacy Policy applies to Personal Data collected, used, disclosed or otherwise processed by NMT in Singapore or in connection with NMT’s business and Services.

This Privacy Policy applies to Personal Data provided to us by Clients, prospective Clients, website visitors, business contacts, suppliers, service providers, job applicants and other persons who interact with NMT.

Where NMT processes Personal Data for its own business purposes, NMT is responsible for complying with applicable PDPA obligations in relation to such Personal Data.

Where NMT processes Personal Data on behalf of and for the purposes of a Client under a written agreement, NMT may act as a data intermediary for that Client. In such cases, the Client remains responsible for determining the purposes for which the Personal Data is collected, used or disclosed, and for ensuring that it has obtained all necessary consents, notifications and legal bases required under applicable laws. NMT will process such Personal Data only for the purposes of providing the agreed Services, unless otherwise required or permitted by law.

3. Personal Data We May Collect

Depending on the nature of your interaction with us, the Personal Data we may collect includes:

a. name;

b. company name, designation, department and business contact information;

c. mailing address, billing address or business address;

d. telephone number, mobile number and WhatsApp contact number;

e. email address;

f. account registration information, user profile information and access rights;

g. enquiry details, project requirements, support tickets, correspondence, feedback and communications with us;

h. billing, quotation, contract, invoice and payment-related information;

i. technical information such as IP address, device information, browser information, usage logs, system logs, access logs, audit trails, error logs and diagnostic information;

j. information contained in documents, datasets, spreadsheets, databases, messages, images, attachments or other materials provided to us for project, implementation, testing, support, hosting or troubleshooting purposes;

k. information relating to employees, users, customers, suppliers, contractors or other individuals whose data is included in Client Data; and

l. any other Personal Data voluntarily provided to us or collected in connection with our Services.

We ask Clients not to provide unnecessary Personal Data to NMT. Where test data is sufficient for implementation or troubleshooting, Clients should avoid providing live Personal Data unless it is reasonably required for the relevant purpose.

4. Purposes for Collection, Use and Disclosure

NMT may collect, use, disclose or otherwise process Personal Data for the following purposes:

a. to respond to enquiries, requests, submissions, forms, messages or communications;

b. to verify the identity, authenticity or accuracy of enquiries, submissions, requests or account-related actions;

c. to prepare proposals, quotations, agreements, project plans, statements of work, invoices and related business documents;

d. to provide, implement, configure, customise, deploy, host, maintain and support our Services;

e. to conduct project scoping, business analysis, technical documentation, data migration, configuration, testing, user acceptance testing, training and go-live activities;

f. to manage Client accounts, user accounts, permissions, access rights and service subscriptions;

g. to provide helpdesk support, answer tickets, respond to queries, troubleshoot issues, investigate incidents and resolve technical or operational problems;

h. to identify the causes of problems affecting systems, applications, databases, servers, integrations, websites or cloud infrastructure;

i. to maintain, secure, monitor and improve our systems, websites, services, workflows, customer relationship management processes and internal operations;

j. to deliver requested materials, product information, service information, proposals, demo materials, event materials or other content requested by you;

k. to follow up on enquiries, service requests, meetings, demos, submissions or pending matters;

l. to send administrative, operational, service-related, support-related, security-related or account-related messages;

m. to comply with legal, regulatory, audit, accounting, tax, contractual, dispute resolution, risk management, security and compliance requirements;

n. to prevent, detect, investigate or respond to fraud, misuse, unauthorised access, cybersecurity threats, data incidents or unlawful activity;

o. to engage third-party service providers who support message delivery, hosting, cloud infrastructure, analytics, CRM, project management, helpdesk, payment processing, accounting, communication, collaboration and other operational activities; and

p. for any other purpose that we notify you of and, where required, obtain your consent for.

5. Use of Email, Mobile Number and WhatsApp Contact Information

We may use the email address, mobile number, WhatsApp number or other contact details you provide to verify your submission, deliver requested materials, respond to your enquiry, provide service-related updates, and follow up on your request.

Where applicable, verification codes, one-time passwords, service-related messages, account notices, support updates, project updates or operational communications may be sent through email, WhatsApp, SMS, telephone call, messaging platforms or other communication channels provided by you.

We may use trusted third-party service providers to support message delivery, hosting, analytics, CRM, helpdesk, communications and related operational activities. These service providers are only permitted to process Personal Data for the purposes of providing services to us or supporting our Services, and not for their own unrelated purposes.

We will not use WhatsApp or your mobile number to send unrelated promotional messages unless permitted under applicable law or with your consent. Where required, we will comply with Singapore’s Do Not Call requirements and other applicable rules relating to the sending of marketing messages to Singapore telephone numbers.

You may contact us if you wish to withdraw consent to receive non-essential marketing communications. However, even if you opt out of marketing communications, we may still send you service-related, administrative, security, contractual or transactional messages where necessary to provide the Services or manage our relationship with you.

6. Client Databases and Client-Controlled Data

Where a Client subscribes to NMT cloud hosting, server hosting, ERP hosting, managed services or similar Services, the Client may submit, upload, process or store Client Data in systems or databases implemented, hosted or supported by NMT.

Client Data may include Personal Data such as employee records, customer records, supplier records, contact lists, messages, attachments, images, videos, transactional data, business documents and other information entered by the Client or its authorised users.

The Client remains responsible for the content, accuracy, legality and permitted use of Client Data. The Client is responsible for ensuring that it has obtained all necessary consents, notifications, authorisations and legal bases required to collect, use, disclose, transfer or process such Personal Data through the systems or Services.

NMT will process Client Data only for the purpose of providing the agreed Services, including hosting, implementation, configuration, data migration, troubleshooting, maintenance, support, backup, disaster recovery, security monitoring and related operational activities.

NMT does not claim ownership over Client Data. As between NMT and the Client, the Client retains ownership and control over Client Data, subject to the terms of the applicable agreement.

7. Disclosure of Personal Data

NMT may disclose Personal Data where reasonably necessary for the purposes described in this Privacy Policy, including to:

a. our employees, officers, contractors, project teams, technical teams, support teams and authorised personnel;

b. cloud hosting providers, infrastructure providers, data centres, server administrators and managed service providers;

c. software vendors, implementation partners, integration partners, consultants, developers and subcontractors engaged to support the Services;

d. CRM, analytics, messaging, communications, helpdesk, project management, document management, collaboration, accounting and payment service providers;

e. auditors, accountants, legal advisors, insurers, banks and other professional advisors;

f. government authorities, regulators, law enforcement agencies, courts, tribunals or other parties where required or permitted by law; and

g. any other party with your consent or as reasonably necessary to fulfil the Services.

Where we engage third-party service providers to process Personal Data on our behalf, we will take reasonable steps to ensure that they are subject to appropriate confidentiality, security and data protection obligations, and that they process Personal Data only for the purposes of providing services to us.

8. Overseas Transfers of Personal Data

NMT is based in Singapore. However, depending on the nature of the Services and the third-party service providers used, Personal Data may be stored, hosted, transmitted, accessed or processed outside Singapore.

Where Personal Data is transferred outside Singapore, NMT will take reasonable steps to ensure that the overseas recipient is bound by legally enforceable obligations or other appropriate safeguards to provide a standard of protection comparable to the protection under the PDPA, unless an exception applies under applicable law.

For Client Data processed on behalf of a Client, overseas transfer arrangements may also be subject to the applicable agreement between NMT and the Client, including any hosting, cloud, backup, disaster recovery, support or subcontracting arrangements agreed with the Client.

9. Accuracy of Personal Data

NMT will make reasonable efforts to ensure that Personal Data collected by or on behalf of NMT is accurate and complete where it is likely to be used by NMT to make a decision that affects the individual, or disclosed by NMT to another organisation.

Individuals and Clients should ensure that all Personal Data provided to NMT is accurate, complete and up to date. Please notify us as soon as reasonably practicable if any Personal Data previously provided to us has changed.

For Client Data, the Client is responsible for ensuring the accuracy and completeness of Personal Data submitted, uploaded or maintained in the relevant systems, unless otherwise agreed in writing.

10. Withdrawal of Consent, Access and Correction

You may contact our Data Protection Officer to:

a. request access to Personal Data about you that is in our possession or under our control;

b. request correction of an error or omission in your Personal Data;

c. withdraw consent to our continued collection, use or disclosure of your Personal Data, where we are relying on consent; or

d. ask questions about how your Personal Data is handled.

We may require reasonable information to verify your identity and process your request. We will respond to access and correction requests within a reasonable time, in accordance with the PDPA.

If you withdraw consent, we will inform you of the likely consequences of the withdrawal, where applicable. Depending on the nature of the withdrawal, NMT may not be able to continue providing certain Services, access, support, communications or requested materials.

Where Personal Data is contained in Client Data controlled by a Client, we may refer the request to the relevant Client or process the request in accordance with the Client’s instructions, unless otherwise required by law.

11. Retention of Personal Data

NMT will retain Personal Data only for as long as it is reasonably necessary to fulfil the purposes for which it was collected, used or disclosed, or for legal, regulatory, accounting, audit, contractual, operational, security, dispute resolution or legitimate business purposes.

When Personal Data is no longer required for such purposes, NMT will take reasonable steps to cease retention of the Personal Data or remove the means by which the data can be associated with particular individuals, unless retention is required or permitted by law.

For Client Data, NMT will retain, return, delete or dispose of Personal Data in accordance with the applicable agreement, the Client’s written instructions, backup and disaster recovery processes, and applicable legal or regulatory requirements.

Deletion of Personal Data from active systems may not immediately remove residual copies from backups, archives, logs or disaster recovery environments. Such residual copies will be protected and retained only for the relevant backup, security, legal or operational period, and will not be used for new purposes.

12. Security of Personal Data

NMT will make reasonable security arrangements to protect Personal Data in our possession or under our control against risks such as unauthorised access, collection, use, disclosure, copying, modification, disposal, loss, misuse, damage or similar risks.

Such measures may include, where appropriate:

a. access controls and role-based permissions;

b. password protection and authentication controls;

c. network security, firewalls and monitoring tools;

d. segregation of Client environments or data where applicable;

e. secure configuration and hardening of servers and applications;

f. backup and disaster recovery arrangements;

g. administrative controls, internal policies and staff guidance;

h. confidentiality obligations for employees, contractors and service providers;

i. logging, audit trails, monitoring and incident response procedures; and

j. reasonable technical and organisational measures appropriate to the nature of the Personal Data and the Services.

Where Clients or users are issued login credentials, they are responsible for keeping such credentials confidential and secure. Clients and users should not share passwords or access credentials with unauthorised persons.

No method of transmission, storage or processing is completely secure. While NMT takes reasonable steps to protect Personal Data, we cannot guarantee absolute security.

13. Data Breach Notification

NMT will maintain reasonable procedures to assess and respond to suspected or actual data breaches involving Personal Data.

Where NMT has reason to believe that a data breach has occurred in relation to Personal Data that we process on behalf of a Client, we will notify the Client without undue delay, so that the Client may assess and fulfil any applicable notification obligations.

Where NMT is responsible for assessing a data breach under the PDPA, and the breach is assessed to be notifiable, NMT will notify the PDPC and affected individuals where required by the PDPA.

NMT may also notify Clients, affected individuals, regulators, service providers, professional advisors or law enforcement agencies where necessary or appropriate to contain, investigate, remediate or comply with legal obligations relating to a data breach.

14. Third-Party Websites, Platforms and Communication Channels

Our websites, emails, messages or documents may contain links to third-party websites, platforms, forms, applications or services. This Privacy Policy does not apply to such third-party websites or services, unless they are acting as our service providers.

If you choose to communicate with us through third-party platforms such as WhatsApp, email, video conferencing tools, social media platforms or other messaging channels, your use of those platforms may also be subject to the terms and privacy policies of the relevant third-party provider.

15. Cookies, Analytics and Website Information

Where you visit NMT websites or online forms, we may collect technical information such as IP address, browser type, device information, pages visited, referral source, time of access and usage patterns.

We may use cookies, analytics tools or similar technologies to operate our websites, improve user experience, understand website usage, monitor performance, detect security issues and improve our Services.

You may adjust your browser settings to block or manage cookies. However, disabling cookies may affect the functionality or performance of certain website features.

16. Marketing Communications

NMT may send marketing communications relating to our products, services, events, updates, newsletters, promotions or business offerings where permitted under applicable law or with your consent.

For marketing messages sent to Singapore telephone numbers, NMT will comply with applicable Do Not Call requirements, unless an exception applies or we have obtained clear and unambiguous consent.

You may unsubscribe from marketing emails or request that we stop sending non-essential marketing messages to your mobile number or WhatsApp contact. We may still send non-marketing communications such as service notices, support updates, project communications, security alerts, account-related messages and contractual notices.

17. Data Protection Officer

If you have any questions, requests, complaints or feedback relating to this Privacy Policy or the handling of Personal Data by NMT, please contact our Data Protection Officer:

Data Protection Officer
Neu Media Technology LLP
Email: nthiang+dpo@neumediatechnology.com
Address: see footer
Telephone: see footer

We will review and respond to your request or complaint within a reasonable time.

18. Amendments to this Privacy Policy

NMT may amend this Privacy Policy from time to time to reflect changes in our business, Services, systems, legal requirements, PDPA obligations, PDPC guidance or operational practices.

The updated version will be indicated by the “Last updated” date above. Where appropriate, we may notify Clients or affected individuals of material changes through our website, email, contractual notice or other communication channels.