Legal
Privacy Policy
This Privacy Policy explains how Dammar and Partners Pte. Ltd. ("sovre", "we", "us") collects, uses, discloses, and protects personal data when you visit sovre.io or interact with our services. We comply with the European Union General Data Protection Regulation (GDPR) and the Singapore Personal Data Protection Act 2012 (PDPA).
1. Data Controller
The data controller is Dammar and Partners Pte. Ltd., 160 Robinson Road, #14-04, Singapore 068914. For privacy enquiries, contact hello@sovre.io.
2. What we collect
- Information you provide: name, company, email address, and message content when you submit our contact form, waitlist form, or book a call.
- Usage data (with consent): pages visited, referrer, device and browser type, approximate location (country level), and interaction events, collected via Google Analytics 4 only when you accept analytics cookies.
- Technical data: server logs (IP address, request timestamp, user agent) retained briefly for security and abuse prevention.
3. Lawful basis (GDPR)
- Consent — for analytics cookies and marketing communications.
- Legitimate interest — for security, fraud prevention, and aggregate site usage understanding (where consent is not required by law).
- Contractual necessity — to respond to enquiries and provide services you request.
4. Notification of purposes (PDPA)
Under PDPA, we collect, use, and disclose personal data only for the purposes for which you consented, or where allowed by law. Purposes include responding to enquiries, providing access to our services, sending requested communications, and maintaining the security of our website.
5. How we use your data
- Respond to enquiries and book calls you request.
- Send service-related communications (e.g., early-access updates) when you opt in.
- Improve site performance and content (analytics, with your consent).
- Comply with legal obligations.
6. Sharing and international transfers
We share personal data only with processors necessary to deliver our services. Current processors include:
- Google LLC (Google Analytics 4) — analytics, with your consent. Data may be processed in the United States under Standard Contractual Clauses and the EU–US Data Privacy Framework.
- Vercel Inc. — hosting and content delivery (United States), under Standard Contractual Clauses.
- Email and CRM providers as required to handle correspondence.
For transfers outside the European Economic Area or Singapore, we rely on appropriate safeguards including adequacy decisions, Standard Contractual Clauses, or your explicit consent.
7. Retention
We retain personal data only for as long as needed for the purposes described, or as required by law. Contact form submissions are retained for up to 24 months unless you request earlier deletion. Analytics data is retained for 14 months in accordance with GA4 defaults.
8. Your rights
Under GDPR you have the right to: access, rectify, erase, restrict, or object to processing of your data; port your data; withdraw consent at any time; and lodge a complaint with your supervisory authority.
Under PDPA you have the right to: access and correct your personal data, withdraw consent, and lodge a complaint with the Personal Data Protection Commission of Singapore.
To exercise any right, email hello@sovre.io. We respond within 30 days.
9. Cookies
See our Cookie Policy for details on the cookies we use and how to manage your preferences. You can change your choices anytime via the "Cookie settings" button.
10. Security
We apply technical and organisational measures appropriate to the risk, including encryption in transit (HTTPS), access controls, and regular security review.
11. Children
Our services are not directed at children under 16. We do not knowingly collect data from children.
12. Changes
We will publish updates to this policy on this page with an updated "Last updated" date.
Questions? Email hello@sovre.io or write to Dammar and Partners Pte. Ltd., 160 Robinson Road, #14-04, Singapore 068914.