Privacy Policy
This Privacy Policy explains how Wetopia Global collects, uses, stores, and shares your personal data when you visit or interact with this website.
01 Introduction
Wetopia Global Pte. Ltd. ("Wetopia Global", "we", "us", or "our"), incorporated and registered in Singapore with its registered office at 10 Anson Road, Singapore, is the data controller responsible for your personal data collected through this website (the "Site").
This Privacy Policy describes what personal data we collect when you visit the Site, how we use and protect that data, the legal bases on which we rely, and the rights you may have depending on your jurisdiction. It should be read alongside our Data Policy (which covers our technical data practices in detail) and our Terms of Use.
By using the Site, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of the Site.
Effective date: May 1, 2026.
02 Information We Collect
We collect personal data in two ways: information you provide to us directly, and information collected automatically when you use the Site.
(a) Information You Provide — Form Submissions
When you complete a form on the Site, we collect the data you enter. Specifically:
- Join / Interest Form: full name, email address, and your role or intention (e.g. consumer, business owner, investor, volunteer).
- Contact Form: full name, email address, and the content of your message.
You are under no obligation to complete any form. If you choose not to provide the requested data, we may be unable to respond to your enquiry or register your interest.
(b) Information Collected Automatically
When you visit the Site, certain data is collected automatically through cookies and similar technologies:
- IP address — collected by third-party analytics tools and immediately anonymised or truncated; we do not store full IP addresses on our own servers.
- Browser, operating system, and device type — used to understand how the Site is accessed.
- Pages visited, page URLs, and referral source — to understand how users navigate the Site.
- Session duration and page view depth — to measure engagement.
- Clicks, scroll depth, and mouse movements — collected by Microsoft Clarity for user experience analysis (see Section 4).
(c) Cookies
We use cookies and similar tracking technologies to operate the Site and collect analytics and marketing data. Please see Section 5 for a full description of the cookies we use and how to manage your preferences.
03 How We Use Your Data
We use the personal data we collect for the following purposes:
- To respond to your enquiries: When you submit a contact or interest form, we use your name and email address to reply to your message and follow up as needed.
- To manage interest registrations: We record expressions of interest in joining the Wetopia movement, launching a business, or investing, so that we can keep you informed of relevant opportunities (where you have opted in or where we have a legitimate interest in doing so).
- To analyse and improve the Site: We use aggregated analytics data to understand how visitors use the Site, identify pages that perform well or poorly, and make improvements to content and user experience.
- To measure marketing effectiveness: We use tracking tools such as the Meta Pixel to understand how people arrive at the Site from advertisements and social media, allowing us to optimise our marketing spend.
- To improve user experience: Microsoft Clarity session recordings help us identify usability issues, broken flows, and points of confusion so we can fix them.
- To comply with legal obligations: We may process your data where required by applicable law, regulation, or court order.
We will not use your data for any purpose that is incompatible with the purposes listed above without first obtaining your consent or establishing a separate legal basis.
04 Third-Party Tracking Tools
We use the following third-party tools to collect analytics, behavioural, and marketing data on the Site. Each tool acts as a data processor on our behalf and is subject to its own data processing agreement with us.
For a detailed breakdown of cookies set by each tool, including names, categories, purposes, and expiry periods, please see our Data Policy — Cookies & Tracking Technologies.
05 Cookies
We use cookies — small text files stored on your device — to operate, analyse, and improve the Site. We use four categories of cookies:
| Category | Description | Examples |
|---|---|---|
| Strictly Necessary | Essential for the Site to function. These cannot be disabled. They do not collect personal data for marketing purposes. | Session management cookies |
| Analytics | Help us understand how visitors interact with the Site by collecting information about page views, session duration, and navigation paths. All data is aggregated and anonymised where possible. | _ga, _ga_*, _gid (Google Analytics) |
| Marketing | Used to track visitors across websites for the purpose of displaying relevant advertising and measuring ad campaign effectiveness. | _fbp, _fbc (Meta Pixel) |
| UX / Session Recording | Used by Microsoft Clarity to record anonymised session replays and generate heatmaps, helping us improve the usability of the Site. | _clsk, _clckv (Microsoft Clarity) |
When you first visit the Site, a cookie consent banner will ask for your preferences. You may accept all cookies, accept only strictly necessary cookies, or customise your choices by category. You can update your preferences at any time through the cookie settings control on the Site.
For full technical details of every cookie, including provider and expiry, see our Data Policy.
06 Data Sharing
We do not sell, rent, or trade your personal data to any third party for their own marketing purposes. We share personal data only in the following limited circumstances:
- Third-party data processors: We share data with the processors described in Section 4 (Google, Meta, Microsoft) solely to the extent necessary for them to provide their services on our behalf. Each processor is bound by a data processing agreement and is prohibited from using your data for their own independent purposes (subject to their own platform-level data use policies).
- Legal and regulatory authorities: We may disclose your personal data if required to do so by law, court order, or at the request of a competent regulatory authority, or where we believe in good faith that disclosure is necessary to protect our legal rights, prevent fraud, or protect the safety of any person.
- Business transfers: In the event of a merger, acquisition, restructuring, or sale of all or substantially all of our assets, your personal data may be transferred to the successor entity. We will notify you via email or a prominent notice on the Site before your data becomes subject to a different privacy policy.
07 International Data Transfers
Wetopia Global is headquartered in Singapore. When you use our third-party analytics and marketing tools, your personal data may be transferred to and processed in the United States of America, where Google, Meta, and Microsoft maintain their primary infrastructure.
We ensure that such transfers are protected by appropriate safeguards in accordance with applicable data protection law:
- European Economic Area (EEA) transfers to the USA: We rely on the Standard Contractual Clauses (SCCs) adopted by the European Commission under Article 46(2)(c) of the GDPR, as incorporated into the respective data processing agreements with our processors.
- United Kingdom (UK) transfers: Transfers from the UK to the USA are covered by the International Data Transfer Agreement (IDTA) or the UK Addendum to the EU SCCs, as applicable.
- Singapore transfers: Transfers from Singapore are conducted in compliance with the Personal Data Protection Act 2012 (PDPA) and the relevant Transfer Impact Assessments where required.
08 Data Retention
We retain personal data only for as long as is necessary for the purposes set out in this policy, or as required by law. Our specific retention periods are as follows:
| Data Type | Retention Period | Notes |
|---|---|---|
| Form submissions (Join & Contact forms) | 24 months from date of submission | Automatically purged after 24 months; you may request earlier deletion. |
| Google Analytics 4 data | 14 months | Configured within GA4 retention settings; data is aggregated and anonymised. |
| Microsoft Clarity session recordings | 30 days | Automatically deleted by Microsoft after 30 days. |
| Meta Pixel event data | Per Meta's data retention policy | Governed by Meta's own privacy policy and data retention controls. |
09 Your Rights by Region
Depending on the country or jurisdiction in which you are located, you may have specific rights regarding your personal data. We are committed to honouring these rights. To exercise any of the rights below, please email us at [email protected] with the subject line "Data Request". We will respond within 30 days.
If you are located in the EU or EEA, you have the following rights under the General Data Protection Regulation (GDPR):
- Right to access — request a copy of the personal data we hold about you.
- Right to rectification — request correction of inaccurate or incomplete data.
- Right to erasure ("right to be forgotten") — request deletion of your personal data in certain circumstances.
- Right to restriction of processing — request that we limit how we use your data.
- Right to data portability — receive your data in a structured, machine-readable format.
- Right to object — object to processing based on legitimate interests or for direct marketing.
- Rights related to automated decision-making — we do not make solely automated decisions with significant effects on individuals.
- Right to lodge a complaint — with your local data protection authority (DPA). A list of EU DPAs is available at edpb.europa.eu.
UK residents have rights mirroring those under the GDPR (as retained in UK law). You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.
California residents have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):
- Right to know — request disclosure of the personal information we collect, use, and share about you.
- Right to delete — request deletion of your personal information, subject to certain exceptions.
- Right to correct — request correction of inaccurate personal information.
- Right to opt-out of sale or sharing — we do not sell or share your personal information for cross-context behavioural advertising as defined by the CPRA.
- Right to non-discrimination — we will not discriminate against you for exercising your CCPA rights.
As our headquarters jurisdiction, Singapore's PDPA governs our baseline data practices. Singapore residents have the right to access and correct personal data held about them. Complaints may be directed to the Personal Data Protection Commission (PDPC) at pdpc.gov.sg.
Brazilian residents have rights under the LGPD including: access, correction, deletion, portability, information about sharing, revocation of consent, and the right to object. Complaints may be directed to the Autoridade Nacional de Proteção de Dados (ANPD).
Canadian residents have the right to access and correct personal information we hold about them under the Personal Information Protection and Electronic Documents Act (PIPEDA). Complaints may be directed to the Office of the Privacy Commissioner of Canada (OPC) at priv.gc.ca.
Australian residents have rights to access and correct personal information under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Complaints may be directed to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
South African residents have the right to access, correct, delete, and object to the processing of their personal information under POPIA. Complaints may be lodged with the Information Regulator at justice.gov.za/inforeg.
Indian residents have rights under the Digital Personal Data Protection (DPDP) Act 2023, including the right to access information about their data, correct or erase personal data, and nominate a representative to exercise rights on their behalf in the event of death or incapacity. Grievances may be referred to the Data Protection Board of India once operational.
To exercise any of the above rights, please email [email protected] with the subject line "Data Request", specifying the right you wish to exercise and the jurisdiction you are writing from. We will acknowledge your request within 5 business days and provide a full response within 30 days (or within the statutory period required by your jurisdiction, whichever is shorter).
10 Children's Privacy
The Site is not directed to children under the age of 13, or under the age of 16 for residents of the European Union and European Economic Area. We do not knowingly collect personal data from children below these age thresholds.
If you are a parent or guardian and believe that your child has submitted personal data through the Site, please contact us at [email protected] and we will take prompt steps to delete that information.
11 Security
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure, or destruction. Our security measures include:
- All data transmitted between your browser and the Site is encrypted using HTTPS with TLS 1.2 or higher.
- Personal data stored on our servers is encrypted at rest.
- Access to personal data is restricted on a role-based, need-to-know basis. Only authorised personnel with a legitimate operational need may access your data.
- We conduct periodic reviews of our security practices and update them as necessary.
However, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authorities in accordance with applicable law. For details of our breach notification procedures, see our Data Policy — Data Breach Notification.
12 Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or the services we offer. When we make changes, we will revise the "Last Updated" date at the top of this page.
For material changes — those that significantly affect how we use your personal data or your rights — we will make reasonable efforts to provide more prominent notice, such as by placing a notice on the Site or, where appropriate, sending an email notification to users who have previously submitted their contact details to us.
Your continued use of the Site after the revised Privacy Policy has been posted constitutes your acceptance of the changes. If you do not agree to the updated policy, you should discontinue use of the Site.
13 Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us:
- Email: [email protected]
- Phone: +65 3106 4133
- Postal Address: Wetopia Global, 10 Anson Road, Singapore
For data subject requests, use the subject line "Data Request" and include your full name, jurisdiction, and the specific right or action you are requesting. We aim to respond within 30 days.
You may also wish to review our Data Policy for technical details of our data practices, or our Terms of Use for the conditions governing your use of the Site.