This Privacy Policy explains how MediaPitch Media Pte. Ltd. ("MediaPitch", "we", "us", or "our") collects, uses, discloses, and protects personal data when you visit mediapitch.pro, subscribe to our services, or otherwise interact with us. We are committed to handling personal data responsibly and in compliance with the Personal Data Protection Act 2012 of Singapore ("PDPA") and its subsidiary legislation.
1. Data controller
The data controller responsible for your personal data is:
MediaPitch Media Pte. Ltd.
UEN: 202546012C
39 Keong Saik Road, #02-01, Singapore 089142
Email: [email protected]
Phone: +65 6225 7130
2. Scope
This policy applies to personal data collected through our website, contact forms, membership subscriptions, newsletter sign-ups, and any other channels where we indicate that this policy applies. It does not apply to third-party websites linked from our site, which maintain their own privacy practices. We encourage you to review those policies before providing personal data to external services.
3. Personal data we collect
Personal data means data, whether true or not, about an individual who can be identified from that data or from that data and other information to which we have or are likely to have access. Depending on your interaction with us, we may collect the following categories:
3.1 Information you provide directly
- Contact form submissions: name, email address, phone number (optional), subject selection, message content, and PDPA consent confirmation.
- Newsletter and membership: name, email address, billing information processed by our payment provider (we do not store full card numbers on our servers).
- News tips and correspondence: any personal data you voluntarily include in communications with our newsroom.
- Job applications: if you apply for employment, curriculum vitae details, employment history, and references.
3.2 Information collected automatically
- Technical data: IP address, browser type and version, operating system, device type, referring URL, pages visited, and timestamps.
- Cookie and similar technology data: as described in our Cookie Policy, subject to your consent preferences for non-essential cookies.
- Log files: server logs maintained by our hosting provider for security, troubleshooting, and performance monitoring.
3.3 Information from third parties
We may receive limited personal data from payment processors (transaction confirmation, partial billing details), analytics providers (aggregated usage patterns where consent is given), and publicly available sources for journalistic verification purposes. We do not purchase personal data lists for marketing.
4. Purposes of collection, use, and disclosure
We collect and use personal data only for purposes that a reasonable person would consider appropriate in the circumstances, and where required, with your consent. Our primary purposes include:
- Responding to contact form enquiries, news tips, correction requests, and press enquiries.
- Processing membership subscriptions and delivering member benefits.
- Sending newsletters and editorial updates to subscribers who have opted in.
- Operating, maintaining, and improving our website and user experience.
- Analysing readership patterns through anonymised or aggregated analytics (with consent).
- Detecting, preventing, and addressing fraud, abuse, and security incidents.
- Complying with legal obligations, court orders, and regulatory requests.
- Establishing, exercising, or defending legal claims.
We will not use your personal data for purposes incompatible with those described above without notifying you and, where required, obtaining fresh consent.
5. Legal basis and consent
Under the PDPA, we rely on consent, contractual necessity, legal obligation, and legitimate interests as appropriate to each processing activity. Contact form submissions require explicit PDPA consent via an unchecked checkbox — we never pre-tick consent fields. You may withdraw consent at any time by contacting us, though withdrawal does not affect the lawfulness of processing prior to withdrawal and may limit our ability to provide certain services.
6. Disclosure of personal data
We do not sell personal data. We may disclose personal data to the following categories of recipients where necessary for the purposes stated above:
- Service providers: hosting providers, email delivery services, payment processors, and analytics platforms bound by contractual data protection obligations.
- Professional advisers: lawyers, accountants, and auditors under duty of confidentiality.
- Regulatory and law enforcement: where required by applicable law or to protect rights, safety, and property.
- Successors: in connection with a merger, acquisition, or asset sale, subject to equivalent privacy protections.
Where personal data is transferred outside Singapore, we ensure that the recipient jurisdiction provides a comparable standard of protection or that appropriate safeguards (such as contractual clauses) are in place as required by the PDPA.
7. Data retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, unless a longer retention period is required or permitted by law. Typical retention periods include:
- Contact form records: up to 24 months from last correspondence, unless an ongoing editorial or legal matter requires longer retention.
- Membership and billing records: duration of membership plus 7 years for accounting and tax compliance.
- Newsletter subscriptions: until you unsubscribe, plus a suppression record to honour opt-out requests.
- Server logs: up to 90 days unless required for security investigation.
- Journalistic source records: retained according to our editorial archive policy and legal privilege where applicable.
8. Data security
We implement appropriate administrative, technical, and physical safeguards to protect personal data against unauthorised access, collection, use, disclosure, copying, modification, disposal, or similar risks. Measures include TLS encryption for data in transit, access controls limiting employee access to personal data on a need-to-know basis, secure hosting infrastructure, and regular review of our security practices. No method of transmission over the Internet is completely secure; we cannot guarantee absolute security but we respond promptly to identified incidents in accordance with our data breach response plan and PDPA notification requirements.
9. Your rights under the PDPA
Subject to exceptions under the PDPA, you have the following rights regarding your personal data:
- Access: request confirmation of whether we hold personal data about you and obtain a copy.
- Correction: request correction of inaccurate or incomplete personal data.
- Withdrawal of consent: withdraw consent for processing that relies on consent, with the limitations noted above.
- Data portability: where applicable, request transfer of your data in a structured, commonly used format.
To exercise these rights, contact us at [email protected] with sufficient detail to verify your identity. We will respond within 30 days or inform you if an extension is required. If you are dissatisfied with our response, you may lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore.
10. Children
Our website and services are not directed at individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us and we will delete it promptly.
11. Do Not Track
Our website does not currently respond to Do Not Track browser signals because no uniform industry standard has been adopted. You may manage cookie preferences through our cookie banner or browser settings as described in our Cookie Policy.
12. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Material changes will be indicated by updating the effective date at the top of this page. We encourage you to review this policy periodically. Continued use of our website after changes constitutes acceptance of the updated policy where permitted by law.
13. Contact us
For privacy-related enquiries, data access requests, or complaints:
MediaPitch Media Pte. Ltd.
39 Keong Saik Road, #02-01, Singapore 089142
Email: [email protected]
Phone: +65 6225 7130
14. Data Protection Officer
MediaPitch has appointed a Data Protection Officer (DPO) responsible for overseeing compliance with the PDPA and handling data protection queries. The DPO can be reached at the contact details above with "Attention: Data Protection Officer" in the subject line. We aim to acknowledge DPO enquiries within five business days.
15. Marketing communications
We send marketing and newsletter communications only to individuals who have opted in through a clear affirmative action — such as ticking an unchecked subscription box or completing a membership sign-up. Every marketing email includes an unsubscribe mechanism. We honour opt-out requests promptly and maintain a suppression list to prevent re-contact. Transactional communications related to your account, membership, or enquiry responses are not marketing communications and may be sent without separate marketing consent where necessary to fulfil our service obligations.
16. Automated decision-making
MediaPitch does not use automated decision-making or profiling that produces legal or similarly significant effects on individuals. Analytics data, where collected with consent, is reviewed in aggregate by humans for editorial and operational planning. We do not assign automated risk scores or categorise individuals based on their browsing behaviour for purposes beyond anonymised site improvement.
17. Cross-border data transfers
Our primary data processing occurs in Singapore. Where we engage service providers that process data in other jurisdictions — for example, cloud hosting with regional redundancy — we assess the adequacy of protection and implement contractual safeguards consistent with PDPA requirements. A list of major sub-processors is available on request. We do not transfer personal data to jurisdictions lacking adequate protection without appropriate safeguards in place. For further detail about specific transfer mechanisms, contact our Data Protection Officer using the details in Section 14 above.