LegalEASE Pte Ltd  UEN 202403385M (“we”, “us” or “our”) respects your right to privacy and understands that protecting your personal data is important. We comply with Singapore’s Personal Data Protection Act 2012 (“PDPA”) when handling personal data. This Privacy Policy explains how we collect, use, and disclose your personal data across all interactions with us.  

Your privacy matters. Please take a moment to read our Privacy Policy to see how we collect, use and disclose your information. If you have any questions, feel free to reach out to us.

1. About Us 

We are a company incorporated in Singapore that provides consultancy and legal operations services to organizations across various industries, including life sciences, non-profits and other commercial sectors throughout the Asia-Pacific region (“Services”).

2. The information we collect 

In this Policy, personal data” refers to any data, whether true or not, about an individual who can be identified (a) from that data; or (b) from that data and other information to which we have or are likely to have access, including data in our records as may be updated from time to time. The types of personal data you may provide to us include (depending on the nature of your interaction with us).

Use Case

Purpose of Collection and Use

Types of Personal Data

1. Clients, Partner Organisations or Industry Contacts

To communicate for provision of Services, collaboration or regulatory compliance (e.g. KYC).

Name, job title, company, contact details, background information (if applicable), testimonial, feedback, opinion. 

Additional data from use of our Services, associated apps or permitted platforms (inc. social media platforms / accounts) 

2. Contact Form Submissions via Website

To respond to enquiries and support business development activities.

Name, contact details, message content. 

3. Job Applicants and Employees

To assess applications, communicate with applicants, and manage recruitment processes. 

Name, contact and identification details, CV and payroll information, assessment responses, and system access data (e.g., browser and device information). 

Additional data provided during the employment or recruitment process.

4. Individuals involved in matters related to our clients (e.g., counterparties, other third parties)

To provide consultancy services to our clients. This includes reviewing, assessing or responding to information provided by or related to third parties.

Name, contact details, ID, date of birth, employment and education history, sensitive personal data (if relevant to the legal matter).

5. Marketing, Newsletters and Events

To send updates, news, and event invitations relevant to your interests.

Name, email, preferences, dietary/accessibility information (if applicable). 

6. Suppliers and Vendors

To manage business relationships, procurement and payments.

Name, contact details, bank /payment and billing information. 

Additional data provided during service delivery or collaboration.

7. Third-Party Personal Data Provided by You

To enable relevant services and interactions involving the third party.

Name and contact details of third party.

8. Voluntary Provision of Personal Data

To enable provision of our Services, recruitment or other requested interactions.

Varies based on context.

Separate Privacy

Notices Where applicable, separate privacy notices tailored for employees and contractors will be provided directly to you as part of your engagement. This overarching policy provides a general overview and applies across categories as appropriate.

3. How we collect personal data 

We collect personal data in a variety of ways, including: 
     a) Directly: We collect personal data which you directly provide to us, including when you submit information to us, through the ‘contact us’ form on our website or when you request our assistance via email, social media, our online chat, video calls or over the telephone.  
      b) Indirectly: We may collect personal data which you indirectly provide to us while interacting with us, such as when you use our website, social media accounts, in emails, via video calls, over the telephone and in your online enquiries.

4. Collection and use of personal data 

We may collect, use and disclose personal data for the following purposes:  
a) to enable you to access and use our Services;  
b) to provide our Services to you, including managing project engagements and communications, register your attendance at our events, assess and process your application for consultancy projects or collaborations, to manage your appointments and scheduling with our consultants, to communicate with you regarding service updates, proposals and feedback; 
c) to enable you to access and use our associated applications; 
d) to contact and communicate with you about our Services; 
e) for internal record keeping, administrative, invoicing and billing purposes; 
f) for analytics, market research and business development, including to operate and improve our Services to better meet your business needs, associated applications; 
g) for advertising and marketing, including to send you promotional information about our Services and information that we consider may be of interest to you; 
h) to comply with our legal or regulatory obligations and resolve any disputes that we may have; and 
i) if otherwise required or authorised by law. 

We collect and use your personal data based on one or more of the following legal bases: 
a) your consent; 
b) the necessity to perform or enter into a contract with you or a relevant third party; 
c) our legitimate interests in managing and operating our business, including recruitment (as an employee or contractor), handling your enquiries and requests, providing services to clients, inviting you to events and conducting industry-related research and analysis;
d) or compliance with our legal and regulatory obligations. 

5. Disclosure of personal data to third parties 

We may disclose your personal data to third parties where such disclosure is necessary for the purposes set out in this Privacy Policy, and where permitted or required under the law or regulation. Such parties may include: 
a) third party service providers acting as data intermediaries (also referred to as data processors under international laws such as the GDPR) for the purpose of enabling them to provide their services, to us, including  IT service providers, administration, data storage, web-hosting and server providers, couriers, maintenance or problem-solving providers, marketing or advertising providers, professional advisors including lawyers, accountants and auditors, bankers for the purpose of obtaining legal, financial, accounting or auditing services; 
b) third-party event hosts, speakers, and attendees; 
c) our employees and/or contractors to the extent necessary for the performance of their duties, such as payroll, invoicing and background checks services where required; 
d) our existing or potential agents or business partners in connection with our business operations; 
e) anyone to whom our business or assets (or any part of them) are, or may (in good faith) be, transferred whether as part of a merger, acquisition, sale of assets, or other corporate transaction. In such cases, we will take appropriate steps to ensure that the recipient handles your personal data in line with standards comparable to those outlined in this Policy; 
f) courts, tribunals and regulatory authorities where necessary to recover outstanding payments for Services we have provided to you in accordance with applicable laws and regulations, to comply with legal obligations or in connection with any legal proceedings, whether actual or prospective, or to establish, exercise, or defend our legal rights;  
g) courts, tribunals, regulatory authorities and law enforcement officers, as required or authorised by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights; and 
h) any other third parties as required or authorised by law, including the PDPA.

6. Overseas disclosure 

For the purposes set out above, we may transfer your personal data to third-party service providers or partners located outside of Singapore. Such countries may not have data protection laws equivalent to those of Singapore. Before transferring your personal data outside Singapore, we will take reasonable steps to ensure that the overseas recipient is bound by legally enforceable obligations (such as a contract) to provide a standard of protection that is at least comparable to the protection under PDPA, and where applicable, we also recognize and comply with relevant obligations under GDPR.  
This may include: 
• Ensuring the overseas recipient is subject to data protection laws that offer a comparable level of protection; 
• Entering into binding contractual arrangements (such as standard contractual clauses for internal data transfers, data transfer agreements) with the overseas recipient to safeguard your personal data; 
• Obtaining your express consent to the disclosure after informing you that the overseas recipient may not be subject to comparable data protection laws. 

We will only transfer your personal data overseas in compliance with the requirements of the PDPA, including Section 26 on transfer limitation obligations, and where applicable, the GDPR.  

7. Your rights and how you can manage your personal data  

The personal data we hold about you belongs to you, and you have rights over this data under applicable data protection laws. You have the right to: 

a) Access, Correction and Update 

Subject to certain exceptions under the PDPA, you have the right to request access to the personal data we hold about you, as well as to request correction or updates if you believe that any of the data is inaccurate or incomplete. 

To make such a request, please contact us using the details provided under the Contact Us section below. We will respond to your request in accordance with our obligations under the PDPA. 

Please note that: 
• A reasonable administrative fee may be charged for access requests only. If applicable, we will inform you of the fee and provide a written estimate before processing your request. 
• No fee is charged for correction or update requests. 

We encourage you to notify us promptly if your personal data changes or if you believe the information we hold is inaccurate, so we can ensure it remains current and accurate. 

b) Data Portability (Transfer of Your Personal Data): 

You may have the right to request that we transmit your personal data to another organisation in a structured, commonly used, machine-readable format, subject to certain conditions. 

This right applies to personal data that: 
• You have provided to us; or 
• Was generated in the course of your use of our Services (but does not include data that we have derived or created). 

While this right is not yet enforceable, we are committed to considering any such requests in good faith and in compliance with applicable laws and related regulations once the requirements come into effect. We will evaluate each request for data portability in accordance with applicable PDPA requirements. If we are unable to fulfil your request due to legal, operational, or regulatory reasons, we will inform you of the reason(s) for our refusal. 

Please note that: 
• The receiving organisation must have a presence in Singapore and must accept the data. 
• This right is subject to prescribed exclusions, including data protected by legal privilege, confidential business information, or data that may adversely affect the rights of others. 

If you wish to make a data portability request once the right becomes enforceable, please contact us using the details provided under the “Contact Us” section of this Policy. 

c) Verification of identity 

To protect your personal data and ensure data security, we may request verification of your identity before processing any access, correction, portability, or deletion requests. This may involve providing a copy of a valid identification document or answering security questions. 

d) Withdraw consent and unsubscribe 

If you wish to object to processing of your personal data for direct marketing purposes, unsubscribe from our email database or opt-out of any communications (including marketing communications), please contact us using the details below or opt-out using the opt-out / unsubscribed facilities provided in our communication.  

7. Additional Data Responsibilities, Safeguards and Other Practices 

a) Information from third parties 

If we receive personal data about you from a third party, we will protect it as set out in this Privacy Policy. If you are a third party providing personal data about somebody else, you represent and warrant that: 
• you have obtained such person’s clear and express consent to provide their personal data to us for the relevant purpose(s); 
• you have informed the person of the purpose(s) for which the personal data is being disclosed and that such purpose(s) are consistent with those stated in this Privacy Policy; and 
• you are authorized to act on behalf of the person whose personal data you are disclosing.  

You agree to indemnify and hold harmless us, our officers, employees, and affiliates from any claims, losses, damages, liabilities, costs, or expenses (including legal fees on a full indemnity basis) arising from your breach of the above representations and warranties or any violation of applicable data protection laws to the extent such breach or violation is caused by your acts, omissions, or default. 

b) Retention 

We will retain your personal data only for as long as it is necessary to fulfil the purposes for which it was collected or as required or permitted by law. Once your personal data is no longer needed, we will securely delete or anonymise it. 

c) Complaints 

If you have any concerns or complaints regarding our handling of your personal data, please contact us using the details below and provide us with full details of your concern. We will acknowledge your complaint, conduct an internal investigation and respond to you in writing within a reasonable time. Our response will outline the outcome of our investigation and any steps we may take to address the issue.  If you are not satisfied with our response, you may also escalate your concerns to the Personal Data Protection Commission (PDPC), Singapore’s data protection authority. 

d) Breach Notification and Management

We follow a formal data breach response plan in line with the PDPA requirements. In the unlikely event of a data breach involving your personal data, we will assess and manage the breach promptly and, where required, notify you and the Personal Data Protection Commission (PDPC) within 24 hours of becoming aware of the breach. 

e) Your responsibility for accurate information

You represent and warrant that any personal data you provide to us, including information relating to third parties, is accurate, complete and up-to-date to the best of your knowledge, and that you have obtained all necessary consents to disclose such information. We rely on the information you provide to deliver our Services, meet our legal obligations and stay in touch with you. For this reason, it is important that the data you share is accurate, complete and kept current.

8. Storage and security 

We are committed to protecting the personal data we collect by implementing robust physical, technical, and administrative safeguards. These measures include, but are not limited to, secure physical storage, access controls, encryption, regular security assessments, staff training, and documented data handling procedures. These safeguards are designed to protect your personal data from misuse, interference, loss and unauthorised access, modification and disclosure. While we are committed and we strive to protect your personal data, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee the security of any information that is transmitted to or by us over the Internet or electronic storage. Therefore, the transmission and exchange of information with us is at your own risk.   

9. Cookies  

We may use cookies and similar tracking technologies (such as web beacons, pixels, and local storage) on our online Services from time to time. Cookies are text files placed in your device's browser to store your preferences and improve your user experience. Cookies, by themselves, do not reveal your email address or other personally identifiable information. However, they do recognise you when you return to our online Services and allow third parties, such as Google and LinkedIn, to cause our advertisements to appear on your social media and online media feeds as part of our retargeting campaigns. If and when you choose to provide our online Services with personal data, this information may be linked to the data stored in the cookies.  

We use different types of cookies, including:   

a) Essential cookies: necessary for the operation of our website and to enable core functionality.  Performance and analytics cookies: help us understand how visitors interact with our website by collecting and reporting information anonymously.  
b) Functionality cookies: allow our website to remember choices you make and provide enhanced, more personal features.  
c) Advertising cookies: used to deliver relevant advertisements to you and measure the effectiveness of our marketing campaigns. Some cookies are set by us (first-party cookies), while others are set by third parties (third-party cookies) such as analytics and advertising partners. 

You can manage or block cookies and other tracking technologies by adjusting the settings on your browser or device, which allows you to refuse all or some cookies, delete cookies that have already been set, or receive a warning before a cookie is stored.  

For more information on how to manage cookies, you may refer to your browser's help section or visit www.allaboutcookies.org. Please note that blocking all cookies (including essential cookies) may limit your ability to access certain features or parts of our online Services. Some third-party cookies and tracking technologies may also be managed through the third party's own opt-out mechanisms.

10. Links to other websites 

Our Services may contain links to other websites. We do not have any control over those websites and we are not responsible for their content, privacy practices, or how they handle your personal data. Those websites are not governed by this Privacy Policy.  

11. Amendments 

We may, at any time and at our discretion, vary this Privacy Policy by publishing the amended Privacy Policy on our website. However, where any amendment may materially affect your rights or obligations, we will provide you with at least 14 days' prior notice (for example, by email or prominent notice on our website) before such changes take effect. We recommend you check our website regularly to ensure you are aware of our current Privacy Policy. 

12. Governing Law 

This Privacy Policy and your use of this website shall be governed in all respects by the laws of Singapore.

13. Contact Us 

For enquiries on personal data related matters, you may contact our Data Protection Officer (DPO) at: 
LegalEASE Pte Ltd (UEN 202403385M)  

Email: ask@legalease.sg  

Last update: 21 November 2025 

If your personal data was provided to us by a third party (e.g., a referrer or your company), please direct any queries, feedback, complaints, or access and correction requests to that party, who may act on your behalf. If you withdraw consent for the use of your personal data, we may be unable to continue providing our Services, administer existing agreements, or maintain contractual relationships. Please note that withdrawal of consent will only affect the processing of your personal data from the date of withdrawal onwards and will not retroactively affect any processing or service obligations that were established prior to your withdrawal. This may affect our ability to continue providing our Services or administering existing agreements, and could lead to the termination of such agreements.  

We reserve all our legal rights and remedies as necessary in these circumstances.

Book a free consultation

Speak directly with Natasha to assess your current legal needs, identify hidden risks, and outline actionable next steps.

get in touch
Project Image

LegalEASE is a boutique legal & compliance consultancy that helps plug capacity gaps, contract bottlenecks, and governance risks.

homeaboutteamservicescontactPrivacy Policy
Our Office
100 Tras Street #16-01 100AM
Singapore, 079027Phone
Chat on WhatsappEmail Us
ask@legalease.sg
© LegalEASE Pte. Ltd. All Rights Reserved.
Designed & Developedby SitesGo