Strike smarter

Home / Privacy Policy

Privacy Policy

How StrikeReach collects, uses, and protects personal data under Singapore law.

Data controller: StrikeReach (UEN 201564738K) · 3 Temasek Boulevard, #18-01 Suntec City Tower 3, Singapore 038983 · [email protected]
Last updated: May 2025 · Governing law: Personal Data Protection Act 2012 (PDPA) and subsidiary legislation

1. Scope and audience

This Privacy Policy applies to personal data processed by StrikeReach through strikereach.one, client platforms, analytics dashboards, and related professional services. It covers visitors, enquiry submitters, client users, and individuals whose data appears in signal datasets supplied by clients for reach analytics.

StrikeReach provides digital marketing reach analytics—not sports or athletics services. References to "strike" and "reach" in our product naming describe targeting methodology, not physical activity data categories.

2. Categories of personal data

Depending on your interaction with us, we may process:

  • Identity and contact data: name, business email, telephone number, job title, company name, and office address.
  • Enquiry and contract data: solution interest, budget range, team size, consultation dates, messages, and billing references in SGD.
  • Technical data: IP address, browser type, device identifiers, session logs, cookie preferences (including cookies_accepted_strike), and pages viewed.
  • Analytics and signal data: where you are a client end-user or appear in client-supplied datasets—behavioural events, campaign interaction metadata, and pseudonymised identifiers used for reach scoring.
  • Communications: email correspondence, support tickets, and call notes linked to your account.

3. Purposes of collection, use, and disclosure

We collect personal data for purposes that a reasonable person would consider appropriate in the circumstances, including:

  • Responding to contact and catalogue enquiries and delivering contracted AI reach analytics services;
  • Operating precision targeting models, attribution reporting, and signal automation on behalf of clients;
  • Account administration, invoicing in SGD, fraud prevention, and service improvement;
  • Compliance with legal obligations, regulatory requests, and internal audit requirements;
  • Sending service notices and, where consent exists, marketing about StrikeReach capabilities.

We may disclose personal data to cloud infrastructure providers, CRM and integration partners, professional advisers, and authorities where mandated by law. Contracts with processors mandate PDPA-aligned safeguards.

4. Consent, notification, and withdrawal

Where consent is the legal basis, we seek clear opt-in for non-essential cookies and marketing. You may withdraw consent by emailing [email protected] or adjusting browser cookie settings. Withdrawal does not affect processing already lawfully completed.

For client campaign data, the client organisation typically obtains consent from their audience; StrikeReach processes such data as a data intermediary or processor according to the Data Processing Agreement in place.

5. PDPA obligations we honour

5.1 Accuracy and protection

We take reasonable steps to ensure personal data is accurate and complete for its purpose. Technical and organisational measures comprise access controls, encryption in transit, role-based permissions, and staff confidentiality undertakings.

5.2 Retention limitation

Enquiry records are retained up to twenty-four months unless a contract supersedes. Client platform data retention follows schedule in the master services agreement, typically twelve to thirty-six months post-termination unless law requires longer storage.

5.3 Transfer limitation

Cross-border transfers occur only where the recipient jurisdiction provides comparable protection or binding contractual clauses approved under PDPA guidance.

5.4 Access, correction, and portability

You may request access to or correction of personal data we control. We respond within thirty days where practicable. A reasonable administrative fee may apply for manifestly unfounded or excessive requests.

5.5 Do Not Call

We check Singapore Do Not Call Registry identifiers before telemarketing to Singapore telephone numbers unless you have clear consent on record.

6. Cookies and similar technologies

Essential cookies enable security and form function. Analytics cookies help us understand site reach performance. Non-essential cookies load only after you click Accept on our banner; acceptance is stored locally as cookies_accepted_strike. See browser settings to delete stored keys.

7. Automated decision-making

Our AI targeting and scoring services may produce automated recommendations about audience segments. Clients remain responsible for campaign approval. Individuals may contact their marketer or StrikeReach to question logic affecting them where PDPA access rights apply.

8. Data breaches

We maintain an incident response plan. Where a notifiable breach is assessed under PDPA, we will notify the Personal Data Protection Commission and affected individuals as required.

9. Children

Services are directed at business users. We do not knowingly collect personal data from individuals under sixteen without parental or guardian authority.

10. Changes to this policy

We may update this policy to reflect legal or product changes. Material updates will be posted here with a revised "Last updated" date. Continued use after posting constitutes notice of the update where permitted by law.

11. Contact and complaints

Data Protection Officer (enquiries): [email protected] · +65 6223 5194
Unresolved concerns may be referred to the Personal Data Protection Commission, Singapore.